Linked by Thom Holwerda on Tue 4th Apr 2006 18:53 UTC
Privacy, Security, Encryption In a rare discussion on the severity of the Windows malware scourge, a Microsoft security official said businesses should consider investing in an automated process to wipe hard drives and reinstall operating systems as a practical way to recover from malware infestation. "When you are dealing with rootkits and some advanced spyware programs, the only solution is to rebuild from scratch. In some cases, there really is no way to recover without nuking the systems from orbit."
Thread beginning with comment 111335
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Welll DUH!
by kamper on Tue 4th Apr 2006 19:19 UTC in reply to "Welll DUH!"
kamper
Member since:
2005-08-20

A few pointers to help make it easier and quicker: put all the latest apps you normally install (Firefox, firewall, office apps, etc) on a CDR. Keep it up to date. Most of the MS security updates also have the option of downloading to be run off the drive instead of updating directly across the net. Save those to another CDR as you update your Windows system. Then you don't have to download them all again when you reinstall.

A far faster way to do it is to set the system up the way you want it, then image it and use that to restore later.

Reply Parent Score: 4

RE[2]: Welll DUH!
by jfryman on Tue 4th Apr 2006 20:58 in reply to "RE: Welll DUH!"
jfryman Member since:
2005-07-06

The only problem I have with that is patch managment.

Take for example XP. Let's say that when XP was first released, a system was setup and imaged for backup. Things run smooth until today... a good run of about five years or so.

The image is restored, and within minutes a working computer is brought back to order... only to be infested within minutes of the exploits running around on the Internet.

So, with images, how does one manage patches? Even with XP SP1, there are plenty of patches that need to be installed to bring a computer up-to-date, and without them... the first plug into a network connection could bring the machine down quickly.

I'm sure there are solutions for those who know how to accomplish such things... but what about for Grandma and Grandpa? Even with an image and instructions on how to use it.... they restore an unpached image and it's game over before it begins.

Reply Parent Score: 1