Hello,
FIRST: I do not underestimate and undermine anyone's efforts on security. I also very much like it, and it's one of my e-hobbies.
Now...
Aren't we exaggerating?
Using all the stuff we use is like a girl wearing iron maiden with triple lock, plus soldering along the edges, plus wire mesh, plus barbed wire, plus plaited steel skirt, plus motion detectors, plus male repellants...
Isn't it too much?
Traffic monitors, filters, registry protections, rootkit tools, aren't we parannoying ourselves? For instance, router, plus software firewall, plus packet filter, plus traffic monitor, plus p2p filter, isn't that a super-overkill? Or processguard and regrun and winpantrol and online armor all together? Isn't that an overkill?
What about playing it simple?
Firewall + anti-virus + common sense?
I also read that many people often catch nasties here and there, get alerts from this software or that program, find, trace, kill, eliminate ... wage a constant war on spyware all the time ... How's that? Where do all this come from? Where do these people surf? Actively browsing each and every cws site with ie?
Tell me your views!
When did you ever have a ping from another ip?
When did you ever open an attachment and it had a virus, and I'm not talking about those hello spam mails?
When did you ever suddenly have something asking to install in the middle of the browsing?
When did you ever download a file that turned out to be a trojan?
Cheers all, peace and prosperity!
Mrk

P.S. Once again, this is not meant to be a slapdown, only a bit of taunting... :)

Quote from an article in my local newspaper yesterday:

--------------------------------
Fear Factor

Without a doubt, life insurance should be an important part of many people's financial plan.
Having said that, don't be scared into buying insurance you don't need.
-----------------------------------

Security is based on one's perception of threats. People set up computer security based on that.
It's all a matter of perception.

regards,

-rich
________________
~~Be ALERT!!! ~~

You still see state systems being hit by every virus today. Not so much as two years ago though. I am sure IT people that work for these state agencys now do a better job only after all the hard work done here on these security sites by free time giving people. I guess that is one reason I push for better suites, an all in one good product for home users without a ton a pop ups they do not understand. Sometimes the advice here is more deticated to more advanced users and we forget about the common home user but after hard work in getting the word out there, more home users are better educated now days.
Yes you may get by with "firewall, AV good surfing habits, and keeping your OS all up to date with fixes but it was not that many years ago, they would come here and say a software firewall is more talk of spreading fear among the less educated. let's see, i think it was @guard firewall at the time.

X country says. I think we should go back to slingshots to protect ourselves.
This world is much to advanced to start an all out war. They only did that in the dark ages. We sure don't need to develope stealth weapons anymore now do we? there is no evil left in the world. there are none left that wish to do harm to anyone these days, right?
Living in fear in alot different then living with courage.
I have never really been on the oh dear how many resourses does that program use band wagon. I always just chuckle when I see posts like, Wow it is the most awesome program in the world but since it uses a meg more resources, I sure will never use it. Got the poor programmers more in tune with resources then the best solution.

A well. somethings never change :-\


controler

MrKvonic and controller .

Very good . I like your posts . I am in total agreement . If a program is great , it should be used . Resource usage means little unless you computer is very old . As for being crazy over security . I have noticed it in here BIG TIME . It almost seems as people in here think that more is better . Security is a hobby now . Used to be a job . My goodness . People are very paranoid these days . I use programs because I can and I like to see what I can catch . It is cool . Again . Just a hobby now ;. Most in here think they HAVE to use many programs to be safe . I have one firewall that catches all malware , pestware , intrusions , viruses and anything else you can put into a group . But , I use other things along with it . Interesting thing is , it does NOT stealth my ports . lol . Yet , I am safe . Go figure . lol .

-{ Quote: "What about playing it simple?
Firewall + anti-virus + common sense?" }-
My preference - Firewall + Passive System Hardening + Common Sense.

AvianFlux
There ya go . Works for me !;)

How nice to see a few people waking up.....an talking up.......so if you don't mind may I express a small opinion.

In recent weeks I have had so many laughs while watching the blind leading the blind..........its so outragous thats a person can only laugh because to take it seriously makes a person realize how many in-secure computers begin at security forums.....an then remain in-secure.
Its become a matter of numbers.....the countless so called security experts who could not locate a toilet if one is needed suddenly leading noooob's to the wonderful land of computer security.....try correcting their mis-information an the wild mass of followers flame you silly.....something I also laugh at.

