From: Ben Koren (benkoren@gmail.com)
Date: Fri Feb 10 2006 - 14:24:55 EST
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Yes, I have had plenty of experience with Deep Freeze, myself. All
around, it is a very good program. But if you wish to hear about how
great program it is, go to their web site.
As far as the not-so-great things, I have 2 things:
I have broken the security of older versions of Deep Freeze. This is
simply done with any kind of boot disk that can write to an NTFS
filesystem. I believe they fixed that problem in the latest version, so
I wouldn't consider this an issue if you are purchasing the latest version.
The 2nd, more serious, problem that I am currently in the middle of is
it's dislike for a domain environment. When a computer is frozen and the
domain trust password for a computer is reset, it not allow domain users
to log in until the problem has been fixed. A temporary solution is to
re-add the computer to the domain, logging in as a local administrator.
By default in my domain, for example, the password has a maximum age of
30 days. For me, that means that I have to go every workstation that I
have Deep Freeze on and re-add it to the domain (at an interval of no
more than 30 days). The workaround that Faronics (Deep Freeze) is
currently providing me is a reconfiguration of the domain controller.
This reconfiguration makes it so that the password of the workstations
doesn't get reset for x amount of days, where they recommend x is
somewhere above a few thousand days. Obviously this is a huge security
problem.
I am currently (the last 3 months) in communication with Faronics
concerning this problem. As of now, the have not given me a solution. I
am not saying don't purchase it because I cannot say that you will have
this same problem, but I do recommend that you discuss the issue with a
representative from Faronics before you make a purchase.
If you are not in a domain environment, forget all of what I said and
buy it - works great for that!
Ben
Steve Brown wrote:
> Hi all,
>
> Has anyone had any experience with a product called "Deep Freeze"?
>
> I'm looking at using it to secure some machines, but i was interested to
> know if anyone knows anything about, or has broken, the security on it?
>
> much appreciated
>
> Steve
>
> ------------------------------------------------------------------------------
> Audit your website security with Acunetix Web Vulnerability Scanner:
>
> Hackers are concentrating their efforts on attacking applications on your
> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
> login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
> futile against web application hacking. Check your website for vulnerabilities
> to SQL injection, Cross site scripting and other web attacks before hackers do!
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> -------------------------------------------------------------------------------
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)
iD8DBQFD7OiH/R84JYCsNLMRAgaEAJ4kY0BTZ4l9178EB1neD0ZjYwod5QCgi+Vd
mSBO4WEflCNHJ5xfNOrZTmI=
=u8uQ
-----END PGP SIGNATURE-----
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:29 EDT