I work as tech support for a 550-person residence hall, and have to deal with all of the people that don't understand the concept of patching their computer or clicking "no" instead of "yes" in IE.
Here it is, a year after Blaster, and I still get dozens of new residents with blaster, sasser, gaobot, korgo, or one of the tons of others. I know the best way would be for them to just run automatic updates for every day as well as regular visits to Windows Update, but it's not easy to tell that to 550 people.
So I'm looking for an automated solution. Something I can stick in a .cmd file that will auto-run off a CD. I need to figure out how to do the following things without having to go through a GUI interface:
1.) Turn on the Windows Firewall on the LAN interface (which I'm not sure is even possible since there may be unique keys for each computer in the registry for the LAN device?)
2.) Turn on Automatic Updates for every day at 12pm (yes, I mean 12pm. They can deal with the intrusion if it means a more secure computer).
Unfortunately, I CANNOT add a line to run the SP2 installer due to some liability crap that is a long story, so I need to do this all pre-SP2. Does anyone have any ideas?
If I can't get the firewall working through registry I'll probably force an install of a freeware firewall, and if I can't get automatic updates I'm going to look into AutoPatcherXP (I believe that is the name), but I'd rather use the built in stuff than having to force install freeware.
Here it is, a year after Blaster, and I still get dozens of new residents with blaster, sasser, gaobot, korgo, or one of the tons of others. I know the best way would be for them to just run automatic updates for every day as well as regular visits to Windows Update, but it's not easy to tell that to 550 people.
So I'm looking for an automated solution. Something I can stick in a .cmd file that will auto-run off a CD. I need to figure out how to do the following things without having to go through a GUI interface:
1.) Turn on the Windows Firewall on the LAN interface (which I'm not sure is even possible since there may be unique keys for each computer in the registry for the LAN device?)
2.) Turn on Automatic Updates for every day at 12pm (yes, I mean 12pm. They can deal with the intrusion if it means a more secure computer).
Unfortunately, I CANNOT add a line to run the SP2 installer due to some liability crap that is a long story, so I need to do this all pre-SP2. Does anyone have any ideas?
If I can't get the firewall working through registry I'll probably force an install of a freeware firewall, and if I can't get automatic updates I'm going to look into AutoPatcherXP (I believe that is the name), but I'd rather use the built in stuff than having to force install freeware.