For crying out loud fellas!

Haven't you people realized that your sap sucking AVs are useless against zero day attacks!

Your browser run through Sandboxie in Powershadow mode is all just about all you need.

And if you still feel naked then Defensewall will address any needs.

So when someone plugs in their infected USB flash drive from a different PC - what then?

thats what the PDM in kis/kav is for
lodore

{QUOTE-> For crying out loud fellas!

Haven't you people realized that your sap sucking AVs are useless against zero day attacks!

Your browser run through Sandboxie in Powershadow mode is all just about all you need.

And if you still feel naked then Defensewall will address any needs. <-QUOTE}

He has a point. A lot of experts are predicting the end of signature based AV protection.

{QUOTE-> He has a point. A lot of experts are predicting the end of signature based AV protection. <-QUOTE}

Just like the dot com fad of Silicon Valley, upstarts quickly became big league players and really raked it in untill the big bust. If i were the signature based players i would be gathering up all the intelligence and research i could to make a transition over to HIPS and behavioral blockers and such.

{QUOTE-> So when someone plugs in their infected USB flash drive from a different PC - what then? <-QUOTE}
PowerShadow mode - then you can jam your infection!

{QUOTE-> He has a point. A lot of experts are predicting the end of signature based AV protection. <-QUOTE}
Of course there will be changes, but probably more like a fusion of technologies, signatures will be around for quite a while and personally i like that combo better than putting all my eggs in one basket.....................like those who think sandboxie is the answer that will keep their defences unbreached.

A layered approach,that IMO is the best way to go.

Hi, folks: Why do you need Sandboxie while using powershadow's shadow mode ? Would'nt PS's shadow mode give you sufficient protection at all ? And using DefenseWall on the top of these? IMO, adding a HIPS or behavior blocker is more appropriate.

I would ask why Powershadow. But then he'd answer "to revert changes".
The AV is supposed to check my downloads, the ones i keep. SandboxIE is only good as i am: it allows me to keep only what i want, but then it's up to me and my habits to keep only safe items. And allows me to run whatever inside it.
{QUOTE-> Of course there will be changes, but probably more like a fusion of technologies, signatures will be around for quite a while and personally i like that combo better than putting all my eggs in one basket.....................like those who think sandboxie is the answer that will keep their defences unbreached. <-QUOTE}
Anything inside the sandbox, pretty much yes ;D

Sure, in a few months someone will find something that breaks through, something real, not PoC.
Then Tzuk patches it so it will never suffer from that.
More months will follow. Some will still say it's easily broken. They just won't tell you how... How smart.

{QUOTE-> For crying out loud fellas!

Haven't you people realized that your sap sucking AVs are useless against zero day attacks!

Your browser run through Sandboxie in Powershadow mode is all just about all you need.

And if you still feel naked then Defensewall will address any needs. <-QUOTE}
Making a quick fan out of me using Sandboxie and Power Shadow together.:)

{QUOTE-> So when someone plugs in their infected USB flash drive from a different PC - what then? <-QUOTE}

Exactly. One thing is to sandbox something and reboot. But if you want to hold on to a file and keep it, you have to make sure it 's clean, and an AV is the only way to check. If one wants 100% security with sandbox technology, one should not save anything to disk: Reboot and wipe out the whole session.

I was swaying to the similar approach of just using Sandboxie and powershadow but there is too often a need to scan a downloaded file that you need or wish to keep. That's why I am now completely happy using Sandboxie and/or Powershadow (haven't tried them together yet) along with Avira Free for the download scans which runs so light I barely notice it there.

I also still run BOClean - although I do feel BOClean is pretty much redundant alongside these apps but I have it so I may as well still use it!

{QUOTE-> ...there is too often a need to scan a downloaded file... <-QUOTE}

Please use either or both of these sites to scan your files. ;D ;D

http://virusscan.jotti.org/

http://www.virustotal.com/

Mike

{QUOTE-> I was swaying to the similar approach of just using Sandboxie and powershadow but there is too often a need to scan a downloaded file that you need or wish to keep. That's why I am now completely happy using Sandboxie and/or Powershadow (haven't tried them together yet) along with Avira Free for the download scans which runs so light I barely notice it there.

