White Papers

Web Monitoring

Web Monitoring for Employee Productivity Enhancement:
Employees both want and don’t want to have their Internet use restricted.
The key to success in gaining productivity and employee acceptance of the problem is the perception of fairness, clear goals and self enforcement. Web monitoring is good for business.

Generic Security topics

Security and SMBs
Security considerations for small- and medium-sized businesses (SMBs)
It is never possible to guarantee that a company is totally secure or that a breach will not occur, however implementing the latest tools and providing ongoing, end-user education will minimize those risks and allow companies to focus more on growing their business rather than repairing it.

Security Threats for SMBs:
Security threats are becoming increasingly sophisticated and harder to detect.
Many small and medium sized businesses are still unaware of the threats that exist. This guide to security threats for SMBs outlines the most common threats and how they can be dealt with.

Anti-spam

Attachment spam – the Latest Trend:
Spammers using common file formats as attachments for pump-and-dump scams.
This white paper explains what makes spam such an unbearable problem and how spammers have switched from image spam to using PDF, Excel and ZIP file attachments.

How to Block NDR Spam:
A large number of organizations have been victims of NDR spam that has an effect similar to a Distributed Denial of Service on the email system.
This white paper provides a technical explanation of NDR Spam and recommend solutions that can prevent or limit exposure to this kind of unsolicited email.

Why Bayesian Filtering is the Most Effective Anti-spam Technology:
Achieve a 98%+ spam detection rate using a mathematical approach.
This white paper describes how Bayesian filtering works and explains why it is the best anti-spam going.

How to Keep Spam Off Your Network:
What are the features to look for in anti-spam technology?
A buyers' guide to anti-spam software, this white paper highlights the key features to look for in anti-spam software and why.

Protect Your Users Against Phishing Attacks:
Need an introduction to phishing?
This article defines phishing and identity theft and explains why it is important to protect your users against such attacks.

Content Checking, Anti-Trojan and Anti-Virus

Why One Virus Engine is Not Enough:
Multiple virus engines are needed to reduce time lag between virus outbreak and virus protection.
This white paper examines why having multiple anti-virus scanners at mail server level substantially reduces the chance of virus infection and explores ways in which this can be achieved.

The Corporate Threat Posed by Email Trojans:
What do you need to know to protect your network against trojans?
Describing what trojans are and why they pose a danger to corporate networks, this paper discusses the need and method to protect your network from the threat of trojans.

Why You Need an Email Exploit Detection Engine:
The dangers of email exploits are many.
This white paper explains what email exploits are, provides examples of common email exploits, and discusses why a non signature-based approach (in other words, a different approach than just that of a virus engine) is needed to protect against email exploits.

Protecting Your Network Against Email Threats:
There is a real need for comprehensive server-based email security.
This white paper explains why anti-virus software alone is not enough to protect your organization against the current and future onslaught of email viruses and threats. Examining the different kinds of email attacks and issues that threaten today's organizations, this paper describes the need for a solid server-based email security solution to safeguard your network.

GFI MailSecurity's Deployment Strategies:
Which operating mode(s) to use in your network environment: a simple guide.
GFI MailSecurity can be deployed as an SMTP gateway or as a VS API version for Exchange 2000/2003. This technical white paper describes each operating mode and helps you decide which to deploy and whether you should deploy both.

BitDefender Virus Engine:
Facts & figures
This article provides key information about the BitDefender anti-virus engine and shows why you can rely on its technology to protect your network.

Kaspersky Labs virus engine:
Facts & figures
This article provides key information about the Kaspersky anti-virus engine and shows why you can rely on its technology to protect your network.

Email Archiving

Archiving Technologies
Email management, Compliance, Stubbing and Journaling
Email archiving is no longer an option for organizations and the key to a successful implementation is choosing the right email archiving technology for that organization.

Why Organizations Need to Archive Email:
The underlying reasons why corporate email archiving is important.
This white paper examines the different methods for deploying and managing email archive solutions in an organization. It also specifies key requirements that any full featured email archiving system should include.

The Best Way to Archive Email:
The Best Solution for Corporate Email Archiving
This white paper examines the different methods for deploying and managing an email archive solution in an organization and specifies the key requirements that a full featured email archiving system should include.

