Solved

How can I lock HD and make writes to the C go to another partition? An eltoro type thing?

Posted on 2006-06-14
4
332 Views
Last Modified: 2010-03-05
Ok, I have another hard question I hope one of you know!

I want to be able to partition a HD with 2 partitions and lock the C drive so modifications to it will not appear when the machine is rebooted.  They are doing something simular here: http://honors.uta.edu/core/laptopInfo.shtml
I assume they are using a ram disk however I would like to do this with a partition.

I know with XPE and BART(I think); because the C drive is a CD ROM any changes "writen to it" are redirected to a ram disk.  I think its called the enhanced write filter.

So, Can anyone tell me first, How to redirect changes to C drive goto ram disk.
Second, is it possable to redirect writes to another real partition so that changes are only lost if the second partition are removed?
0
Comment
Question by:Hardwarez
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 16906279
Sounds like they are using something like DeepFreeze at the Honors College... http://www.faronics.com/html/deepfreeze.asp
There are many such programs out there, DeepFreeze is one of the better ones. Norton Go-Back is another... http://www.symantec.com/home_homeoffice/products/backup_recovery/ngb40/index.html
XP has system restore which is similar to the two links above, but much less robust, as it only monitors changes to certain files/directoryies

Bart boots up in a "dos" shell, and does indeed use the ram as a "ram-drive" Bart and other programs like it, for example the NTadmin reset disk, allow you to store the executeables in ram, and also to read/write to the actual HD.
http://home.eunet.no/pnordahl/ntpasswd/ This actually boots to a small linux kernel, and allows you to read/write to the registry.
Bart PE is a "stripped down" version of windows
http://www.nu2.nu/pebuilder/ http://en.wikipedia.org/wiki/Bart_pe  http://www.nu2.nu/pebuilder/intro/
-rich
0
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 500 total points
ID: 16906331
0
 
LVL 7

Expert Comment

by:Okigire
ID: 16913674
A few things here...

Deep Freeze (http://www.faronics.com/) is an excellent program.  Basically it keeps a copy of the original computer data, and when required it can restore this back to the drive.  Think about it as creating a disk imaging and restoring it on a regular basis.  They may be able to write to the drive, but whatever they do will be gone soonafter.

Another method is to hide the C: to non-admin users and move their home profiles to another drive (lets say, D:).  Most of the stuff they do, including temp files, etc will be done on the D:.

To lock out people from the C:, you can remove/adjust user permissions so the System has access to the C:, but not the users (atleaset to modify).  Be careful, however... if the system itself loses permission to access the drive, you won't be able to start up properly at all.
0
 

Author Comment

by:Hardwarez
ID: 16923668
Thank you both!
That is just what  I need for the laptops to prevent changes.

I also found sandboxie which runs I.E. and firefox in a sandbox or virtual environment.  No changes ever touch the OS in any way.  Two clicks and its back to brand new.. And its Free.. Then end of adware problems from the web I think!

Another program lets you install software on your machine, but redirects it ALL to a special folder.  It appears to be in your system, on the HD and registery, but when you delete or disable the "layer" every trace of it disappears.  What a neat trick to hack it into windows like that! There is a free version too! Altiris Software Virtualization Solution!

For super efficient storage use and very fast running I found EAZ-FIX which can restore a whole system in under 10 seconds!  It also seems to redirect everything to a virtual layer!  You can set snap shots and restore to any of them when you choose.

I will have to check out Deep Freeze.  I dont think I want every machine to reset every reboot..
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of you may be aware of the recent Google Docs scam emails that have been floating around coming from various people that you know. Here's a guide on identifying How To Identify the Scam Email You will see an email from someone you’ve had co…
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question