Dennis J Harrison Jr wrote:
>
> And it is a time consuming affair when you run into all those specific
> point apps people 'need' to run their back end / pos.
> (Although I am sure after doing it enough times you would have some
> pretty generic templates built that can be mangled together to
> accomplish your needs)
>
One of the easiest things is to restrict the ability of executables to
run out of the Temp folders in the user profile directories. That
eliminates a large portion of "infections". Most of the time the
infection's source is a file downloaded and then executed by IE from
within the profile temp directories.
Unfortunately, most of time the problem isn't policy fixable. If users
willingly run files, like the Antivirus 2009 installer, you are boned.
You can't fix clueless.
As for it being a time consuming affair, unfortunately with the amount
of crap that is out there now, security done right has become a time
consuming affair. I remember the good old days when you worried about
a lot less crap than you do now.
J
___________________
Nolug mailing list
nolug@nolug.org
Received on 01/15/09
This archive was generated by hypermail 2.2.0 : 02/17/09 EST