A person installs...lets say its "Enough is Enough" an there she blows...the person is not an expert in browser settings.....woopie
this is replayed everyday in every security forum on the internet. The true security experts have long went their seperate way in search of peace ...so it continues "the blind leading the blind"
Of course people don't need all those security products...its assanine to even think we do. Its smoke and mirrors and a hustle to boot......an "pawns" are always being planted in forums to panic the people into buying their product....an it works gloriously....
Spyblaster is the only spyware program installed on my computer....an mainly that was done to help promote it.......BUT NEVER>>NOT ONCE IN THE PAST FIFTEEN YEARS HAS SPYWARE ENTERED MY SYSTEM UNLESS I ALLOWED IT TO FOR TESTING PURPOSES>
now I am no smart @ss with all the answers an never would claim to be.......but someone may consider asking themselfs why my computer never gets infected with spyware......an you can bet there is not another person at this forum that surfs to the hard hitting places I do.
People can't even agree on a firewall to use.....but guess what kiddies........ if you were learning about security instead of running around looking for some stupid spyware program that you really don't need....then you would know the facts on firewalls.........
People have convinced themselfs that their computers are safe....gee whiz....do you honestly believe that........ just wait until the time when you sit there watching all those fancy security programs being turned off by a hacker an there is noting you can do.......other than pull the plug,
People use to take pride in learning and achiving....now its "GIMMIE A FREEWARE SECURITY PROGRAM>>>>THANK YOU>>I AM NOW AN EXPERT"
Where is that excitement to learn......instead of using all those crapware programs.........add to your self respect...instead of yet another program to your computer.....

Why don't YOU become the next security expert and help those lost souls being mis-led I sure as hell would not have made this post if I didn't already know there was people at this forum who can succeed and exceed........There are still a handful of real experts here....stop bickering with them an learn from them instead.......if CrazyM says something about a firewall don't be an idiot by arguing with him.....he's an expert......when you were still learning how to connect your computer......

BigC and Bubba have lots to share......Technodrome is great......the experts will step up.....when the wannabe's step down......


Thats All

How many people reading this know how to prevent their homepage from being hijacked without the use of a program to do it for you?

There is a simple code that you could enter that prevents hijacking....the old schoolers have used it for many years.....(an no, I wont post it....those interested can make the effort to locate it themselfs or someone else can post it...not me)

"Tell me your views"!

- OK

"When did you ever have a ping from another ip"?

- not since I installed the router per advice from this group.

"When did you ever open an attachment and it had a virus, and I'm not talking about those hello spam mails"?

- not since I convinced my business contacts to use security methods like mine.

"When did you ever suddenly have something asking to install in the middle of the browsing"?

- not since I became a security fanatic.

"When did you ever download a file that turned out to be a trojan"?

- about a year ago.


"Cheers all, peace and prosperity"!

- not since 2001.

doug6949

one look at your last post an I can see a up and coming security expert.....
best of luck on your adventure

To keep my PC secure i dont turn it on and keep in a box;)

Tom772

attaboy Tom........LOL

I always thought people used lots of security products simply because they aren't experts, don't know all the ways that spyware can infect a computer, and aren't certain that their security is enough, or what security is enough.

Calling people noobs etc who know they don't know enough (but are taking the effort to try and secure their computer, however it is achieved) is simply as silly as it is condescending and hypocritical.

When combined with an absence of any constructive offering...

Hi Vikorr

Bravo! Well said!



take care
rico

I just reformat alot *wink*

I run minimal, speed, response and enough CPU power for my other apps as compiler as well as video renderers are far more important for me. That doesn't mean I run naked, but just whats needed for me to not get infected, I also try and practice safer browsing.

-{ Quote: "How many people reading this know how to prevent their homepage from being hijacked without the use of a program to do it for you?

There is a simple code that you could enter that prevents hijacking....the old schoolers have used it for many years.....(an no, I wont post it....those interested can make the effort to locate it themselfs or someone else can post it...not me)" }-

I do not know any code to prevent homepage hijacking at all. I have been using Firefox and Opera for two or three years, and have never had my homepage hijacked. Shall I find out such code in order to become a security expert?

Oh Vikorr .
You are way too critical . Someone who does not know alot about security and seeks advice is a noob ! That is a fact . My goodness . It is not a bad thing . I was at one time . As were most that give advice . I think you are right as far as giving constructive advice . I have even recently asked a question in here about AntiHook .. Why ? I wanted info on a program I have never used nor tested . I am a noob to that program . I am not a noob when it comes to overall security . Many people are . What you are saying is that a 12 year old should not be called a child . As that is being cynical . A noob is a noob . People in here are generally trying to be helpful and I have yet to see anyone use that term in a condecending manner . In my opinion , there are more important issues in this forum then calling anyone down for using the term noob for someone who is inexperienced in computer security .

Hi porkie .
Do not know if you are joking or not so forgive me if I am too serious . Using Opera and FF , your problem is pretty much non existent . If you use IE , there is a way to keep your homepage from being hijacked. As for being an expert . You can certainly be an expert without knowing about that . lol . There are some experts that do not know about it . So , there ya go .
FF and Opera are fairly safe , at least for now .

