Windows Shared Computer ToolKit XP Details & Help

Author	All Replies
ZOverLord Premium join:2003-10-20 Minneapolis, MN 4 edits	Windows Shared Computer ToolKit XP Details & Help This FREE Windows Utility works on both XP Home and XP Pro and XP Tablet PC editions, other versions of XP and windows are not supported. Basically you can read the documentation for in depth information but I will do my best to explain the advantages and disadvantages I have found using and installing this for clients as well as helping others use this at home. The very first thing that needs to be explained is that this is an excellent tool even for home use. The documentation makes it seems like only very public systems like a library or school can benefit by the use of this tool, which is not really true. The core of this tool is the windows disk protection which requires 1 Gig ("Or 10 percent of actual disk or partition size, whichever is greater") of use in unallocated disk space, what this unallocated area does is keep 2 disk images ("One to revert back to, much like one would use a system restore point for") in the event of problems, or change of mind on a modified setting. This may at first seem like one is giving up a ton of disk space to use this product, however the results in safety and recovery under almost any malware or accidental change or deletion soon prove to be worth the space. The actual space of the toolkit itself is only about 5 Megabytes, you will need to be using a Genuine version of Windows XP and may be prompted to install the User Profile Hive Cleanup Service before being allowed to install the toolkit. If needed you can set a multitude of user restrictions based on user id, however you could just run as you are now and even with having Admin privileges once you restart your Windows drive is as it was before you logged on. This is because any changes of any kind are actually cached and not really written to your windows partition unless you authorize it. So, you can do anything as Admin and have peace of mind that no matter what malware you encounter or accidental changes or deletions are done, you will be as you were before whatever happened happened. Say you want to add software, because it would not normally be saved after the next restart ("Using this tool") it is as simple as changing the Windows Disk Protection to "Save Changes at Next Restart". Now say you go OMG what I installed had malware, I never noticed. Not a problem because you can always revert back to one disk image prior, by using F8. If you have extensive tests or changes to do for new software that may require multiple restarts, you can set "Retain Changes Indefinitely". The restrictions on a per user basis are extensive and very selective. You are not required to use them, but you may have a need. So far I have seen nothing easier to use, that protects a system with rock solid logic of not allowing anything to change anything on the drive that windows is installed on, without permission. Since any and all changes to the windows drive during any logon are cached once the system is restarted there is no overhead, the only overhead of this beside the 1 Gig ("Or 10 Percent rule") initial overhead is when you save changes. Persistence of user data can be done by selectively keeping user profiles on a disk or partition which is not located where Windows is installed. This allows the entire drive or partition where Windows is located to remain protected while allowing users to retain changes and without the need to save changes at restart. This could cause malware to be placed on that partition or drive, however since it has no launch ability it would remain dormant. I of course would still suggest using an A/V to be safe. Users can also be allowed to run and install programs outside of the protected area where Windows is located and even if they installed malware doing this Windows would still remain protected for all other users because said malware could never embed anywhere for other users. I have installed this in many client sites, and also for friends and family, and all I can say is there is nothing more user friendly and protective which provides this kind of flexibility. I would like to keep this thread going for people that would like to take a crack at installing this and trying it. I will answer any questions and may be able to save some others some time about configuring and using this. Pros 1. Complete protection of the entire partition or disk where Windows is located. It's like doing a total system restore in 2 seconds every restart, back to a known clean image of an entire partition or drive. 