• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

What Antivirus for POS computers?

S

slicksilver

Golden Member
I'm looking for recommendations which can be deployed on ten individual Point of Sale computers with the following :
  1. Computer do not have internet access so the definitions must be updatable offline.
  2. Should be very light and low on system resources as the configuration of these computers are as old as 5 years

The biggest source of viruses on these computers are because of USB drives.

Thank you in advance🙂
 
lxskllr said:
Do they need USB access? The lightest AV would be disabling the USB ports.
Click to expand...

Yes they need to backup their data to USB drives which brings another question...can you allow the writing to only one particular USB drive and disable usage of other USB storage devices?
 
slicksilver said:
Yes they need to backup their data to USB drives which brings another question...can you allow the writing to only one particular USB drive and disable usage of other USB storage devices?
Click to expand...

Start by disabling AutoInfect... um, I mean AutoRun. http://www.mechbgon.com/build/autoplay.html You can also check out Ariad by the security researcher Didier Stevens: http://blog.didierstevens.com/programs/ariad/

Secondly, if at all possible, switch to non-Admin user accounts and enable Software Restriction Policy in disallowed mode: http://www.mechbgon.com/srp This works on WinXP, Vista, Win7 and Win8, as long as they aren't the Home editions.

The above two tips arbitrarily slam the door on AutoRun attack vectors.

If you want to allow only particular USB drives, you can do that... lessee here... http://msdn.microsoft.com/en-us/library/bb530324.aspx (from the Windows 7 SP1 Security Guide). I have a system at work configured that way, it's a public kiosk setup and it's just a matter of time before someone plugs their flash drive into it.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top