There comes a point of diminishing returns. My goal is to protect my system, not so limit her options that the likelihood of malware damage is zero. As I said, she's not a mischievous child, bent on clicking on everything and anything just to see what happens. I think there are two primary threats resulting from her use: drive-by malware, and websites that put up a fake, "click here to close this box." Though I suspect there is malware out there that can get around a VM, I doubt that most of it can, and that which might is going to be concerned with identity theft rather than malicious destruction (I don't have computer-controlled centrifuges for enriching uranium ).

I really don't think this is necessary. Right now, she clicks on the FireFox icon when she wants to surf. With the VM, she'll click on the "Start" icon in Fences box with her name on it.

Whoa! Under no circumstances will I work in a VM. A lot of what I do is extremely CPU-intensive (that's why I bought my Uber Laptoppenstein). I'm not going to take a performance hit in the interest of perfect security (which, we all agree I think, is an oxymoron anyway).

That's the point -- I don't want to "force" her into anything. She's not going to go through my machines, deleting software, changing user permissions, overwriting the MBR, or, for that matter, installing software of questionable provenance, etc. She is going to visit websites that sound interesting to her but, nonetheless, are malicious and will attempt to install malware, either as a drive-by or through social engineering. The VM handles that.

I think, though, that Windows Virtual PC will do the job -- why go to the trouble?

Perhaps that's true. I'm still uncomfortable with the idea.

I've been using Windows, in some form, since 3.1.1 (the lack of networking in 3.1 made it a non-starter for me). Of necessity, given all of the quirks, bugs and idiosyncrasies of the OS, I've learned enough about it to build and maintain my own machines which, themselves, have some rather arcane configurations given what I use them for. As I said, "Damn it, Jim! I'm a lawyer, not a software engineer!"

Well, it's a matter of principal. We have iPods because they're unique products -- no other MP3 players have 160 gig hard drives that let you take your entire music collection with you. Otherwise, there are no Apple products in this house, and there never will be, absent another similar entirely unique product.

Well, there's that money thing again (and the space thing). Also, though I've only mentioned it in passing, my primary computer has $800 near-field monitors and a subwoofer. If I was so inclined, I could mix and master studio-quality CDs with this system, and the CDs that I do mix and master are close enough to studio quality that only a true audiophile or audio engineer would be able to hear the difference. I once left a CD from one of the shows that I'm writing in our home theater system and Mrs. PTravel played it without realizing what it was. When I came home she told me that she didn't know I had recorded an album back when I was an actor. Mrs. PTravel is a jazz fan and likes to preview CDs that she buys on-line, and also to research performers we may want to go see live. There is absolutely no way that even a very good set of computer speakers is going to approach the quality of the near-fields, and Mrs. PTravel WILL notice the difference.

Oy. Remote Desktop, and other better variants, live VNC, are slow, slow, slow. I use VNC to control the thin clients on my network -- it's fine for them as all I do with them is check on the status of the programs they're running. I also use it to install updates on my media computer in the living room (and to shut it off in case my wife forgets to do so when she's watching NetFlix). If I had to use a remote solution for all my computing, it would drive me insane and, no doubt, would do the same for Mrs. PTravel (not to mention that she likes to looks a web-hosted videos).

All my wiring (and switches and router) is gigabit. However, video is simply too much data, particularly when there are other traffic-intensive applications running, e.g. the mirroring of the two NASes is done with a thin client-based backup program.

The only other machine she'd ever use is the media computer in the living room, and that runs over a 500 meg power-line link (which actually gives closer to 300 meg). It does work fine for Netflix and HBOgo, but I can't see her hunched over the coffee table trying to browse with it. She will NEVER touch my music computer -- that's my security system for THAT machine -- though it wouldn't be practical for her to do so, as it's set up with my (piano) keyboard and she'd have to sit at the piano bench to use it. There's a media computer in my bedroom (a retired laptop), the two thin clients that run the FTP server, the MagicJack phone server, the NAS mirroring and a couple of other things, my laptop, the laptop that I gave her, and another retired laptop that, if I ever get the damn thing configured, will run FreePBX. Most of the computers on my LAN are busy doing things on their own and aren't intended for users.

Chrome OS sounds interesting, only because I doubt there's much malware written for it. However, as I mentioned, I want to get my wife used to working in a more "office normal" computing environment.

I previously had VirtualBox installed on my primary machine though, at this moment, I don't why I installed it. Oh, wait, I do remember. I have a couple of HP Touchpads with cyanogenmod Android installed on them. The initial install required installing the HP SDK on my computer and that, in turn, required VirtualBox.

I can, but the differences are enough that it would confuse Mrs. PTravel. She's very resistant to learning the underlying concepts -- she just wants to do what she does and doesn't care how the computer does it.

On this, I must disagree. I work in Word every single working day, and I'm familiar with the free alternatives. Though, for the most part, they're reasonable substitutes for Word, there are enough differences that make them impractical in a law office environment. As you noted, even just moving up through the various Word versions is painful enough (what in the world is Microsoft thinking, anyway?).

I need very tight integration between Acrobat and Word, as well as with Excel and, to a lesser extent, PowerPoint. There's simply no way around Word at this point.

It's easy enough to restore the VM from the backup. She's going to get malware as long as she keeps visiting Chinese sites.

That's what I think, too. Why would a hacker (or Russian syndicate) go to the trouble?

I have one machine on which I installed Win8, just to see what it was. Though I have it configured to boot into "classic" Win7 mode, and use that app, the name of which escapes me at the moment, that restores the Start button, and it DOES run pretty quick on the wimpy netbook on which I installed it, I have absolutely no plans to upgrade any of my machines to Win8, which offers no significant advantages to me at all.

Have you seen the pictures of the Oklahoma tornado damage?