2. Awesome per user restrictions if needed, too many to list here. 3. A Malware testers dream, go anywhere even as Admin and have no fear. Because the entire partition or disk where Windows is located is copied to an un-allocated area on disk, would be very hard to infect. 4. Can be easily changed, including user changes as well as other features. 5. Lets you basically install anything, test it, and if you decide you don't want it, re-boot, and it's gone. 6. Even if you screw up and save an image, you can revert back to one image prior, so there is some forgiveness on that. 7. System Restore can still be used, but...you will need to do a "Save changes on next re-boot" the saved image retains your changes. Cons 1. The required disk space of 1 Gig ("Or 10 percent of the disk size where Windows is located") at first is hard to stomach, even if one decided not to keep using this toolkit, you can always reclaim that space back. But it is a large chunk of disk for some. If you are a DVD/CD burner kind of person, you would want to increase this space to about 2 Gig larger if you store Lots of CD and or DVD data. 2. When you change an image it takes about 20 seconds to complete. This can be even longer if you don't move the Windows paging file to a partition or disk other than the one Windows is located on. 3. Anytime you make a change to Windows, of any kind, or install new software ("A/V Updates are handled automatically, and you can add scripts to handle other updates if needed") you will need to remember to set Windows Disk Protection to "Save Changes On Next Restart" otherwise any changes will not stick after restarts. 4. The documentation at times can be confusing, however the User Interface is very easy to use. If anyone has any questions or needs help with setting this up just shout, if you want a FREE bullet-proof way to fortify your XP Home or XP Pro system, or need very selective user restrictions this rocks, both for corporate and home use. Instant recovery without even a mouse click, it all goes back as it was on the next re-boot. For more documentation about the toolkit please go here: »www.microsoft.com/windowsxp/shar···ult.mspx Don't let the Public places documentation on this fool you. It's a great protection method period and ....it's Free! The Microsoft Shared Computer Toolkit Handbook Overview can also be helpful here: »www.microsoft.com/technet/prodte···ult.mspx Here also is a FAQ as well: »go.microsoft.com/fwlink/?LinkId=47836 List of possible per user restrictions as well: »www.microsoft.com/technet/prodte···h04.mspx -- Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com
	to forum · permalink · · 2006-01-29 00:15:35 ·
astirusty Premium join:2000-12-23 Henderson, NV ·AT&T Southwest	said by ZOverLord : The core of this tool is the windows disk protection which requires 1 Gig ("Or 10 percent of actual disk or partition size, whichever is greater") of use in unallocated disk space, This sounds a little crazy... Say you have 120GB disk, with a 50GB windows partition. From the quote the utility requires 12GB of unallocated space. It should be 5GBs at most. Why does the utility need to monitor the other 70GBs of disk space?
	to forum · permalink · · 2006-01-29 00:54:45 ·
TeMerc join:2004-01-22 Phoenix, AZ	reply to ZOverLord Based on your experience are there any other things users should do prior to installing? Any disc cleaning, defraging so forth to make install any easier or of that nature? This seems to be a far better solution than what Mike was suggesting by far. This is going to be a good thread to keep an eye on for sure. I've linked to it from my place as well as provided the newsgroup link as well: »www.microsoft.com/communities/ne···edaccess Thanks for the info.
	to forum · permalink · · 2006-01-29 02:07:34 ·
SpannerITWks Premium join:2005-04-22	reply to ZOverLord MS Alternative to Deep Freeze etc Some useful contributions/experiences/screenies etc about in here - »www.wilderssecurity.com/showthre···&t=96996 Spanner -- I Only Know What I Know, But I'm Learning all The Time - Stay Safe - Spanner intheWorks/SpannerITWks
	to forum · permalink · · 2006-01-29 02:23:18 ·
ZOverLord Premium join:2003-10-20 Minneapolis, MN	reply to astirusty said by astirusty : said by ZOverLord : The core of this tool is the windows disk protection which requires 1 Gig ("Or 10 percent of actual disk or partition size, whichever is greater") of use in unallocated disk space, This sounds a little crazy... Say you have 120GB disk, with a 50GB windows partition. From the quote the utility requires 12GB of unallocated space. It should be 5GBs at most. Why does the utility need to monitor the other 70GBs of disk space? If for example Windows was on a 50GB partition, since the rule is 10 Percent of the drive or partition space or 1GB whichever is greater it would be 5GB. -- Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com