Hi,
Apropos learning:
There is nothing wrong in not knowing; anyone can learn, provided they wish to learn. And that's the important thing - when a person is determined to educate themselves so they do not repeat their mistakes.
This site is a great jumpboard for anyone who wants to get into the security business or just get well oiled with usage of their home computers.
Beef, my idea was not to derise the people who have security knowledge, whether they are true or less true experts. It does not matter. As long as they are willing to help, that's what counts.
I aimed at assuaging fears that seems to soar high these days.
I think that most people overestimate the passive defense over their own part in the infection. 99.6% of infections come through deliberate misuse of the computers. It is very rare that a security conscious person would bring upon themselves some ugly infection. And even then, it's an easy solution. Format the hell out of the machine. Or burn it and buy a new one...
Life insurance was mentioned - unlike people, computers can die and ressurect all they want, you can easily replace parts of whole machines, cheaply relatively, unlike human bodies.
Now, seriously.
People with tons of security, could you please give me examples when your programs have stopped some nasty beast on the way in.
Klaxons blazing - intruder, intruder! Firewall icon goes red. ProcessGuard starts throwing up alerts. The anti-virus informs of an infected memory process. Ewido sounds its alert. SpywareGuard and MSAS simultaneously alert about hijacked homepage. WinPatrol kicks in a minute later ...
Anyone ever had this one? How did this happen, then? What were you doing when it occurred?
Mrk

-{ Quote: "...could you please give me examples when your programs have stopped some nasty beast on the way in...How did this happen, then? What were you doing when it occurred?" }-The only program I run is to prevent the unexpected running of an executable. Drive-by sites are a good example, and I've documented several.

On one occasion I was viewing several sites in a Google search, and this page evidently was code that attempted to cache when viewed:

http://www.rsjones.net/img/driveby1.gif


When I attempted to view the page source code, the viewer tried to open the cached file and was blocked:

http://www.rsjones.net/img/driveby2.gif


To make sure the file was prevented from downloading, I searched the cache:

http://www.rsjones.net/img/driveby3.gif

Normally, I'm pretty careful, but moving quickly through a Google list caught me off guard.

regards,

-rich

Hi,
Can you tell what sites were those?
Mrk

Vikorr

For your information I have more respect for a nooob "really" making an attempt to learn then for someone who has been coming to this forum along time an doing nothing more than being negitive...........an you Vikorr have been hanging around here long enough to have become someone productively teaching the nooob instead of wasting your time with posts such as the one you made.

~snip~ removed personal snipe ~ Blackspear


My outlook is extremely simple...."I still have faith in the humen race" There are people out there who have the pride and self respect to make the effort to learn....instead of making feeble excuses for being a failure they rise above circumstances an take control......an they become the "Leaders"
There are those wannabes who want nothing more than to keep the nooob slaves.......those are the ones who will post negetive comments.........otherwise why would anyone be upset over someone trying to encourage others to learn and better themselfs

Ladies and Gentlemen, let's keep the personal snipes out of this, and remain on topic.

Cheers

Blackspear.

I'll be leaving for the hospital briefly an want to make a comment now,


Let it be understood that I encourage users to use whatever software they deem needed to protect there computer.....just don't foolishly install useless duplicate programs.........an whenever you personally can add protection by entering code......do so.......you would be amased at how well your computer runs without all those duplicates
Try to teach yourself how not to depend on any particular software.......sure you need the obvious.....firewall etc....

let your experience with computers be a growing one. An for those who just don't want to be bothered with learning anything...thats fine as well......enjoy your computer.....just don't fall victim to that mass panic and wannabees

The irony is,while the original poster of this thread snipping at others for playing security expert he himself is guilty of doing so. After all what else is this thread but an attempt by someone who thinks he knows better, trying to guide all the other misguided people? Playing security expert.

PS Yes, I'm playing security expert now too, but I admit it.

PSS If "beef" is an expert. So is Notok.

-{ Quote: "I'll be leaving for the hospital briefly an want to make a comment now,

Let it be understood that I encourage users to use whatever software they deem needed to protect there computer.....just don't foolishly install useless duplicate programs.........an whenever you personally can add protection by entering code......do so.......you would be amased at how well your computer runs without all those duplicates
Try to teach yourself how not to depend on any particular software.......sure you need the obvious.....firewall etc....

let your experience with computers be a growing one. An for those who just don't want to be bothered with learning anything...thats fine as well......enjoy your computer.....just don't fall victim to that mass panic and wannabees" }-Beef,

Hope you get feeling better quickly!

As to the rest, it is solid advice. There is a difference between coherent layering as a structural strategy and randomly piling on application over application. A while ago we had a thread on You can only have 4 Anti-Malware apps: What would you run? (http://www.wilderssecurity.com/showthread.php?t=92411). This really should not be thought of as the barest coverage conceivable. It's possible to use 4 or fewer security applications and be well fortified; it's also possible to use a dozen security applications and be completely exposed. It's all in the selection, design, and how well it matches your personal exposure profile.

