• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 337
  • Last Modified:

How can I lock HD and make writes to the C go to another partition? An eltoro type thing?

Ok, I have another hard question I hope one of you know!

I want to be able to partition a HD with 2 partitions and lock the C drive so modifications to it will not appear when the machine is rebooted.  They are doing something simular here: http://honors.uta.edu/core/laptopInfo.shtml
I assume they are using a ram disk however I would like to do this with a partition.

I know with XPE and BART(I think); because the C drive is a CD ROM any changes "writen to it" are redirected to a ram disk.  I think its called the enhanced write filter.

So, Can anyone tell me first, How to redirect changes to C drive goto ram disk.
Second, is it possable to redirect writes to another real partition so that changes are only lost if the second partition are removed?
0
Hardwarez
Asked:
Hardwarez
  • 2
1 Solution
 
Rich RumbleSecurity SamuraiCommented:
Sounds like they are using something like DeepFreeze at the Honors College... http://www.faronics.com/html/deepfreeze.asp
There are many such programs out there, DeepFreeze is one of the better ones. Norton Go-Back is another... http://www.symantec.com/home_homeoffice/products/backup_recovery/ngb40/index.html
XP has system restore which is similar to the two links above, but much less robust, as it only monitors changes to certain files/directoryies

Bart boots up in a "dos" shell, and does indeed use the ram as a "ram-drive" Bart and other programs like it, for example the NTadmin reset disk, allow you to store the executeables in ram, and also to read/write to the actual HD.
http://home.eunet.no/pnordahl/ntpasswd/ This actually boots to a small linux kernel, and allows you to read/write to the registry.
Bart PE is a "stripped down" version of windows
http://www.nu2.nu/pebuilder/ http://en.wikipedia.org/wiki/Bart_pe  http://www.nu2.nu/pebuilder/intro/
-rich
0
 
OkigireCommented:
A few things here...

Deep Freeze (http://www.faronics.com/) is an excellent program.  Basically it keeps a copy of the original computer data, and when required it can restore this back to the drive.  Think about it as creating a disk imaging and restoring it on a regular basis.  They may be able to write to the drive, but whatever they do will be gone soonafter.

Another method is to hide the C: to non-admin users and move their home profiles to another drive (lets say, D:).  Most of the stuff they do, including temp files, etc will be done on the D:.

To lock out people from the C:, you can remove/adjust user permissions so the System has access to the C:, but not the users (atleaset to modify).  Be careful, however... if the system itself loses permission to access the drive, you won't be able to start up properly at all.
0
 
HardwarezAuthor Commented:
Thank you both!
That is just what  I need for the laptops to prevent changes.

I also found sandboxie which runs I.E. and firefox in a sandbox or virtual environment.  No changes ever touch the OS in any way.  Two clicks and its back to brand new.. And its Free.. Then end of adware problems from the web I think!

Another program lets you install software on your machine, but redirects it ALL to a special folder.  It appears to be in your system, on the HD and registery, but when you delete or disable the "layer" every trace of it disappears.  What a neat trick to hack it into windows like that! There is a free version too! Altiris Software Virtualization Solution!

For super efficient storage use and very fast running I found EAZ-FIX which can restore a whole system in under 10 seconds!  It also seems to redirect everything to a virtual layer!  You can set snap shots and restore to any of them when you choose.

I will have to check out Deep Freeze.  I dont think I want every machine to reset every reboot..
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now