	to forum · permalink · · 2006-01-29 02:27:25 ·
ZOverLord Premium join:2003-10-20 Minneapolis, MN 4 edits	reply to TeMerc said by TeMerc : Based on your experience are there any other things users should do prior to installing? Any disc cleaning, defraging so forth to make install any easier or of that nature? This seems to be a far better solution than what Mike was suggesting by far. This is going to be a good thread to keep an eye on for sure. I've linked to it from my place as well as provided the newsgroup link as well: »www.microsoft.com/communities/ne···edaccess Thanks for the info. OK, this might sound insane but here goes. On some XP home systems using F8 any user can revert to the prior image, so for security reasons this is what I would do, once you have installed the toolkit and done testing, and are sure you have a good baseline with any user restrictions in place. 1. Turn Off Windows disk protection. 2. Do a disk cleanup, use the advance feature and remove all but the most current restore point, then also do the normal disk cleanup. 3. Create another restore point. 4. Do a defrag. 5. Turn on Windows Disk Protection. 6. Uncheck the check box in the getting started window in "Show Getting Started at Startup" unless you want this pop-up for the Admin ID for the toolkit to see this every-time in the future ("You can launch getting started via the program start menu when needed"). Change Windows Disk Protection to "Save Changes On Next Restart". 7. Restart. 8. Change Windows Disk Protection to "Save Changes On Next Restart". Again and restart. 9. Make some change and restart to make sure it does not stick and you then know your setup is working. The reason why is on some XP systems all users can use F8 and revert to the prior disk image, if that was missing some settings they might get by the protection, this way both stored disk images will be the same. That pretty much does it. You should be able to change, delete anything, suck up any type of malware even a rootkit, and when you reboot, Poof...it's all back to normal. Please note that if you allow users to have persistent data on other partitions or drives, or allow users to run programs on those drives, malware can still park there, but it will never be allowed to propagate to the Windows Partition, so you will have sand boxed it from embedding itself in Windows at least. Of course, I would still be very careful when adding new things but even then, you can revert to one prior disk image if needed, or even use a restore point or worse case use an A/V to remove whatever and get back to a stable disk image. If your careful, this is very hard to break. It is also VERY important to change your BIOS to boot first from disk, otherwise if a CD or floppy is before the Hard Drive in the boot order, someone might be able to still enter the system using these methods, also add a strong password to your BIOS setup and you are covered. My clients are doing back-flips over this, lol. If anyone needs help on how to create a template .bat file to apply to many users the same restrictions let me know, it beats doing it manually. -- Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com
	to forum · permalink · · 2006-01-29 02:46:58 ·
Khaine join:2003-03-03 Australia	reply to ZOverLord Re: Windows Shared Computer ToolKit XP Details & H Sounds interesting Thanks ZOverLord
	to forum · permalink · · 2006-01-29 04:55:18 ·
CalamityJane Premium,VIP,MVM join:2002-08-27 Eustis, FL	reply to ZOverLord Thank you very much, ZOverLord! Excellent write up and very thorough. This really looks interesting! I've bookmarked this topic and will be recommending this tool more often
	to forum · permalink · · 2006-01-29 08:49:13 ·
SoonerAl Old Enough To Know Better Premium,MVM join:2002-07-23 Norman, OK	reply to ZOverLord Re: Windows Shared Computer ToolKit XP Details & Help Thanks for this... I put in a plug for this thread over on the Microsoft forum... »Microsoft Help -- "When all else fails, read the instructions..."
	to forum · permalink · · 2006-01-29 08:57:38 ·
WMLGuy join:2000-06-05 Rockaway, NJ	I used this tool a couple of weeks ago at a client that had about 6 or 7 public pcs. Its been working great. The pcs have about 3 or 4 icons on the desktop and a restart button in the start menu. If there are any issues with the pcs, my client just reboots the machine and everything is back.
	to forum · permalink · · 2006-01-29 09:30:12 ·
dannyboy 950 Premium join:2002-12-30 Port Arthur, TX	reply to ZOverLord I ran across that last week, I thought I had posted and asked about it. Glad to know it works so well. As soon as I get this thing cleaned up I will install it. Will be checking with you for advice later.