The fact is, one of the better AV's (BitDefender/KAV/McAfee/NOD32/Symantec-Norton) coupled with a decent router (my preference over a software firewall - but you should have one or the other) really covers the majority of the populace quite well. That wasn't the case 6-12 months ago when classical AV's did not handle spyware as aggressively as they do now. That does demonstrate some of the fluidity in the landscape. At that time, an antispyware app was quite beneficial - it still is as an on-demand checker for most systems, and it borders on necessity for some of the weaker AV's. As malware employs new approaches, dedicated applications typically lead the way in handling them. That will generally always be the case. Over time, one can expect incorporation of needed functionality into suite type applications. There are numerous examples of this beyond spyware in AV's. Whether a user opts to stay with the specialized coverage or a suite approach often falls to personal preference. What a user generally shouldn't do is to try to embrace both approaches - that can result in conflicts and system instability.

One other aspect that I would mention is that having tools at your disposal as required is different than having a extensive collection of realtime monitors constantly scanning and providing mutliple checks on your activity. I have many tools installed and ready to go if needed. However, very few are active all the time.

Finally, some of the more powerful tools available really are not suitable for casual users. These applications do provide the enhanced security advertised to anyone knowledgable in the subject matter of the alerts, but, in my experience, that generally does not extend to casual users. While it can be comforting to use the strongest tools available, it is as important to understand the use of that tool before installing it. If additional education is required beforehand, that should be pursued, and it is usually something a tad more involved than obtaining a list of preferred settings from a more experienced user of the product.

Blue

-{ Quote: "The irony is,while the original poster of this thread snipping at others for playing security expert he himself is guilty of doing so. After all what else is this thread but an attempt by someone who thinks he knows better, trying to guide all the other misguided people? Playing security expert.

PS Yes, I'm playing security expert now too, but I admit it.

PSS If "beef" is an expert. So is Notok." }-

Hi,
I was not snipping anyone. I was trying to "bait" people into presenting their views. There is not "right" approach here. There is no ultimate truth. I am just curious to know how many of us have had their security give any sort of warning. How many had the entire selection of programs blazing with warnings. That's all. I think that most of us have security arsenals far exceeding the actual everyday need. Almost like nuclear weapons.
I'm not a security expert. But I think I'm capable of suiting the internet to my needs. And like Zanetti said, sometimes 4 apps are enough and sometimes even 40 would not suffice ...
Cheers,
Mrk

Thanks Mr .
I saw it for what it was . That is why I chimed in . As for Beef , I hope you get to feeling better my friend . As for Beef and Notok being experts . They are both very good at saying what needs to be said . There are some in this forum that are experts yet , no way for you to tell who they are . Not that it matters but , I think Beef was fine for saying what he said . MrKvonic made excellent posts too . As with Beef , I had a problem with how someone in here approached this and so did Beef apparently . No need for anyone to get upset . Everyone just trying to get some points straight . I have said before that most in this forum are paranoid . I just like to play . Computer security was a job . Now , just a hobby . I can run a single application and be safe . Just one . I do not . I have for the last week as a test . As Mrkvonic said . It could be four or forty . As helpful as this forum can be , it is harmful as well as the noobs start reading posts and think they need everything ever released . That is how it looks in here . It really is simple . Try different apps and see what you like . Looks , speed , effectiveness , and so on . If you want 40 , load em up . If you want only 2 , you can do that and still be very secure . The choice is , and always has been , the users . The noobs need advice and they can find it here . Some " experts " need advice on some things too . Just all play together nicely and give advice when it is asked IF you have an answer . Many times , people try to be too technical and thus , confuse newer people . That is my 5 cents worth . HURRY UP AND GET BETTER BEEF ! The wannabees want you back so they can rag on you .

-{ Quote: "Hi,
I was not snipping anyone. I was trying to "bait" people into presenting their views. There is not "right" approach here. There is no ultimate truth. I am just curious to know how many of us have had their security give any sort of warning." }-Mrkvonic,

I more or less skipped your primary question, so let me handle that now.

I frequently have my security programs alert me. Now let me qualify that. It is invariably connected to assessing the risk associated with links others post on this site. In my personal surfing, it is extremely infrequent, but it typically occurs under the somewhat distressing circumstance of a google or other search where I am looking for somewhat vague information and I wander to a compromised or malware infested site. If one is seeing alerts more than a couple times per year, either the alerts involve relatively benign, but usefully flagged conditions (e.g. tracking cookies and so forth) or the user has a rather risky surfing or usage profile. My personal opinion is that most users underestimate the potential impact of an infrequent exposure. Hence, while I believe that true near misses or malware hits are infrequent, failing to adequately plan for them is foolhardy.

-{ Quote: "How many had the entire selection of programs blazing with warnings." }-Unfortunately, most alerts are benign and involve flagging of potential malicious actions that are safe in context. An example would be a registry monitor going crazy during an application installation or configuration.
-{ Quote: " That's all. I think that most of us have security arsenals far exceeding the actual everyday need. Almost like nuclear weapons.
I'm not a security expert. But I think I'm capable of suiting the internet to my needs. And like Zanetti said, sometimes 4 apps are enough and sometimes even 40 would not suffice ..." }-I'd agree, most of our arsenals more than address the threat. That is really as it should be. The issue is whether achieving that level of protection subverts the primary function of the computer - this is an all too easy a trap to fall into.

