Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Security Software-Win2000 and WinXP

0 views
Skip to first unread message

EDTECH Editor-Eiffert

unread,
Apr 9, 2002, 10:24:32 AM4/9/02
to
From: Paul Charlesworth <pcha...@chartermi.net>

Hi All:

Does anyone have the names and web addresses of some effective but low cost
security software for Win2000 and WinXP. Iąd really like something that will
prevent students from accessing anything except the few applications I want
them to use. A really simple button interface like apple used to have with
their At-Ease software would be great.

I would also like to prevent students running applications from removable
media or installing software. My goal is to have a system that is fairly
safe without having a password.

Thanks,

Paul

---
Edtech Archives, posting guidelines and other information are at:
http://www.h-net.msu.edu/~edweb
Please include your name, email address, and school or professional
affiliation in each posting.
To unsubscribe send the following command to: LIST...@H-NET.MSU.EDU
SIGNOFF EDTECH


EDTECH Editor-Jones

unread,
Apr 10, 2002, 8:46:20 PM4/10/02
to
From: David M. Ikenouye <dmik...@ucalgary.ca>

Paul,

You could probably search the archives to see discussion on this issue
from the past:

My view on security of windows based systems is twofold (I'm open to
better names!)

1.) The "big wall" method
2.) The "bend but not break" method

The "big wall" attempts to restrict access to students by creating
impenetrable software/hardware walls that students cannot breach. Given
windows, this is almost an impossible task. There are hacks and
shortcuts and a whole host of ways to get in to change the desktop,
screensaver, lock internet explorer, delete icons etc. With win2k and xp
you have the ability to push down policies that will permit students
access to certain areas of the computer but not others. However, this
involves knowledge of logon on scripts and policies. There are also
issues related to maintaining server space for roaming profiles to be
saved.

Your desire to have no password makes it VERY difficult to restrict
access, since all the above suggestions are related to authentication by
a logon server which will allow enable the policies appropriate to the
students or teachers or to groups of students etc.

There are lots of software walls around, notably FoolProof and Fortres


http://www.smartstuff.com/index.html
http://www.fortres.com

We use Fortres and it works very well. It needed significant tweaking to
work well but because we bought site license with centralized server
control, it make life reasonably easy.

The "bend but not break" method allows students to basically do anything
to the machine that they want. However, whenever the machine is reset it
will return back to it's original state. Deepfreeze calls this
non-restrictive computer security.

http://www.deepfreezeusa.com/

Fortres also has a product called CleanSlate.

I use this in my classroom lab because I have grade 11 and 12 students
who appreciate the ability to manipulate the computer when I teach them
software and hardware components. Using Fortres locks the entire desktop
and as is too restrictive for my subject material. Hence the CleanSlate
route.

You'll have to pick the product that best suits your security philosophy.

Good Luck,

David Ikenouye
Bishop McNally High School
Calgary, Alberta Canada

EDTECH Editor-Eiffert

unread,
Apr 11, 2002, 9:51:23 AM4/11/02
to
From: Jim Hunt <Hu...@nwsc.k12.in.us>

You can use Windows 2000 Policies and a well made master image to do 99% of
what you want to accomplish. I would also suggest a product called Clean
Slate that resets the computer back to the original image after every
reboot. It is priced effectively per building.

http://www.fortres.com/products/cleanslate.htm

Windows XP Support is almost ready for the product.

Jim Hunt
Microsoft Certified Systems Engineer
Northwestern School Corporation

K12 Technology Support
http://www.k12techsupport.com


x-From: Paul Charlesworth <pcha...@chartermi.net>

>Does anyone have the names and web addresses of some effective but low
>cost security software for Win2000 and WinXP. Iąd really like something
>that will prevent students from accessing anything except the few
>applications I want them to use. A really simple button interface like
>apple used to have with their At-Ease software would be great.

<snip>

EDTECH Editor-Jones

unread,
Apr 11, 2002, 7:07:31 PM4/11/02
to
From: Tom Shuman <tsh...@ltes.org>

Windows 2000 and XP can be set up with only a user name. Students would
enter in a generic name established by you without a password. You then
would need to limit
their rights and privileges. If you are in a domain you would do this
on the Domain Controller. If this a peer to peer do it on the desktop
machines. It can be
troublesome so you may need to find someone with experience.

I would expect that however you decide to go you will find issues at
first. Establishing privileges is a mistake waiting to happen. But
when you get it right it is a
good a gold!

Tom Shuman
Lafayette Twp School
Lafayette, NJ
http://www.ltes.org

0 new messages