I also still run BOClean - although I do feel BOClean is pretty much redundant alongside these apps but I have it so I may as well still use it! <-QUOTE}
And another sees the light. You dont need all this after the fact software, if you keep your PC free to begin with. I do use Sandboxie and Power Shadow together and it works great. I have dumped SAS and still have Avira for an occasional scan.

Hello,
It comes down to a few very simple concepts - one being deny first, ask questions later.
Mrk

{QUOTE-> Hello,
It comes down to a few very simple concepts - one being deny first, ask questions later.
Mrk <-QUOTE}

With this simple concept : not every nasty asks for permission !!

Hello,

Really? So you don't go to a site that has an exploit right? The site goes to you, is that it? IE? All conscious choices. Don't use IE - default deny. Don't go to stupid sites - default deny. Got an email attachment? A viagra offer? Whatever? First doubt. Then try to see what next. Shoot first, explore later.

Like Eli Wallach said: when you have to shoot, shoot, don't talk.

Mrk

{QUOTE-> Hello,

Really? So you don't go to a site that has an exploit right? The site goes to you, is that it? IE? All conscious choices. Don't use IE - default deny. Don't go to stupid sites - default deny. Got an email attachment? A viagra offer? Whatever? First doubt. Then try to see what next. Shoot first, explore later.

Like Eli Wallach said: when you have to shoot, shoot, don't talk.

Mrk <-QUOTE}

Sure you would, but is everybody that rigid all the time? We are just humans and every now and than make mistakes,thats all the reason why we have security to make up for our shortcomings,and even than we can misconfigure our handy app.All in all the existence off Wilders and friends is more than little evidence that we are just humans.

Yawwnnnn

i find this thread boring, as it should be changed to "an AV is all you need"

as this is how its been in the past, and i feel its the same now.

{QUOTE-> Yawwnnnn

i find this thread boring, as it should be changed to "an AV is all you need"

as this is how its been in the past, and i feel its the same now. <-QUOTE}
i agree with you Chris
but AV+hardware firewall is best.
but you got that anyways.
lodore

oh yeah, should have mentioned that.

a nice router with firewall is priceless, then your av of our choice.

it keeps the programs down, the prices down, the maintenance down and you are nicely secured :)

{QUOTE-> oh yeah, should have mentioned that.

a nice router with firewall is priceless, then your av of our choice.

it keeps the programs down, the prices down, the maintenance down and you are nicely secured :) <-QUOTE}
yup thats why im gonna buy a linksys wag200g
gets plenty of good reviews and is only £37;D
lodore

{QUOTE-> He has a point. A lot of experts are predicting the end of signature based AV protection. <-QUOTE}
I don't need to be an expert to predict this, I'm predicting this since I'm a member at Wilders.
This is normal and logical. You don't create security softwares based on stuff made by the bad guys and that's what scanners are. A very bad method and only good for losers. :)

well i think opposite,

sure new technologys will arrive, but signatures will always be there :)

I just recently downloaded sandboxie and im having an issue with it. Because of my friends, I frequently get manpapered. If I leave them around my unsupervised computer for even a minute they always change my desktop background. I thought I had found the solution in sandboxie but I can still change the desktop background even when firefox/internet explorer is running in sandbox mode. If sandboxie lets this kind of behavior through, will it not potentially let other malicious programs access my computer? Or am I just being paranoid?

well login as a limited account when your freinds are around so they cant change anything.
lodore

{QUOTE-> I just recently downloaded sandboxie and im having an issue with it. Because of my friends, I frequently get manpapered. If I leave them around my unsupervised computer for even a minute they always change my desktop background. I thought I had found the solution in sandboxie but I can still change the desktop background even when firefox/internet explorer is running in sandbox mode. If sandboxie lets this kind of behavior through, will it not potentially let other malicious programs access my computer? Or am I just being paranoid? <-QUOTE}
You are doing something wrong, Sandboxie should handle this and I would suggest you visit their forums for help.

And by the way, I have found Sandboxie a hell of a lot more stable then Power Shadow.

{QUOTE-> I just recently downloaded sandboxie and im having an issue with it. Because of my friends, I frequently get manpapered. If I leave them around my unsupervised computer for even a minute they always change my desktop background. <-QUOTE}

You wouldn't happen to own a red stapler by any chance, would you?
All kidding aside - what's wrong with logging out when you leave your PC?
Simple, yet effective.