Blue

I agree, Even as a tester I would not recommend alot of apps installed at one time. In fact the efwer the better. That way there is no conflicts. I often reformat before testing a new app. Then will add an app here and there to see compatability issues.

There is a thread going on over at DSLReports most of you may be aware of.
Blake ( Linklogger) is setting of various cheap routers and inviting the whole world to try slip packets by any of them. He gives his IP address, leaves some without SP2 ect. A few have been able to slip some packetc through a few of them but at present he only has XP's internel firewall running and as of last night. Nobody had sliped any packets by the plain windows firewall.

Like beef says, you can tweak alot of your apps yourself just by seeking the knowledge. in this case, most the commands are done from the DOS prompt and alot of newer computer users never had to know about DOS.
Funny how MS still gives alot of demos using DOS commands. The latest rootkit video being the latest example.

I saw for noobs and pros alike, the future will be suites. Well intigrated suites
with the best protetion.
KAV, Norton, Mc afee to name a few have gone this route already.


controler

Mrkvonic my apologises about the sniping part, I was talking about someone else

I think part of the problem is that leaving asides genunie disagreements about how much is necessary (eg Blue's framework on what is needed looks logical, but even then i bet some would claim that it's not a necessity), the less experienced who are caught in what I call the "Do I have enough? stage" are misled when they see relatively experienced people seem to be running and discussing all kinds of new, beta and advanced stuff.

The natural implication of course is that they need these stuff too as well.

I define the "do I have enough? stage" as people who just recovered from an infection, found this forum and are determined to prevent this from happening again. They feel Violated! This stage can last for months if not years.

They are relatively new to the game , easily paranoid, espically when they read (and semi understand) about all kinds of threats , espically high level theorical threats, and constantly afraid they are not protected enough. You can see these people starting threads about "Do I have enough" , "Do I need antikeyloggers (or whatever class of software)?" or specific questions like "Is KAV better than Nod?" And woe betide if they get false positives (very likely if they run a lot of scanners), they will remove it before anyone can confirm they were really infected, and this pushes them into yet another cycle where they doubt they have enough protection.

"Testers" (people beyond the do i have enough stage, but continue to test new security software for fun, or for some insane desire to the endless search for perfect security) sometimes unwittingly contribute to this paranoia, all it takes is a couple of people talking about testing this new hot security software, and a lot of people will take it as an implict recommendation , and soon you will have "Is this <insert security software being discussed> necessary?" threads poping up.

Eventually most people will snap out of this phase, if they stay here long enough and knowledge starts to remove some of the fear. Most do learn the virtue of moderation, while others might continue to run all sorts of software, but when pressed would concede it's not strictly necessary, but more of a game. They are perhaps "testers", or people who just like to keep up with the trends.

Then there are those who suffer a blacklash, and start removing most of their security software, because they find they can surivive without it. They are the ones who start posting about how they can surivive without an AV, a firewall, etc etc.

This can lead to conflict espically with those who are still in the lower stages who have a overblown fear of unknown dangers, and others more knowledgable but who still feel implictly critised because they continue to choose to run these supposedly unnecessary security software.

Except for people in the "do i have enough" stage, i think those beyond it, play security expert without much harm as long as they don't threaten doomsday if security program x is not used.

Of course many of us , don't go through all the stages, some of us for example have always being interested in computer security, and come to the forum with more knowledge.

Hi,
@realnoob, nicely said (no need to apologize...).
Our approach to secuirty (not just computer, but in this case...) is governed by instincts. We want to be as safe as possible. And sometimes, this can drive us over the edge. People should always remember that computers are only dumb machines. We have our personal data to protect (porn etc...), but these can be saved to disks. After that, you can shotgun your computer. Format until the hard drive runs thin. When a person reaches the state when he knows he masters the beast and not the other way around, security will become efficient. People will use what their sense governs and not what their fear does, testers and hobbyists excluded.
Apropos DOS and command line, it is really useful that people try it, even those that never used DOS. It will give the user a feeling he controls the machine with smart little commands rather than play with buttons on a GUI beneath which all hell breaks loose.
Mrk

My visit to the hospital reveal severe bronchitis......looks like I'll be staying in bed a few days.





realnoob


"PSS If "beef" is an expert. So is Notok."

Are you sure that you want to make this a personal issue ? That would be rather pointless since you know absolutely zip about me...so your comments have no value


Actually your last post I thought very good.....it made lots of good sense.........making such a post does far more better than taking a swipe at me.





All in All the posters and their comments have been exceptional......things are being put out front for discussion that should have been brought up years ago..........an the highly intelligent manner its being posted in..... certainly deservers respect.....as do the posters.....

