I dislike they Symantec and Norton products - which are the same company.. I use a hardware firewall between the outside world and my office network, and generally have Microsoft's firewall junk turned off.
We do not allow Internet Explorer to be run by staff, which is the easiest way to eliminate the possibility of someone running an active-X control from an evil website. Browsing is to trusted sites only with Firefox.
All of our servers run Linux, with SAMBA (the windows file server program) set up for "share" level security.
With the above, all of our toys play well together :-)
V.