	to forum · permalink · · 2006-01-29 10:36:51 ·
JollyStomper The Funky Feel One Premium join:2003-03-16 Right 'Dere ·Comcast Formerly ..	reply to ZOverLord Re: Windows Shared Computer ToolKit XP Details & H Question: From what I've read about this tool so far, this sounds like Deep Freeze except it's free. Would that be accurate? Mind you, I haven't much experience with Deep Freeze, but have seen it in action. This tool sounds similar. Thanks for all the info on this. Would be something to consider... -- "As I was sayin' buster, this planet ain't big enough for the two of us so... OFF YA GO!"
	to forum · permalink · · 2006-01-29 11:03:33 ·
fegul Premium join:2004-08-23 united state	reply to ZOverLord Re: Windows Shared Computer ToolKit XP Details & Help I would like to see some screenshots please
	to forum · permalink · · 2006-01-29 11:13:22 ·
dannyboy 950 Premium join:2002-12-30 Port Arthur, TX	You try looking thru here »www.microsoft.com/windowsxp/shar···ult.mspx
	to forum · permalink · · 2006-01-29 11:39:50 ·
tempnexus Premium join:1999-08-11 Boston, MA	reply to ZOverLord Re: Windows Shared Computer ToolKit XP Details & H How many resources does it take? Will it slowdown your windows experience? Is it transparent to the user? Is it transparent to the resources/performance? I mean there is a fine line between security and turning your newest greatest 398349393Ghz system in a 486SX25Mhz.
	to forum · permalink · · 2006-01-29 11:47:05 ·
fegul Premium join:2004-08-23 united state	reply to ZOverLord Re: Windows Shared Computer ToolKit XP Details & Help It wouldnt install on my computer because my drive on which the OS runs on is not C:
	to forum · permalink · · 2006-01-29 11:49:36 ·
vukodlak75 Nisam Ti Dude Premium,MVM join:2001-10-27 Beachwood, OH clubs:	reply to JollyStomper Re: Windows Shared Computer ToolKit XP Details & H This does sound like deep freeze (I use deep freeze). I'll have to check this out and compare. Now if I can find the time -- Never living, always surviving.
	to forum · permalink · · 2006-01-29 11:50:01 ·
ZOverLord Premium join:2003-10-20 Minneapolis, MN	reply to tempnexus said by tempnexus : How many resources does it take? Will it slowdown your windows experience? Is it transparent to the user? Is it transparent to the resources/performance? I mean there is a fine line between security and turning your newest greatest 398349393Ghz system in a 486SX25Mhz. How many resources does it take? Answer: The Initial un-named partition size of 1GB or 10 percent of the size of the Windows partition or disk. Is it transparent to the user? Answer: If there are restrictions, they will notice those. If you set it up that on Log Off a restart is required they will notice. Other than that yes. Is it transparent to the resources/performance? Really what is happening is that any changes are just being written somewhere else, so the overhead is minimal. However, when you make a change of any kind, such as add new programs, change user settings, add users, there is the extra step of setting "Save Changes on next restart" other than that there is no noticeable overhead other than the new image being created once at restart when you authorize changes. -- Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com
	to forum · permalink · · 2006-01-29 11:58:42 ·
ZOverLord Premium join:2003-10-20 Minneapolis, MN	reply to fegul Re: Windows Shared Computer ToolKit XP Details & Help said by fegul : It wouldnt install on my computer because my drive on which the OS runs on is not C: That should not be a restriction, what was the error, and during what process did it fail? 1. User Hive Install 2. Toolkit Install What was the exact error? -- Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com
	to forum · permalink · · 2006-01-29 12:15:47 ·
fegul Premium join:2004-08-23 united state	"Invalid drive C:\"
	to forum · permalink · · 2006-01-29 12:17:48 ·


Sunday, 05-Jul 15:44:52	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 9.5 years online! © 1999-2009 dslreports.com. page compression OFF