Martin Zugec

In that case sorry, you wont be able to change files and create same checksum...

Ehm, sorry, I didnt understand that request. You want to unpack and pack again without any change? Why?

Well, I dont agree.... *nix based OS is not good for workstation (specially not for corporate use!) or intranet servers. They are however great for DMZ (I dont see a reason to use MS products like ISA there, only frontend Exchange) and for specially designed purposes. But when we talk about corporate environment, it is extremely hard to deploy linux intranet servers + workstations in normal environment.

I must agree with post about incorrect thread name. These technologies couldnt replace AV, they are "just" another security tools to protect PC

It is quite simple - using mandatory profiles you are trying to force users to use the same profile all the time AND not allow them to change anything. However this is NT domain approach. In AD the more professional way is to create roaming profile AND disallow change to serevr-side roaming profiles. Using this, you will achieve the same results, however you will still have the ability to modify your centralized profile for all users. This setting is available in user profiles in group policy.

Yep, it is hidden (it is service account), so there is IMO no reason to remove it

Yep, I know Reference Monitor for Linux and I thought ImmuneEngine is similar... However maybe you will surprise me

After unattended installation of windows I am using USD - installing software as service (so user is not logged in). However problem is that XP will went to hibernation/standby, even if there is some non-interactive activity So I would like to disable this functionality for some time, ideally with some application.

BTW if you use AD, DONT use mandatory profiles. They are only for backward compatibility with NT! Instead use policy setting to not save changes (and you can use GP with this setting)

No problem, I already sent PM to rhytmandsmoke about his demo, I am in fact quite interested. I want to say few things first. I HAVE NOT seen the demo yet. So it is my opinions, not anything based on facts. The product/concept is NOT new. However all previous products for exec lockdowns were not suitable for real life use. So I am really interested how this will work. When I saw previous products, they were GREAT for lockdowns (very secure computers), but NOT for home users and normal company workstations. I used this sometimes for kiosk based PCs or public PCs, now I am using SAFER for locking them down. So this concept is NOT bad - however it depends on implementation. It wont replace AV - it is just another kind of security soft. I am looking for ADS modification software for a long time, which is something quite similar. When you download something from the web, some informations are stored in ADS (from where, which security zone etc.) and I would like to see something similar to this in network environment. So I am kindly asking the members in this thread - dont criticize before you see. For most people this security concept is new. If rhytmnsmoke would try to sell it to us, it would be something different, however he is only trying to allow us to see it. Which is ideal case Because it is for sure (IMHO) kernel based app, we could develop our open source product similar to his I really appreciated what he does - and I think it is quite similar to Microsoft providing webcasts/live meeting demos for their beta products. Let us see how it looks like. Let us try the shareware version afterwards. Let us buy it if it will be interesting for us.

2vbBlackBox: fsutil AND wmic is only for XP and higher... If you want to use this method on w2k box, you must create vbscript, I can make it for you if you want

2suryas: Well, MS is moving really fast forward this days and Linux somehow freezed Things like WinPE (live cd), XP Embedded (make it your own way), SP2 (security first), Monad (do everything from scripts/cmd shell) etc... I am quite afraid about future of Linux. Most linux guys I spoke with are not administrators, at least not administrators at MS point of view The things they are trying to implement are not really needed by corporate or home customers About longhorn, I think you guys are underestimating it. At least from security and administrator point of view it will be great jump forward.

Yes, thats the way Mark made Process Explorer default task manager. I spoke with him about it, the problem is he revealed one security hole, that all (security guys) didnt wanted to speak of... Using non-debugger with image profiles

2rschnitz: Please post your sched task log first... 2slig: include pause in your script and login as user under whose account the schedtask is executing. You will see the output

It depends on computer. You can use WMI classes to access informations like this

2egrath: Nope It is fully patched, including office, .net and sql patches I just take care about him I had one system for "destroy" operations - beta software, beta SP2 etc... What really surprised me, that system hold on for more then one year! After that I decided to give him mercy shot - I began with kernel live debugging, system handle kills etc... About patches - I must say that peridically patched systems are much less vulnerable to "mass patch death"... So if you force patches every few weeks, the system wont have problems... If you dont patch for few years and you will try to generate one big pfr package, it will knock the system down on knees

In that case SBS is right for you. However AFAIR SBS must be only DC in domain!

I got 2 years uptime... And I am not talking about my rock-stable MS servers

It is simple (as for most of the tweaks). Download RegMon from www.sysinternals.com Run it, change highlights to Write. Do changes you want to do. Look what was changed. You can also use snapshot software, however I prefer this method...

BTW Why do you want to remove .NET account??? AFAIK it is similar to IIS_Guest, I dont see any reason to remove (but I see reasons why not remove it)

Again abandoned post by me I write something, forget about it and then, after few days/weeks/months I accidentally run into it 2SureKen: About USMT - you can configure it by yourself, so you can include custom .inf to migrate anything you want. I am using few custom infs in my migration scenario. 2Delprat: It is not migration like hardcopy of profile etc... It is dynamic migration, so it is ideal combination with reinstallation 2crashball: USMT is quite fine and easy, you will just need to spend some time working on templates. But after that, it is really great when you only sit down and look at your network how everything is running without any problem

I am quite surprised no one tried to sell unattended cd...

Well, why to make things complicated like this? You can simple disable service Themes - it will remove additional layer instead of partially disabling effects. I am using this on all my computers

It depends... Have many computers/users do you have?

That utility is available for long time, it is not keygen, it will just replace your current key with the new (but you must provide this new key). AFAIR Microsoft had similar utility for people who switched from pirated OS to legal