Originally posted here by morganlefay
It was handy when we got Nimda through an unpatched machine and it found an open share (user created..everyone full control ) The AV helped isolate and then rid the beast...from a central point.

Just my .02 cdn

MLF
That's exactly in the line I'm thinking. Unless you have it so tied down, nobody can hardly do anything, not even giving any room for the "human error", you do need an A/V solution to make up for the small percentage a virus can enter your network.

If you have it really secure and all, but no A/V to detect a virus, MLF could have gone forever with a virus without knowing it, and it could have caused some damage and maybe even propagation...