This is what needs to be done.......an thats part of what I am saying in my statements. An you can damn well bet I know every real security expert at this forum.........an everyone who is not. The posters in this Thread are good people capable of giving good advice..........an I would take their advice in a heartbeat..........BlueZannettiis as honest as they get.........
an controler has been around for years trying to help.....,,

No one is suppose to have All the answera.........but a nooob should not be left to the mercy of some worthless wannabe either........so take a real good look at who is posting here.....and if push comes to shove back them up...........this is your forum.......a forum for good people

I have no desire to be a security expert.....thats never been my goal.....but offer the years the security experts taught me more than I ever dreamed possible.............an all I would like to see is the "good guys" doing the same for every nooobe that drops in..........an not just sit idle while some wannabe mis-informs the nooob

realnoob, this applies to you as well.......you are intelligent.....awear of the situation......you speak well.....you are the type of person for the job......not someone like me.........

hollywoodpc...sure hope you hang around the forum....you have a special gift of insight thats needed here


Mrkvonic....you have the courage to ask the hard questions....thank you

It's fairly simple and easy to understand.

-{ Quote: "Ladies and Gentlemen, let's keep the personal snipes out of this, and remain on topic." }-

:lurking:

-{ Quote: "When a person reaches the state when he knows he masters the beast and not the other way around, security will become efficient. People will use what their sense governs and not what their fear does, testers and hobbyists excluded.
" }-
The hammer that hits the nail.

At the heart of paranioa is lack of control.

At the heart of lack of control is ignorance.

Regards - Charles

Sorry about the illness Beef .
All in all , it has been productive . And , I am in COMPLETE agreement with you Beef .
And beef . I think what you have is bacterial but , you may want to get a second opinion about your illness in the antivirus area . Just in case it IS a virus . The wannabees might have some good advice .

-{ Quote: "Sorry about the illness Beef .
All in all , it has been productive . And , I am in COMPLETE agreement with you Beef .
And beef . I think what you have is bacterial but , you may want to get a second opinion about your illness in the antivirus area . Just in case it IS a virus . The wannabees might have some good advice ." }-

Hi,
Maybe you should upload your medical results to jotti. They might discover that you do not have a bronchitis virus but a bronchitis trojan dropper...
Mrk

I could but , It is probably a virus . lol When Beef comes back , we will let him decide . Hope he does not think you are a wannabe Mrkvonic . If he does , for sure he will not go to Jotti's . ;D ;D 8)

Post by realnoob removed.

Last reminder Ladies and Gentlemen, any further personal jibes and this thread will be locked.

Blackspear.

Just a comment to all..., there's no real purpose implicitly challenging anyones unspoken credentials, nor is there any gain trotting out unverifiable claims of credientials. What we say here and elsewhere in discussing security should stand or fall on its own merits whether we are an objective subject matter expert or not.

To borrow a medical analogy playing on Beef's current state, when we go to an aid unit, we may see a doctor (technical subject matter expert) or a nurse practicioner (operational subject matter expert). Alternatively, we could discuss our condition with a random person in the street. In all three cases, we generally don't have direct personal knowledge of the technical background of any of these people. We typically have confidence in the advice of two of these folks based on the context of their position, despite their vastly different levels of training and global skill sets, and would probably avoid the third option. So it is here. There are the genuine technical subject matter experts who can discuss anything within their portfolio is detailed technical terms - there are certainly only a few of these. Then there are the operational experts. Significantly greater in number, narrower in focus, relying on experienced based knowledge. Within their expert portfolio, they may provide better operational advice than the academic technical expert working somewhat outside their area of direct expertise. An operational expert won't be able to dissect the inner causes of problems, but they will be able to get you back on your feet and on your way. Finally, like your friends cajoling you to visit a doctor, the men and women in the street will probably also voice an opinion. In most cases it will be a solution for what is perceived as similar symptoms that they have tried with success in the past. If your health returns, does it really matter where the advice ultimately comes from? No, good advice is good advice. At various times we've all of us have likely provided valued assistance to those in need, as well as dispensed pearls of wisdom which in hindsight were ill-considered. I will personally and publically plead mea culpa to both.

In my day job, I'm a PhD scientist in a technical discipline. I direct a fairly large R&D section and personally lead some large project teams. The range of folks under me span high-school graduate only up to fellow PhD's. The fact of the matter is that some of the lowly high school only graduates with 20 years of operational experience demonstrate higher proficiency levels in their technical work area than reasonably fresh PhD's. They can't always articulate the arcane technical rationale for their approaches since there knowledge is cast by experience, but many times I trust their judgement more, and I can provide that technical analysis for them if needed. Such is the lot here. Experts can indeed provide poor advice, while the non-expert may forward the more reasonable operational approach to take. Dry credentials are not everything.

