Web bigger malware threat than email - ZDNet UK News:
http://news.zdnet.co.uk/0,39020330,39283339,00.htm
Dave Wade wrote:
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] >On Behalf Of Rob MOIR
Sent: 15 September 2006 13:50
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] OT: Protecting against Spyware/Adware
2) Spy ware hangs around for a long time. Our users used to have
admin
rights so there is a lot of "legacy" spyware around
Create a project to re-build these machines? If you've got a standard
deployment
image for workstations, this might not be too disruptive.
If only! I guess we have nearly 1000 "old" "non-standard" desktops,
which have a range of obsolete hardware, a wide variety of software
packages. The thought of re-building them is a nightmare......
3) We still have business critical applications that won't run
without
admin rights. Often these are tightly integrated in a large suite of
applications, e.g. the Call Centre management suit, so we still have
some machines where users have admin rights. I know this sucks but
there is certainly no cash available to replace these apps....
Is there a budget to deliver these 'special' apps via Citrix or at
least MS Terminal >server, hence isolating them on a locked down server
which users cannot browse the
web from, and allowing you to drop their local workstation access level
down to
something sane? Or to virtualise these apps on each desktop, again
isolating them and >allowing you to drop the local workstation access
rights down a notch or two.
Often they are things like the telephony or voice recording apps, or
things which run tills or doors or other oddball hardware. I doubt these
would run on TS or Citrix either.... Even worse we don't insist that new
apps run without Admin rights :-(
--
Robert Moir
Microsoft MVP for Windows Servers & Security Senior IT Systems Engineer
Luton Sixth Form College
Right vs. Wrong | Good vs. Evil
God vs. the devil | What side you on?
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ml/threads.aspx
**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. As a public body, the Council may be required to disclose this email, or any response to it, under the Freedom of Information Act 2000, unless the information in it is covered by one of the exemptions in the Act.
If you receive this email in error please notify Stockport e-Services via [EMAIL PROTECTED] and then permanently remove it from your system.
Thank you.
http://www.stockport.gov.uk
**********************************************************************
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ml/threads.aspx
--
Letting your vendors set your risk analysis these days?
http://www.threatcode.com
If you are a SBSer and you don't subscribe to the SBS Blog... man ... I will
hunt you down...
http://blogs.technet.com/sbs
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ml/threads.aspx