{QUOTE-> If I leave them around my unsupervised computer for even a minute they always change my desktop background. I thought I had found the solution in sandboxie but I can still change the desktop background even when firefox/internet explorer is running in sandbox mode. <-QUOTE}
If your friends change my desktop background, I get mine back after reboot.
I've put Windows + Applications in a big sandbox :)

{QUOTE-> If your friends change my desktop background, I get mine back after reboot.
I've put Windows + Applications in a big sandbox :) <-QUOTE}
its unpractical for most people thou.
lodore

It is my opinion that few users are going to go for a sandbox or many of the applications recommended here. All they are going to put with is an AV and maybe an AS program.
I also admit that I am not too far from that also. If my AV and AS won't do the job then I am in trouble, although I do use several as my signature shows.

Regards,
Jerry

Jerry, I have found that Sandboxie, a good AV, 'Avira" and AS are about the best you can get today.

Guys, just out of curiosity - how often do you actually have any kind of virus/ trojan/ malware penetration that you fix with Sandboxie or similar?
I may have been lucky but on my main pc relying on Nod, a firewall and being behind a router I cannot even remember when anything popped up last.
I am somewhat paranoid about the dangers lurking out there but I never personally encountered them. Are you using Sandboxie (and similar) primarily if/when you surf to suspicious sites? Maybe I never do that and that's why I am unconvinced that for daily use it is necessary for everyone.:D

i use to have tons of antispyware and antimalware apps.
including spysweeper in realtime.
but i cut down since they where just wasting space and resources.
they never found anything.
lodore

{QUOTE-> You are doing something wrong, Sandboxie should handle this and I would suggest you visit their forums for help. <-QUOTE}


It's very possible that im doing something wrong. But it seems to block everything else. And if I don't change the background image back to what I had it before, it resets after I reboot.

I used to run several anti-malware apps too. Since switching to Vista I have been just using NIS for all-around protection. A couple of weeks ago the SysAdmin at work gave me a copy of SpySweeper (he ordered 5 but got 10 copies instead, lol). I installed it but only use it for on-demand scanning. Only thing it has found is a few cookies.

I have ran different online scanners--Trend, BitDefender, DrWeb--but none has found anything.

So with NIS '07 and running as a Standard User in Vista, I feel reasonably safe.

{QUOTE-> You are doing something wrong, Sandboxie should handle this and I would suggest you visit their forums for help. <-QUOTE}


Just curious, how do you get make sandboxie prevent desktop wallpaper changes?

{QUOTE-> Just curious, how do you get make sandboxie prevent desktop wallpaper changes? <-QUOTE}
i was gonna say the same;D

{QUOTE-> i use to have tons of antispyware and antimalware apps.
including spysweeper in realtime.
but i cut down since they where just wasting space and resources.
they never found anything.
lodore <-QUOTE}

Hi Lodore,
My experience also. I got caught up in the layering upon layering because so many security programs were recommended and used.
In about 8 years now of owning computers I only recall about 3 attempts at infection, and the AV I was using caught them and prevented execution. None of the other applications caught anything, except some cookies.

I have about decided that a good AV, firewall, and one AS is all I need. I must add Win Patrol as it does some good things like showing start up and active programs. I can disable programs as I desire.

I am probably overly layered on my laptop. The only security applications I have active on my desktop are Avira, WP, LnS firewall and at times SAS.

I suppose I might have to learn the hard way, but until I get infected I remain unconvinced for the need of many security programs. That is somewhat influenced by the fact that the people I personally know normally don't have anything except AVG or the AV that came on the system, and AdAware and Spybot, and the Windows firewall. They never seem to have problems, and I cannot say the same for most of us here with a number of applications that sometimes conflict and cause problems.

Best,
Jerry

{QUOTE->

I have about decided that a good AV, firewall, and one AS is all I need.
<-QUOTE}


I was pretty stunned when our college senior moved back home for his last semester (no job, no money to pay rent, etc.) and we set up a wireless connection for him and when I looked and found an old Sygate Firewall and no AV or AS on his computer, I immediately ran online scans and there was no virus or malware on his laptop! Although I must admit that I added a free AV on his laptop. I'm thinking this kid is okay, he's not going to questionable sites, playing games, etc. Go figure...and here I have AV, AS, Anti-Trojan, etc., on my computer. Sometimes I do wonder if we carry things a bit far.

