My initial thought was...
1) Load OS
2) Install and update AV
3) Remove from any network / removable media
4) Install software
5) Scan
6) Nuke the box from orbit
but I'm not sure if I'm missing any risks. I know it's probably not a good idea to rely on a single AV, but they tend not to be good neighbours if you have two on a single machine. Which suggests using two AV would mean doubling the cost (time & resources) of AV testing for each release. Also, is there a risk of a virus writing itself to the boot sector (or hidden partitions) and so being immune to normal wiping? Or is that old hat now?
As always, any and all thoughts appreciated.
1) Load OS
2) Install and update AV
3) Remove from any network / removable media
4) Install software
5) Scan
6) Nuke the box from orbit
but I'm not sure if I'm missing any risks. I know it's probably not a good idea to rely on a single AV, but they tend not to be good neighbours if you have two on a single machine. Which suggests using two AV would mean doubling the cost (time & resources) of AV testing for each release. Also, is there a risk of a virus writing itself to the boot sector (or hidden partitions) and so being immune to normal wiping? Or is that old hat now?
As always, any and all thoughts appreciated.