Forefront Security for OCS Hotfix Rollup 4 was released at the end of March. The information on what was included in the hotfix is documented in the knowledge base for Microsoft here and Chris Norman has published a quick article on it as well http://voipnorm.blogspot.com/2012/04/forefront-security-for-lync-2010.html. So why am I adding to it, well I want to make sure that one thing that is mentioned in the KB for rollup 4 is highlighted. It is often seen that Forefront for Lync is a silver bullet for prevention of propagating malware via the Lync client. This is a huge step forward for Lync, but you want to make sure that you are not complacent. Security is always a multi-tiered approach and one solution is never enough. In this case the Forefront Security for OCS shows this to be true. You will see in the article that your clients are covered in Forefront for OCS so long as you have a 2 person IM conversation and you do a file transfer. As soon as you add a 3rd person, that changes and it is called out in the article. When you add that 3rd person, the session becomes a conference and as such it is no longer a peer to peer file transfer. Forefront Security will filter/scan a peer to peer file transfer, but NOT a file transfer via the conferencing service. It’s a small nuance for sure, but one that should be highlighted so there are no surprises moving forward.
Look for more product reviews coming soon!!!