Frank Bulk wrote:
Let me buy an appliance that handles that DNS/filtering/firewalling/updating/etc for owned machines, one that has MSFT's blessing, and that just requires policy-based routing and handing out special DNS server IPs.
Please see one of: http://domino.research.ibm.com/comm/pr.nsf/pages/news.20060327_virus.html http://www.informationweek.com/story/showArticle.jhtml?articleID=14200013 http://www.ercim.org/publication/Ercim_News/enw56/riordan.html and various others. Billy Goats can do exactly at least the jailing part and most likely there are other similar services that provide the same functionality. The upgrade portion really depends on the installed software base of course. Without somebody actually doing the upgrade and most likely not even removing the virus/bot etc in place, not much can be done in that area, especially in non-ISP environments where you don't have root on the PC. This portion at least quarantines the box and then allows you to simply instruct the user in the common methods of battling the problem that the user has. Greets, Jeroen