Originally posted here by catch
SawPer, you're applying the same logic to both setups. This is flawed, my method doesn't reduce the risk of acquiring a virus. My approach is to compartmentalize the system in a manner that prevents viruses from inflicting damage or propigating.
I understand what you are saying, but I still don't agree. You are trying to tell me that every single box is so locked down that if a virus actually ends up on one of the boxes, it won't be able to do anything.. ?

With all the tens of thousands viruses, that compromises a system in so many different ways, you are telling me that you have covered all the "holes" to 100%, so not one single virus can get through your "architecture" to cause damage or propagate? That's a pretty bold statement.

It probably makes a big difference depending on what kind of company/environment you have... but at a College where I work for example, I don't see how you possibly could make it that secure without an A/V solution.