I haven't seen too much documentation on the effective use of the Windows 95/98 policy model (even though I AM a Win98 MCP). I know how to implement them, and from what I've been able to accomplish through just playing around it seems to me that you should be able to make a fairly secure Windows 95/98 machine with an effective use of the BIOS password, and using the Windows 95/98 policies and profiles. Based on a user profile, you can lock the box down to nothing but a disabled Start Menu and a blank desktop. I haven't heard too much hooplah (positive or negative) about the effectiveness of this configuration, however. Can anyone tell me any cons to the policies/profiles method?