HTML Client & VirusScan

We just went live on ERP 8. We experienced poor response time with our HTML clients. We discovered when we turned off the VirusScan - Performance was incredible! However, we can't expose the system by turning off VirusScan on the desktop. Any solutions??

I received the answer from McAfee - listed below:

Disabling the script scan would be the best practice in your situation if the direct cause is due to Script Scan. This will cause no security risk as this is not a particular component we suggest must be enabled
within our Best Practice Guide downloadable via the www.mcafee.com site.

We use Norton AV Corporate Edition and came to a satisfactory balance by exluding specific file extensions for scanning on the client PCs. The extensions we excluded are PAK,OBJ,LIB,INF,H,C,?DB. We originally also had GIF, JPG and AVI file extensions excluded. But the recent JPG scare prompted us to include all graphics files in scans. These exclusions significantly cut down the package install times, yet kept the Norton AV active.

Has there been anymore news on this? If we ran HTML over citrix. Is there a third party software that would disable internet sites from being accessed from the citrix server except the websphere?

Use Norton's or go with a thin client

Your Network team should be able to block servers from acccessing the internet and allow only certified sites or intranet or trusted sites.

In Apache httpd.conf the Allow from directive.

http://httpd.apache.org/docs/1.3/mod/mod_access.html

You can do the same thing in IIS.



[ QUOTE ]
Your Network team should be able to block servers from acccessing the internet and allow only certified sites or intranet or trusted sites.

[/ QUOTE ]