Lastly, realnoob's "four stages of security awareness" does strike a bit of a chord with me. I see it reflected in many posters here and elsewhere. I can't imagine any other progression myself, it's that way with knowldedge acquired in the course of crisis. On the other hand, aggressively confronting qestionable advice from those whose training is in progress is counterproductive, while offering a reasoned counter analysis can be educational to all. I try to personally refrain from labeling anyone a wannabe, since I sincerely hope everyone is a wannabe of some sort. Even the expert should want to be a better expert. Expertise is not static, it has to be renewed to changing circumstance.

Comments offered by anyone here should be viewed as presenting either an opportunity to learn, or an opportunity to teach by use of counterexample. We shouldn't let these opportunities fall by the wayside.

Blue

PS - Lest it be unclear where I place myself in expertise - I'm a battle weary man-in-the-street. No more, no less...

-{ Quote: "Just a comment to all..., there's no real purpose implicitly challenging anyones unspoken credentials, nor is there any gain trotting out unverifiable claims of credientials. What we say here and elsewhere in discussing security should stand or fall on its own merits whether we are an objective subject matter expert or not.
" }-

Well all i can say is, I didn't start this. :) If you want to label others noobs and wannables, be prepared for others to label you the same!


-{ Quote: "
To borrow a medical analogy playing on Beef's current state, when we go to an aid unit, we may see a doctor (technical subject matter expert) or a nurse practicioner (operational subject matter expert). Alternatively, we could discuss our condition with a random person in the street. In all three cases, we generally don't have direct personal knowledge of the technical background of any of these people. We typically have confidence in the advice of two of these folks based on the context of their position, despite their vastly different levels of training and global skill sets, and would probably avoid the third option. So it is here. There are the genuine technical subject matter experts who can discuss anything within their portfolio is detailed technical terms - there are certainly only a few of these. Then there are the operational experts. Significantly greater in number, narrower in focus, relying on experienced based knowledge. Within their expert portfolio, they may provide better operational advice than the academic technical expert working somewhat outside their area of direct expertise. An operational expert won't be able to dissect the inner causes of problems, but they will be able to get you back on your feet and on your way.
" }-

I agree that in normal circumstances, you can't tell how good someone is, just by looking at his posts. Most of the posts discuss generalities, which is subjective. Anyone here can give a semi reasoned answer to the question "Do I have enough?".

Though you do at times gain a sense of how lacking someone is , when they start posting patently false information in response to arguments and I don't meant false because they don't try to be inaccurate but false because they clearly don't understand the fundmentals.

Of course, these same people sometimes call others noobs and wannables...


-{ Quote: "
Lastly, realnoob's "four stages of security awareness" does strike a bit of a chord with me. I see it reflected in many posters here and elsewhere. I can't imagine any other progression myself,
" }-

You need more imagination. :) And I specified 3 stages really. At the fourth stage, they leave Wilders for more technically oriented channels.

At stage 3, people do react differently though. The "testers" (Vikorr,Notok) and the minimists (Remus) for example.

-{ Quote: "
I try to personally refrain from labeling anyone a wannabe, since I sincerely hope everyone is a wannabe of some sort. Even the expert should want to be a better expert. Expertise is not static, it has to be renewed to changing circumstance." }-

And I thought i was long winded. But yes, that is what i'm saying, but apparantly it's against the TOS or something, since people keep deleting that.

-{ Quote: "
Comments offered by anyone here should be viewed as presenting either an opportunity to learn, or an opportunity to teach by use of counterexample. We shouldn't let these opportunities fall by the wayside.
" }-

On second thought i agree with beef, we should stop wanabes and noobs from posting advise. :P

-{ Quote: "Quote from an article in my local newspaper yesterday:

--------------------------------
Fear Factor

Without a doubt, life insurance should be an important part of many people's financial plan.
Having said that, don't be scared into buying insurance you don't need.
-----------------------------------

Security is based on one's perception of threats. People set up computer security based on that.
It's all a matter of perception. " }-word 8)

I know little about all the security programs, and I find this and similar discussions helpful, although I do not understand all that is said. I have recently uninstalled some programs that no doubt are good, but duplicate what I have. I am not sure but what I am still “over secured.”

I currently have running full time, Bit Defender 9.0, LooknStop, Ewido, Counterspy, Snoopfree, UnHackMe, Win Patrol Plus. In addition, on demand, I have Spyware Blaster, AdAware, Spybot S&D, Spyware Doctor, Dr Webb Cureit, and CCleaner.
I am also behind a NAT hardware firewall.
My surfing is very safe, and I never go to "risky" sites.

My computer runs well, and there is no conflict except sometimes with BD when Counterspy has a major update or version change, such as a week or so ago. It gets corrected and all is well.
There are so many programs, and so many praises for them, that it is difficult for some of us to determine what we really need. We do get excellent advice from Wilders and a couple of other forums. Thanks all.

Jerry

-{ Quote: "Well all i can say is, I didn't start this. :) If you want to label others noobs and wannables, be prepared for others to label you the same!" }-Personally, I find it more productive to engage the points made, rather than the person making the points.
-{ Quote: "I agree that in normal circumstances, you can't tell how good someone is, just by looking at his posts. Most of the posts discuss generalities, which is subjective. Anyone here can give a semi reasoned answer to the question "Do I have enough?".