{QUOTE-> Sometimes I do wonder if we carry things a bit far. <-QUOTE}

I'm wondering that too. Now that I'm running standard account in Vista, I'm trying to figure out what I really need while trying not to go overboard.

I'm using Avira (free version) with Vista's firewall (public), and I've played around with DefenseWall, but still not sure if I need it with my setup. Almost forgot, I'm also behind a router with NAT enabled. Downloading and installing trial programs is my biggest risk. Just not sure what's really necessary. :-\

Wouldn't password protecting your admin account and enabling a guest account when your away from your computer protect things like your wallpaper? I guess there are ways around that too, but you could always limit the ways. I honestly don't know much about the guest account, I'm just guessing.

I'm beginning to agree about the need for an excessive amount of security software. It's kinda fun playing with new ones and getting the latest versions. :) I remember my first nasty virus. My computer kept slowing and the hard disk was almost running constantly. I had Norton, I should be protected right? I did a scan and found nothing. Ahha, I updated the definitions and found over 2000 infected files.:'( My toy was broken. That was 2001, I'm much wiser today thanks to forums such as this one.

Seen a couple of references in this thread to "doesn't go to questionable sites". Servers for the most reputable sites in the world can be hacked and that could put you at risk if you visit them. (until they fix them).

??? {QUOTE-> Just curious, how do you get make sandboxie prevent desktop wallpaper changes? <-QUOTE}
Oooooh, that is the secret of Sandboxie.:-[

{QUOTE-> ???
Oooooh, that is the secret of Sandboxie.:-[ <-QUOTE}


Wait, what? Is there a FAQ someplace that explains how to do this?

Hello,
pbernard, Poet, you really do not need much to avoid getting infected, even if you go to "questionable" sites, playing games etc. You can safely IM, P2P, game and porn, and there's no reason to get infected.
Mrk

{QUOTE-> Wait, what? Is there a FAQ someplace that explains how to do this? <-QUOTE}
It was a joke.:) Just as my orginal post was assine. Sandboxie cant do this. It would benefit me to read all posts before making a fool out of myself.:o Sorry.

{QUOTE-> It was a joke.:) Just as my orginal post was assine. Sandboxie cant do this. It would benefit me to read all posts before making a fool out of myself.:o Sorry. <-QUOTE}


Sorry, I didn't catch the joke (lack of sleep + my medication = alot of ??? ). For a while there I thought you new a secret you didn't want to share. :P I really need to start paying more attention.

{QUOTE-> I just recently downloaded sandboxie and im having an issue with it. Because of my friends, I frequently get manpapered. If I leave them around my unsupervised computer for even a minute they always change my desktop background. I thought I had found the solution in sandboxie but I can still change the desktop background even when firefox/internet explorer is running in sandbox mode. If sandboxie lets this kind of behavior through, will it not potentially let other malicious programs access my computer? Or am I just being paranoid? <-QUOTE}

My understanding of Sandboxie is that it takes everything downloaded from your browser (if you run the browser sandboxed) and puts it in a secure environment that can't access your system. It will do the same with your email if you run your mail client sandboxed. Then, when you delete the sandbox, all changes are gone. So any malware that may have made it on to your system will be gone when you flush the sandbox. This has nothing to do with Windows Settings, screensavers, wallpapers, etc.

So if you are looking for a way to protect your desktop from being altered, you are trying to use sandboxie for something it was not designed to do.

Why not just password protect your logon and log off of your PC when you are away from it? Simple, effective, free solution reequiring zero additional resources.

{QUOTE-> Hello,
pbernard, Poet, you really do not need much to avoid getting infected, even if you go to "questionable" sites, playing games etc. You can safely IM, P2P, game and porn, and there's no reason to get infected.
Mrk <-QUOTE}


Thanks for the confirmation Mrk. I really like the speed of my system so slowing it down with too much "glue" isn't something I want. :)

Hopefully a few converts from this thread!

All AVs are sap sucking useless addons!

For a freebie a tiny app like Sandboxie will protect you better than any SAP sucking AV.

There are ALTERNATIVES!!! Got a few bucks and want the ultimate = Defensewall!

