Win 11 system requirements and compatibility talk

Started 6 months ago | Discussions thread
Morris0
Morris0 Forum Pro • Posts: 22,070
Re: Win 11 system requirements and compatibility talk

abelits wrote:

Austinian wrote:

Sean Nelson wrote:

CAcreeks wrote:

But as abelits says, the problem of ransomware and corrupted backups is not yet solved.

Solved, perhaps not, but the mitigation strategy is backups to media which are kept offline.

That's my preferred solution, but for ransomware specifically, there's also "Controlled folder access" available in 10 and 11.

So far that feature mostly succeeded in annoying and confusing users.

When ransomware taken over the computer, the computer should be considered compromised, and the goal should be to recover as much data as possible and reinstall the system as soon as possible. Backup devices and NAS are in the best position to track changes and roll back everything suspicious because their firmware is isolated, and it can remain safe even if the rest of the computer or network is taken over. That, of course, requires them to implement automatic snapshots and incremental change tracking independently from hosts (and therefore they would have to provide much more space) and have firmware that is more secure than whatever is connected to them.

Automatically tracked and instantly accessible filesystem history was implemented on NetApp NAS in early 90's, and yet now, three decades later, there is neither a usable standard for it, nor any implementation available to consumers. Companies now don't like those features because it's slow and requires large amount of storage, however they also have better security and backups. Consumers and small businesses (and apparently medium businesses, too, judging by recent events) can't follow the same path -- enterprise backup systems cost an arm and a leg, and are supposed to be operated by a whole team of technicians, so NAS with those features make more sense.

Having had the Data Center Teams reporting to me at a large college, I can easily say that that approach using enterprise class systems works incredibly well.  In the rare instance that a department was compromised, our help desk told them to reboot from the network and chose load Windows 10 from the menu.  At the same time there network shares were restored and by the time there computers were up the files were back and they logged on and were were they were when they left work the day before.  Then we looked through the email on our exchange server and found out who fell for the fishing email.  The entire department was sent to security awareness training again and the department head made aware of who had been the victim (person in error).  We stopped most of the fishing emails at our firewall, email gateway, or desktop AV yet some still slips through.  It's almost always fishing emails or porn sites.

Morris

 Morris0's gear list:Morris0's gear list
Fujifilm X-T3 Fujifilm XF 18-135mm F3.5-5.6 R LM OIS WR Sigma 150-600mm F5-6.3 | C XF 90mm Fujifilm 50mm F2 R WR +12 more
Post (hide subjects) Posted by
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
MOD Austinian
Keyboard shortcuts:
FForum PPrevious NNext WNext unread UUpvote SSubscribe RReply QQuote BBookmark MMy threads
Color scheme? Blue / Yellow