I'm trying to break a system I've setup.
XP-sp3+patches
Non-propagating roaming profiles
Local profiles deleted on boot
User account is non-admin, with extra restrictions via group policy.
Autorun is disabled.
Internet access is through password protected proxy.
NO anti-virus...
Using IE7 I've gone to every dodgy crak and cerial site I could find, and installed everything on offer. Now I have 8 nasties running in memory, but they're doing nothing besides the odd unsuccessful attempt at connecting to the internet. I've plugged in several flash drives, none get infected with anything. Programs are functioning fine. Everything appears normal.
A reboot removes all trace of viruses.
The only thing I haven't been able to test is: plug in an infected flash drive, manually run whatever is on it, then insert a clean flash drive to see if it gets infected.
So, if anyone has any nasties in password protected archives and is willing to send them to me, drop me a pm...
Why am I doing this? The corporate types around here insist on antivirus being installed; I'm not liking the extra minute in boot time, and the delays when browsing the net while some server decides if the url is safe or not. I can't see a reason for running anti-virus on a highly restricted, well configured system, that restores itself at every boot. The only argument they have is the possible damage that can be done from the time of infection till the next shutdown. Network activity is barely noticable, and I've spent hours trying to infect my flash drive. Am I missing something?
XP-sp3+patches
Non-propagating roaming profiles
Local profiles deleted on boot
User account is non-admin, with extra restrictions via group policy.
Autorun is disabled.
Internet access is through password protected proxy.
NO anti-virus...
Using IE7 I've gone to every dodgy crak and cerial site I could find, and installed everything on offer. Now I have 8 nasties running in memory, but they're doing nothing besides the odd unsuccessful attempt at connecting to the internet. I've plugged in several flash drives, none get infected with anything. Programs are functioning fine. Everything appears normal.
A reboot removes all trace of viruses.
The only thing I haven't been able to test is: plug in an infected flash drive, manually run whatever is on it, then insert a clean flash drive to see if it gets infected.
So, if anyone has any nasties in password protected archives and is willing to send them to me, drop me a pm...
Why am I doing this? The corporate types around here insist on antivirus being installed; I'm not liking the extra minute in boot time, and the delays when browsing the net while some server decides if the url is safe or not. I can't see a reason for running anti-virus on a highly restricted, well configured system, that restores itself at every boot. The only argument they have is the possible damage that can be done from the time of infection till the next shutdown. Network activity is barely noticable, and I've spent hours trying to infect my flash drive. Am I missing something?
...