Got an interesting one for you /g/.
So a problem has just been dropped on my lap and I need some advice.
Business has hundreds of computers made in the early 2000's running winxp
They keep getting ye olde viruses and are being used as zombies in DDOS attacks against unrelated targets in close geographical proximity.
How would you secure these computers?
Some hadn't even been updated to the "latest" service pack.
Sorry if this is a stupid question, please consider in philanthropy
Other urls found in this thread:
wiki.NetBSD.org
faronics.com
mozilla.org
vulners.com
cvedetails.com
twitter.com
Install Commmonsense Antivirus 2019
more like install gentoo
install openbsd
Seriously, I would install a linux of some kind. If it's xp era support they need, wine can handle it. There is an old version of ylmf os in english (v3 iirc) that has a very accurate gnome/gtk2 xp theme. Just rip the theme from there and stick it in a Mate LMDE or Ubuntu install. You can even rip the current software they use and have wine prefixes for them. Don't forget to remove any non wine drives from the config.
Also, this isn't /g and there is a sticky, go fuck yourself, merry christmas.
Well that would be simple, but I'm unsure if antivirus would even support systems that old.
If it would problem solved.
Yes I deserved that burn
Thanks user
Personally find 2k/XP to be a rather stable business OS - just isolate them to the internal networks. For manual av scanning ClamWin still works.
I'm going to set up internal email and isolate the office computers - but they whine they can't use Google for checking spellings etc.
I miss xp, working with it was a blast from the past.
Human error is a big security issue, every computer was riddled with ransomware and Trojans when I arrived.
I might have to whitelist incoming mail as well but I can't find a long term IT officer.
Antivirus will have to be free or pirated--the office can't afford pens let alone licences.
Well, ClamWin is FOSS but can't protect from that
Only let the Google botnet pass through firewall when it's from any of those PCs. If they're isolated, anything past that point can be checked with ClamAV. Some places also prevent USB drives from working until they are whitelisted by tech support. Meaning no chucklefuck with an infected drive can compromise your system.