Re: Probably a silly Question

From: BOFH (john.hamilton70_at_ntlworld.com)
Date: 09/27/04 

Date: Mon, 27 Sep 2004 20:08:01 +0100

Thanks Karl...good advice. In fact, all good advice. What I'm trying to do
is to lessen the impact of intrusion software, particulary in light with the
impending threat of images containing virii. I know the problem won't go
away and things are only only going to get worse as the hackers get more
clever and resourceful.

I am moving more of our staff to mandatory profiles too to stop things
clogging up their profiles.

BOFH

<Karl Levinson [x y]>; "mvp" <levinson_k@despammed.com> wrote in message
news:75A7EAE1-0049-4182-A2DA-031C0ECF5610@microsoft.com...
> No, it won't. The two most popular categories of viruses right now are
email
> worms like Bagle and Mydoom, and network worms like Blaster. User
> permissions will not prevent either of these viruses from running on a
> machine.
>
> Reduced permissions can prevent a few things, like it may keep the virus
> from altering the registry so that it re-loads when Windows is restarted.
> This is a good thing, but the machine still becomes fully infected and the
> virus spreads just the same and remains in the persons' email inbox and/or
> hard drive. A virus infection that partially disappears when the computer
is
> rebooted the next day or week is still a virus infection, and can cause
> tremendously bad problems for your network.
>
> Even with reduced user permissions, a virus can still send out emails or
> packets that infect other machines and hog network bandwidth, remotely
> control the computer, search for passwords and credit cards, launch
attacks
> against other computers on the network, access and alter any document that
> the user can access, etc.
>
> Reduced user permissions is much more effective at permitting change
control
> to prevent users from installing unauthorized software and disturbing the
> default setup of the machine, but this generally requires a fair amount of
> investment in help desk and computer support personnel to make changes to
the
> computers as change requests come in. This also prevents users from
running
> Windows Update and patching their own machine, so be sure you have
something
> like Automatic Updates or another remote patching solution to keep the
> machines patched in a timely manner.
>
> More importantly for fighting viruses, make sure you are keeping patched
and
> running up to date antivirus.
>
> "BOFH" wrote:
>
> > If all my users are plain users, is it less likely our network will
contract
> > a virus?
> >
> >
> > BOFH
> >
> >
> >

Relevant Pages

  • RE: Securing a Local Network
    ... How much would it cost if a virus infected one ... be if a competitor hacked into their network and was able to access all ... Third issue is virus protection. ... can infect you from numerous other sources. ...
    (Security-Basics)
  • >>>> REMOVE MY <<<<
    ... Remove Secrurity From My Wireless Network ... How Can I Remove My Virus ... Remove My Search Tool Bar ... Remove My Bluetooth Desktop Icon ...
    (comp.lang.tcl)
  • RE: Using viruses in pen-test
    ... I wonder if there is some type of "fake" virus you could use in this case. ... David A. Swafford, Network Engineer ... I wish to know your views on "Using viruses in pen-test"I ... Cenzic Hailstorm finds vulnerabilities fast. ...
    (Pen-Test)
  • Re: If you used to use Windows or now used Windows less because of FreeBSD why?
    ... > but I've never had any virus or other malware on it. ... > network. ... then build a recommended s/w suite on that. ... toaster, not very expensive crap computers made to be less useful than ...
    (comp.unix.bsd.freebsd.misc)
  • Re: Lost access to home network
    ... virus scans on the CDs ... then beginning again with a fresh install. ... I have 3 computers on a network. ... Then post the logs to an appropriate forum where they specialize in ...
    (microsoft.public.windowsxp.general)