As attackers continue to target software packages such as Quicktime, amongst others, it makes one wonder if more companies should not clamp down on their software baseline installs. While Microsoft has steadily improved the security of their operating systems it only makes sense then for hackers to shift their focus. This is where having a sane software baseline is very important for a corporate network. There is really little need to install Quicktime to list but one example. Too many employees expect their company to also act as an ISP while forgetting they are there to work. Having a software baseline is one way to deal with not only employee surfing but also to help secure the network itself. Any of you guys have such a policy in place at work?