{QUOTE->
For a freebie a tiny app like Sandboxie will protect you better than any SAP sucking AV. <-QUOTE}Even better than that is oneself. ;) In other words, what you do and where you go on the 'net.

Yep;) LOL.
Go anywhere!

{QUOTE-> All AVs are sap sucking useless addons! <-QUOTE}Franklin,

The problem with most sweeping generalizations, including yours above, is that they are flat out wrong.

Blue

{QUOTE-> Hopefully a few converts from this thread!

All AVs are sap sucking useless addons!

For a freebie a tiny app like Sandboxie will protect you better than any SAP sucking AV.

There are ALTERNATIVES!!! Got a few bucks and want the ultimate = Defensewall! <-QUOTE}
Is this guy a joke?

Does he have any idea about the half-kazillion things you can't execute inside SandboxIE, and have to install on your real, unsandboxed system?

It would seem so.

Half a kazillion.My oh My you do need help!

Silent install?

{QUOTE-> Yep;) LOL.
Go anywhere! <-QUOTE}I think you missed my point. Most safe surfers don't just "go anywhere". They use a bit of commonsense, and this is why I said protecting yourself from the nasties out there is down in part to oneself.

However, if one wishes to visit warez, porn sites et al., then maybe something like Sandboxie suits, but like I said, better protection than Sandboxie is likely to be oneself.

{QUOTE-> Half a kazillion.My oh My you do need help! <-QUOTE}
What a coincidence. I was just thinking the same about you. ;D

Wasn't saying anything as such.Was mainly referring to the "StumbleUpon" toolbar which I use when my favourite forums go dead!

How dare dare anyone insinuate that I go over there!At least Sandboxie stops any infections!!!;D

{QUOTE-> Hi Lodore,
My experience also. I got caught up in the layering upon layering because so many security programs were recommended and used.
In about 8 years now of owning computers I only recall about 3 attempts at infection, and the AV I was using caught them and prevented execution. None of the other applications caught anything, except some cookies.

I have about decided that a good AV, firewall, and one AS is all I need. I must add Win Patrol as it does some good things like showing start up and active programs. I can disable programs as I desire.

I am probably overly layered on my laptop. The only security applications I have active on my desktop are Avira, WP, LnS firewall and at times SAS.

I suppose I might have to learn the hard way, but until I get infected I remain unconvinced for the need of many security programs. That is somewhat influenced by the fact that the people I personally know normally don't have anything except AVG or the AV that came on the system, and AdAware and Spybot, and the Windows firewall. They never seem to have problems, and I cannot say the same for most of us here with a number of applications that sometimes conflict and cause problems.

Best,
Jerry <-QUOTE}

I find myself in complete agreement with both of you. When I look at some peoples signatures I can't believe all the crap they have running on their systems. I think to myself... "oh my god why?" I think some people are overly paranoid about security. I mean if it makes them sleep better at night and their systems can take the resource hit in stride... then sobeit. I personally don't think the risk/reward is worth sacrificing performance & speed just "incase something ever happens".

I can't recall the last time my PC was infected with anything more than a tracking cookie or other mild miscelaneous adware. Probably way back in my dial up/AOL days.

Quite frankly I could probably do without an AV altogether. A couple anti-spyware apps on demand would probably be sufficient enough to remove anything that may get on my PC in the near of distant future.

{QUOTE-> I suppose I might have to learn the hard way, but until I get infected I remain unconvinced for the need of many security programs. That is somewhat influenced by the fact that the people I personally know normally don't have anything except AVG or the AV that came on the system, and AdAware and Spybot, and the Windows firewall. They never seem to have problems, and I cannot say the same for most of us here with a number of applications that sometimes conflict and cause problems.

Best,
Jerry <-QUOTE}

I have that similar setup on a laptop and it has so far only gotten one annoying piece of spyware since 2005 and that was only because the user clicked on one of those popups.

{QUOTE-> Please use either or both of these sites to scan your files. ;D ;D

http://virusscan.jotti.org/

http://www.virustotal.com/

Mike <-QUOTE}

These are most of the times overloaded and if even 20% of the population started to use these, they'd die a painful and quick death through a tragedy of commons.

Sure, it'll be nice some time in the perfect future when all AVs are free-as-a-service via the web with 99.9999999% availability, but that day is not here yet.

