Ed Skoudis of SANS Internet Storm Center writes:

Anti-Spyware Solutions based on Infrastructure.

Today, we solicited ideas for tweaking infrastructure components to thwart the menace of spyware. I’m not talking about the latest anti-spyware products… darned near every vendor has released a specific behavior- or signature-based anti-spyware solution. Instead, we’re interested in hearing other non-product-specific solutions.

For example, we asked if you have tricked out your Web proxy to detect or even stop spyware? How? Have you diddled with your Windows file system perms to stop spyware while still having a usable machine? Have you stumbled upon the ideal Active Directory settings to stop the spyware slaughter? Please don’t send solutions like, “I just use this anti-spyware product, and boy am I thrilled.” Also, don’t send us an answer like, “I use Mac OS X… What’s all this spyware fuss about?” or the Mike-Poor-like solution, “First, insert a FreeBSD CD into your drive…” We’re interested in infrastructure-related solutions for Windows machines, where the spyware threat is the biggest.

I’ve summarized and lightly consolidated the responses we got below.

[Continue reading Anti-Spyware Infrastructure Ideas]