[OPLINTECH] Potential Computer Vandalism
Chad Neeper
cneeper at level9networks.com
Mon Dec 2 16:08:28 EST 2013
I just stumbled across this page from Faronics. It was relevant to this
thread.
The first item on the list was an obvious one that I hadn't really thought
much about, but it totally makes sense! It's probably worth it to go around
to each computer and delete the restore points.
http://support.faronics.com/Knowledgebase/Article/View/327/8/what-are-the-best-practices-for-securing-a-workstation-with-deep-freeze
______________________________
*Chad Neeper*
Senior Systems Engineer
*Level 9 Networks*
740-548-8070 (voice)
866-214-6607 (fax)
*Full LAN/WAN consulting services -- Specialized in libraries and schools*
On Wed, Nov 20, 2013 at 1:11 PM, Ed Liddle <eliddle at marysvillelib.org>wrote:
>
> Here is the link.
> http://blogs.computerworld.com/the_down_side_of_hard_drive_passwords
> -Ed Liddle
>
> Marysville Public Library
> http://marysvillelib.org
> ------------------------------
> *From:* Ed Liddle
> *Sent:* Wednesday, November 20, 2013 1:10 PM
> *To:* Mike Hensel; oplintech at lists.oplin.org
>
> *Subject:* RE: [OPLINTECH] Potential Computer Vandalism
>
> There isn't much that can be done with a hard drive when a password is
> set on it unless you know the password. I did find some more detailed
> information about it here that may be useful. Its an older post but I
> suspect the info is still relevant.
>
>
> -Ed Liddle
>
> Marysville Public Library
> http://marysvillelib.org
> ------------------------------
> *From:* oplintech-bounces at lists.oplin.org [
> oplintech-bounces at lists.oplin.org] on behalf of Mike Hensel [
> henselmi at oplin.org]
> *Sent:* Wednesday, November 20, 2013 9:20 AM
> *To:* oplintech at lists.oplin.org
> *Subject:* [OPLINTECH] Potential Computer Vandalism
>
> OPLINTech Libraries:
>
>
>
> I’ve got a situation where one of my patron computers last week booted up
> with a Security Manager Screen that basically needed a password to boot
> from the hard drive. We run DeepFreeze on all of the computers. I
> eventually had to get another hard drive sent from Dell. Last night 5 more
> computers displayed the same message. We lock the computers down with
> policies as well. I have not seen any virus alerts pop up in Symantec. We
> run Symantec Endpoint. I don’t believe we had the bios locked down so the
> only thing I can think of is someone logged into the bios and setup an
> password on access to the HD which is leaving our machines dead.
>
>
>
> Has anyone run across this scenario and is there any easy fixes besides
> getting a new hard drive and rebuilding the machine. I’m trying to
> determine if it was a local hack (patron at each machine) or virus.
>
>
>
> Any help would be appreciated.
>
>
>
> Mike Hensel
>
> Director, MLIS
>
> London Public Library
>
> 20 E. First Street
>
> London, OH 43140
>
> www.mylondonlibrary.org <http://UrlBlockedError.aspx>
>
> 740-852-9543
>
> Mobile 614-325-1429
>
>
>
> _______________________________________________
> OPLINTECH mailing list
> OPLINTECH at lists.oplin.org
> http://lists.oplin.org/mailman/listinfo/oplintech
> Search: http://oplin.org/techsearch
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.oplin.org/pipermail/oplintech/attachments/20131202/6c0968b9/attachment.html>
More information about the OPLINTECH
mailing list