MS to malware victims - sorry we can't help you

Post #250,921 by tuberculosis 4/4/06 2:50:39 PM Reply	MS to malware victims - sorry we can't help you [link\|http://www.eweek.com/article2/0,1895,1945808,00.asp\|http://www.eweek.com...95,1945808,00.asp] In a rare discussion on the severity of the Windows malware scourge, a Microsoft security official said businesses should consider investing in an automated process to wipe hard drives and reinstall operating systems as a practical way to recover from malware infestation. "When you are dealing with rootkits and some advanced spyware programs, the only solution is to rebuild from scratch. In some cases, there really is no way to recover without nuking the systems from orbit," Mike Danseglio, program manager in the Security Solutions group at Microsoft, said in a presentation at the InfoSec World conference here. ---------- Perhaps people should just switch systems. [link\|http://www.blackbagops.net\|Black Bag Operations Log] [link\|http://www.objectiveclips.com\|Artificial Intelligence] [link\|http://www.badpage.info/seaside/html\|Scrutinizer]
Post #250,923 by inthane-chan 4/4/06 2:56:12 PM Reply	What would you do if your Linux box got r00ted?
Post #250,927 by JayMehaffey 4/4/06 3:45:11 PM Reply	There is a key difference If somebody gets root control of your system the only 100% safe solution is to reinstall from known good CD's. That doesn't matter if your talking about Windows or Linux or an other OS. But there is a key difference. Getting rooted under Linux is a rare event, getting rooted under Windows is a nearly unavoidable every day event. Jay Some root kits have been working on the idea of installing to BIOS which would make even that insufficient.
Post #250,952 by boxley 4/4/06 5:21:47 PM Reply	getting rooted under linux is not reported as much how many casual users would even know they were rooted. thanx, bill Any opinions expressed by me are mine alone, posted from my home computer, on my own time as a free american and do not reflect the opinions of any person or company that I have had professional relations with in the past 50 years. meep
Post #250,946 by tuberculosis 4/4/06 5:02:17 PM Reply	The part that gets me is "a Microsoft security official said businesses should consider investing in an automated process to wipe hard drives and reinstall operating systems" YTF doesn't MS make such an automated system and give it away with their crummy bug infested screen doors on a submarine program loader? [link\|http://www.blackbagops.net\|Black Bag Operations Log] [link\|http://www.objectiveclips.com\|Artificial Intelligence] [link\|http://www.badpage.info/seaside/html\|Scrutinizer]
Post #250,961 by inthane-chan 4/4/06 6:04:11 PM Reply	It's called RIS + (minor) scripting. Microsoft has a tool called RIS which autodeploys Windows installations over the network. Combined with Active Directory, Group Policy-deployed .msi files, a reboot script and something that turns on network booting at certain times of the night, you can basically have the entire network rebuild itself every night. When somebody asks you to trade your freedoms for security, it isn't your* security they're talking about.*
Post #250,998 by bepatient 4/4/06 7:32:26 PM Reply	But now you are telling everyone they need network storage because the local hard drive is useless in these scenarios for file storage. Or, you could expect all users to ensure daily backups....har har har. If you push something hard enough, it will fall over. _{Fudd's First Law of Opposition} [link\|mailto:bepatient@aol.com\|BePatient]
Post #251,040 by broomberg 4/4/06 11:34:03 PM Reply	We've ALWAYS said that. If it isn't on the network, it doesn't get backed up. My company can deploy a fresh PC for me to use in about an hour. Non "standard" software is up to me to install, though.

Welcome to IWETHEY!