Content

McAfee Host Intrusion Prevention for server

McAfee Host Intrusion Prevention for server product shot
Proactively secure servers against zero-day attacks

Exploits and vulnerabilities are more complex, and they’re released more quickly than ever before. Anti-virus alone can’t do the job. Defend your servers from known and new zero-day attacks with McAfee Host Intrusion Prevention. Boost security, lower costs by reducing the frequency and urgency of patching, and simplify compliance.

Tab Navigation

Benefits and Features

Benefits:

  • Guard servers against rampant complex threats with layered protection
    Three layers of protection—behavioral and signature-based intrusion prevention (IPS) rules, stateful firewall, and application control—prevent loss of confidential data by securing servers from targeted attacks; layered protection also defends your servers against known and unknown zero-day exploits
  • Secure key servers and maintain uptime with specialized protection
    Get customized protection for purpose-built web and database servers
  • Patch less frequently and less urgently
    Use the power of McAfee Host Intrusion Prevention against exploits that target new vulnerabilities when they hit to give your IT team more time to research, prioritize, test, and deploy patches; your IT staff maintains a high level of security but patches less frequently, less urgently, and on their own schedule
  • Simplify compliance efforts with greater visibility and control
    Monitor your security status and prove to stakeholders that all host intrusion prevention measures are in place for internal and regulatory compliance
  • Manage centrally—easily and more effectively
    Optimize and simplify management with McAfee ePolicy Orchestrator, our single, centralized console, which helps you oversee and administer all your protection; full integration with McAfee ePolicy Orchestrator® saves you money and time with significant operational efficiencies

Features:

  • Broadest intrusion prevention coverage
    Behavioral protection secures endpoints against unknown attacks; signature protection identifies and blocks known attacks; stateful firewall applies policies, bars unsolicited inbound traffic, and controls outbound traffic: application control specifies which applications can or cannot be run
  • Customized protection for web and database servers
    For web servers, use predefined shielding policies and rules to prevent attacks (such as directory traversal, Unicode, and denial of service attacks) and data loss; for database servers, examine database queries to prevent SQL injections and use shielding and policy rules to ensure normal functioning and prevent data tampering
  • Vulnerability shielding
    Automatic security content updates target specific vulnerabilities and recognize unknown exploits and stop them from executing; security content updates do not require system reboots; updating signatures is similar to updating .DAT files
  • Award-winning management technology
    Access centralized event monitoring reports, dashboard, and workflow with ePolicy Orchestrator; deploy, manage, and update agents and policies across various operating system and administer endpoint protection with one web-based console
  • Gather all the details you need for compliance processes
    Collect attack details, complete with timestamps, for prompt compliance reporting, auditing, investigations, and response; customized dashboards deliver real-time compliance status and produce clear, easy-to-read reports for auditors and other stakeholders

Testimonials

“McAfee's is the most complete offering of the three we examined. McAfee also has the easiest-to-use management suite of these products, something we feel is important.”

—Don MacVittie

Description:

Managing security and patching to defend against emerging zero-day threats that anti-virus solutions can’t handle is painful and costly. The volume of vulnerabilities increased by 45 percent since 20031. Thirty-two percent of zero-day exploits are released within three days of vulnerability discovery2. And, with the average enterprise taking 32 days to deploy server patches3, how do you keep up?

McAfee Host Intrusion Prevention helps you proactively protect servers from complex threats instigated by cybercrooks. Host Intrusion Prevention monitors and blocks unwanted activity and helps you maintain server uptime and protect corporate assets, like servers, applications, customer information, and databases. It uses multiple proven methods, including behavioral and signature analysis, a stateful firewall that sets security parameters based on how users connect to the network, and application control. Host Intrusion Prevention also offers specialized protection that addresses security requirements of web and database servers. 

Automatic signature updates and zero-day protection give you advanced vulnerability-shielding capabilities, so that you patch systems less often and less urgently. Better protection against exploits targeting new vulnerabilities means your IT staff has more time for planning, testing, and deploying patches. You’ll also find it easier to comply with legal and industry regulations.

Standalone products have cumbersome, non-integrated management platforms, making it difficult to deploy the comprehensive protection you need against today's blended threats. Host Intrusion Prevention integrates with McAfee ePolicy Orchestrator® for centralized reporting and management that’s accurate, scalable, easy-to-use, and works with other McAfee and non-McAfee security products.

1 National Vulnerability Database
2 McAfee® Avert® Labs
3 Forrester: “The State Of Server Operating System Security 2007—Administrators Patch An Average Of Eight Days Late,” June 2007

 

System Requirements:

Note: The following are minimum system requirements only. Actual requirements will vary depending on the nature of your environment.

System requirements

Microsoft Windows (English, French, German, Spanish, Japanese, Korean, Traditional Chinese)

  • Microsoft Windows 2000 Advanced Server with Service Pack 4 or later
  • Microsoft Windows 2000 Datacenter Server with Service Pack 4 or later
  • Microsoft Windows 2000 Professional with Service Pack 4 or later
  • Microsoft Windows 2000 Server with Service Pack 4 or later
  • Microsoft Windows Server 2003 Enterprise with Service Pack 2 or later, 32-bit and 64-bit
  • Microsoft Windows Server 2003 R2 Enterprise, 32-bit and 64-bit
  • Microsoft Windows Server 2003 Standard with Service Pack 2, 32-bit and 64-bit
  • Microsoft Windows Server 2003 R2 Standard, 32-bit and 64-bit
  • Microsoft Windows Server 2003 Web with Service Pack 1 or later
  • Microsoft Windows Server 2003 R2 Web
  • Microsoft Windows Server 2008, 32-bit and 64-bit

Red Hat Enterprise Linux 4.0 (32-bit only)
The following Red Hat Enterprise Linux 4 kernel modules are supported:

  • 2.6.9-22.EL
  • 2.6.9-22.EL-smp
  • 2.6.9-34.EL
  • 2.6.9-34.EL-smp
  • 2.6.9-42.EL
  • 2.6.9-42.EL-smp

Sun Solaris

  • SPARC Solaris 8, (32-bit or 64-bit kernel)
  • SPARC Solaris 9, (32-bit or 64-bit kernel)
  • SPARC Solaris 10

Supported web server platforms:

IIS 4.0, 5.0, and 6.0 (Microsoft Windows)

  • Apache 1.3.6 and later Web Server
  • Apache 2.0.42 or later Web Server
  • Sun ONE Web Server 6.0
  • Sun Java Web Server 6.1

Supported database server platforms:

  • Microsoft SQL Server 2000 (Windows) SP3a, SP4