Posts by Nick Dinsdale

DR Vess, please calm down & think about what you are saying

CodeRed needs an endpoint to execute. If it can't execute, it can’t do any damage. Let me put it into laymen’s terms for you. Humans are inoculated against the flu. This doesn’t stop the flu from flying around in the atmosphere, but it can’t infect the end user.

I’m not suggesting don’t use AV, but within a corporate environments, there is no need to run AV on each desktop/laptop. Run only the free clear up part of Defender perhaps once a week or month. This method along with whitelisting will future proof the company.

Also if you had done your research, you would find that effective whitelisting solutions are centrally controlled by the IT dept and do not rely upon users to maintain their own whitelist.

Last point which made me laugh last night when reading your reply DR, You say you have to visit banks & other agencies to disinfect their machines. AHHAHAHAHAHHA was this becuase their AV failed. I do belive you have just proven yourself wrong once again

The naughties way of protecting against eighties throwback usb viruses

After reading all of the comments above and the original statement from Graham Clueley @ Sophos ref USB Virus risks....the one key point that everybody has conveniently overlooked, is the "Pro-active" approach to USB device security. I personally have depolyed thousands of seats of the Securewave Sanctuary Device and Appliacation Control solution that fixes exactly this issue ! And as far as I am aware is the only product of its kind. To draw an anolgy, why would you allow "any" device the opportunity to autorun in your corporate environment, rather than those that are "authorised".

After all...when I go shopping, I dont take a list of all of the products that I dont want to buy, but rather a list of all the items that I DO want to buy. The whitelist approach is the only way to fix this issue. Wake up Readers !!