Network Fax Technology

Integrated Network Faxing is key to Improved Productivity and Information Security:
Network faxing reduces labor costs and increases information security.
This white paper details how integrated network faxing remains a relevant technology that can give you a business edge in an always competitive marketplace, providing higher productivity and helping you save thousands of dollars in labor costs and more.

Network Fax Technology:
Choose the right fax server software and hardware.
A fax server buyers' guide, this paper describes the features you need to look for in fax server software and why. It also discusses the type of fax server devices (fax cards) available and which is right for you.

Fax Routing:
An introduction to fax routing.
A look at how network fax packages are able to determine the right recipient of an incoming fax.

GFI FAXmaker for Exchange/SMTP 12:
An introduction to the architecture and deployment options.
This technical white paper describes the different ways in which GFI FAXmaker for Exchange/SMTP 12 can be deployed, depending on your mail server type/version and network infrastructure.

Sending Faxes in real-time over an IP Network:
How to benefit from Fax over Internet Protocol (FoIP) to send faxes.
This technical white paper gives an introduction to fax over Internet Protocol (FoIP) and explains the various usages and advantages of FoIP including Least Cost Routing (LCR).

Installing GFI FAXmaker Version 12:
How to install GFI FAXmaker version 12 on the same machine as the SMTP server (non-Exchange 2000/2003).
This article explains how to install GFI FAXmaker for Exchange/SMTP 12 on the same machine with IIS and SMTP mail server.

Security Scanning

PCI DSS Made Easy:
Addressing the Payment Card Industry (PCI) Data Security Standard.
This white paper examines the requirements to adhere to the Payment Card Industry Data Security Standard (PCI DSS), the implications of non-compliance and how effective event log management and network vulnerability management can help achieve compliance.

Patch Management with GFI LANguard N.S.S. & Microsoft WSUS:
A cost effective and easy solution for network-wide patch management.
This white paper provides an overview of how to use GFI LANguard Network Security Scanner (N.S.S.) and Microsoft Windows Software Update Services (WSUS) to keep your network automatically updated with the latest security patches.

Event Log Monitoring

PCI DSS Made Easy:
Addressing the Payment Card Industry (PCI) Data Security Standard.
This white paper examines the requirements to adhere to the Payment Card Industry Data Security Standard (PCI DSS), the implications of non-compliance and how effective event log management and network vulnerability management can help achieve compliance.

The Need for Effective Event Management:
Challenges, strategies and solutions to effective event management.
This white paper shows where GFI EventsManager fits in this picture and how it is an invaluable asset in the corporate toolbox.

How to Perform Network-wide Security Event Log Management:
Use GFI EventsManager for intrusion detection and essential auditing of security event logs.
This white paper explains the need to monitor security event logs network-wide and how you can achieve this using GFI LANguard S.E.L.M. (now GFI EventsManager). It is written by Randy Franklin Smith, author of the in-depth series on the Windows security log in Windows 2000 & .NET Magazine.

How to Detect Hackers on your Web Server:
Catch hackers red-handed through real-time security event log management.
A discussion of the methods used by hackers to attack IIS web servers, and how you can use event log management on your web server to be alerted to successful attacks immediately.

Deploying GFI EventsManager:
Calculate the number of instances required to manage your network.
This technical white paper gives an overview of how GFI EventsManager works and discusses installation and deployment issues while enabling you to calculate the number of GFI EventsManager instances required on your network.

Portable Storage and Device Control

Pod Slurping - an Easy Technique for Stealing Data:
Uncontrolled use of iPods, USB sticks and flash drives on your network poses a problem.
A common misconception is that perimeter security measures such as firewalls and anti-virus software are enough to secure corporate data residing on the corporate network. In this white paper, we explore how the uncontrolled use of portable storage devices such as iPods, USB sticks, flash drives and PDAs, coupled with data theft techniques such as 'pod slurping', can lead to major security breaches.

The Threats Posed by Portable Storage Devices:
Uncontrolled use of iPods, USB sticks, PDAs and other devices leave you at risk.
In a society where the use of portable storage devices is commonplace, there is a real risk to business. The threat that these devices pose to corporations and organizations is often ignored. This white paper examines the nature of the threat that devices such as iPods, USB sticks, flash drives and PDAs present and the counter-measures that organizations can adopt to eliminate them.