Though you do at times gain a sense of how lacking someone is , when they start posting patently false information in response to arguments and I don't meant false because they don't try to be inaccurate but false because they clearly don't understand the fundmentals." }-As you probably realize, the most difficult aspect of any discussion of complex systems is appreciating where your knowledge ends and speculation/misinformation begins. Things can seem quite reasonable and still be patently wrong.
-{ Quote: "Of course, these same people sometimes call others noobs and wannables... " }-That is an unfortunate reality. We do try to reign it in as needed.
-{ Quote: "You need more imagination. :) And I specified 3 stages really. At the fourth stage, they leave Wilders for more technically oriented channels." }-You left out the stage at initial violation. They're not even ready to consider that a concept of enough security exists.
-{ Quote: "At stage 3, people do react differently though. The "testers" (Vikorr,Notok) and the minimists (Remus) for example." }-I'd agree, there can be a branching as folks progress.
-{ Quote: "And I thought i was long winded." }-Mea culpa here as well. But you do know where I'm coming from when you're finished reading. I'd rather be longwinded and clear than terse and vague.
-{ Quote: "But yes, that is what i'm saying, but apparantly it's against the TOS or something, since people keep deleting that." }-Personal bashing is against the TOS. Keep it civil and on topic, and it will remain.
-{ Quote: "On second thought i agree with beef, we should stop wanabes and noobs from posting advise. :P" }-Whenever someone is challenging themselves with self-education, there will be a phase in which their desire to assist outstrips their knowledge. At that point it is incumbent on the community of those knowlegable to gently correct the fault. Unfortunately, in open, largely anonymous, forums, many feel compelled to fire a whithering broadside of invective rather than gently redirect the discussion to its proper course following excursions with ill-considered recommendations.

Cheers,

Blue

I never said anything bad . At least , I do not think I did . This is for any moderator .: Am I to understand that the term noob or newbie , is considered a bad thing ? If so , congrats . You have done it again . Why can people not understand here that noob or newbie is used to describe a newcomer to this OR anything else in life . Shall rookie be better ? NOPE . Why ? Because rookie is the same thing !~ Sheesh . Why all this stupid criticism someone using that term ? This is about as ridiculous as it comes . Is everyone in here brainless ? I do not understand and would like an intelligent answer as to why that word is a bad thing . I can assure you that NO answer given can change the fact that newbie is NOT a bad term . Neither is rookie . Answer if you wish . I just want to know why all this stupidityone word that means nothing other than describing someone new to the area . Rookie , child , come on . This is really unbelievable . Iguess we can reduce it down to referring to a new person as an idiot . Would that be better ? I guess I am an idiot then when it comes to things . My suggestion is , if you are stupid enough to take newbie as a derogatory word , give us something better OR , better yet , get a life . I am not trying to be hard here but , none of this should be relevant in here . We all should know what newbie is describing . Nothing more , nothing less . I think Vikorr should come back . Vikorr is ok . And will I apologize for using the term noob or newbie ? No way . Guess you better ban me then . I have NEVER used it in a way aimed at putting someone down . And , I have yet for anyone to tell me that it was taken that way . This is truly a sad day .

By the way . A rookie in here has referred to himself as a noob . Check viruses and worms . Uh oh . Guess we better crucify him too .

Hollywood the term itself isn't offensive ... but when used in certain context(s) it certainly is.

The thing that is sad ... is your rant over this issue. Totally unnecessary and uncalled for. :'(

Sad ? Maybe . And you do not find it sad nor does it bother you all the useless crap that has gone on in here over that term . You dog , obviously have a problem with me . I will not comment to you again . We have had problems in the past . Bottom line is , I have yet to see it used in here as a bad thing . Yet , many have gone overboard in here talking about something as stupid as this . So , I added my rant . I take offense to anyone saying that it is a bad thing . Again . I did not see it in this thread or any other as bad . Not to say it was not used in a bad way in a thread I have not seen but , this whole thing is sad . Nice to see you think it is only me . I am ranting because many here keep this thing alive by talking about how bad the term is . My goodness . Seems to me that the people saying it is bad are the ones casting lablels . Saying it is wrong to use a perfectly legitimate term to describe someone . As a few new people in here already call themselves that term .

I'm probably in between stages two and three having avoided the initial stage Blue added.;D

Thread closed.

More than enough warnings have been given.

Blackspear.

Hollywood I don't have a personal issue with you at all. ;) And you certainly aren't being singled out ... the warnings were 'global'. I responded to your post and nothing more; it was you that was criticizing us, and it certainly wasn't expressed in the nicests of tones, which was uncalled for. Sorry but you have blown this issue beyond it's porportions.

-This thread is now Closed-

If you find fault with these actions, by all means please do take the issue up with an administrater privately.