From: John Beckett 

"Rich"  wrote in message news::
>    First, DRM is irrelevant here and unless you are trying to spread
> FUD I don't see why you would mention it.

As you well know, trusted computing means using hardware, firmware and OS
that are designed so that only approved software can be run. I was just
pointing out to Geo that one side of that coin is DRM, and the other is
having company laptops that you can be really confident don't have root
kits installed.

Thanks for the links that I will study some other time because I haven't
read about the quarantine service for quite a while. However, my
recollection is that an admin just gets to run scripts that (you hope) will
upgrade connecting systems to current patch level, *before* the client can
access the normal company network - like 802.1X with
'attitude'.

I don't think there is any way to avoid connecting machines that may have
root kits to the company network, other than requiring the systems to be
DRM capable.

John

--- BBBS/NT v4.01 Flag-5