No Anti-Virus whatsoever for 6 months going strong and couldn't be more satisfied. The system no longer has to struggle with AV program updates or drivers/dll's/processes that hinder or can kill performance nor any need to depend on some arbitrary signature/heuristics database that's a crap shoot at best.

Reason?

HIPS! + Virtualization (PS) + Imaging Recovery App.

Never will use a sandbox either. Simply not efficient enough, period. Instability still plagues them.

I have gone long periods without an AV except for right click scan after downloading stuff. I don't have Avira's Guard installed just the on demand scanner. I have never used an email AV scanner. (Rather, I have always done the sensible thing, read in Plain Text only and download to disk all attachments and then scan, and never, ever open an email from someone I don't recognize (if uncertain, I read it via properties/details/message source in OE never actually opening it).

I do use the Proxomitron and ProcessGuard. PG is mainly to control what wants to call home...in particular IE which will start on its own, every now and then, and try to download WGA from WU unless put on a leash which I accomplish with PG. I'm far more concerned with breaches of my privacy from sources like Google and Microsoft than I am about getting a virus. I am opposed to Vista because it gives too much control to Microsoft. I want the kernel penetrated by a program like PG so that I am in control not MS...not to mention that I will not stand for DRM on the CPU chip or elsewhere so no Vista for me. These privacy violations are far more important, I think, than worrying about viruses and worms and using excessive applications to prevent getting them or operating always in a sandbox.

{QUOTE-> No Anti-Virus whatsoever for 6 months going strong and couldn't be more satisfied. The system no longer has to struggle with AV program updates or drivers/dll's/processes that hinder or can kill performance nor any need to depend on some arbitrary signature/heuristics database that's a crap shoot at best.

Reason?

HIPS! + Virtualization (PS) + Imaging Recovery App.

Never will use a sandbox either. Simply not efficient enough, period. Instability still plagues them. <-QUOTE}
Indeed, much better than the sum of all scanners in the world, but these scanner fans, don't understand our approach.
It's beyond their comprehension and imagination. It will take a long time to convert them. ;)

While I agree about the conceptual flaws of AV, and of any blacklist based solution in general, I do not believe sandboxes are the solution to everything.

A sandbox wrapping your browser won't stop remote execution exploits, tracking scripts and session riding/identity stealing attacks happening inside your browser through XSS and CSRF.
These kind of attacks are going to become prevalent, you know, and more and more harmful as the web becomes the platform for everyone.

I think this thread is another fine example of people who think that their solution is ultimate and one-size-fits-all.

None is.

It all depends on usage patterns, ability, time/skill available and software needed to be run (without conflicts).

For people who don't mind the conflicts with sandboxing and HIPS software or don't use special software that doesn't work well with them, the solution could be indeed much better than AV+AT+FW+tons of other stuff.

However, there are reasons why some of us still don't use SB/HIPS, even though we have trialed them (hint: incompatibilities at low level, not to mention constant need of tinkering/updating/fixing small issues).

I wasn't talking about sandbox. I replace my system partition (Windows + Applications) completely with a new one during EACH reboot in less than 2 minuts from desktop to desktop.
I just need security softwares to save the period between reboots, like anti-executables, anti-scripts, Firefox + Noscript, ... Even when these security softwares fail, it doesn't matter because I renew my system partition anyway.
Also my mistakes are corrected during reboot. I recently removed 300mb on purpose on my system partition, one simple reboot and I was back in business.

{QUOTE-> No Anti-Virus whatsoever for 6 months going strong and couldn't be more satisfied. The system no longer has to struggle with AV program updates or drivers/dll's/processes that hinder or can kill performance nor any need to depend on some arbitrary signature/heuristics database that's a crap shoot at best.

Reason?

HIPS! + Virtualization (PS) + Imaging Recovery App.

Never will use a sandbox either. Simply not efficient enough, period. Instability still plagues them. <-QUOTE}
Hi, Easter. I am very pleased to learn that you have trimmed the fat. And I can assume that you have more productive cybertime to do your research now. Sans Signatures defense lineup will be oneday a norm for each single pc users, and that day will be not too far away. Those Fat AV dev will adopt that trend in order to meet clients' demand, but also reduce their human payload.

{QUOTE->

Reason?

HIPS! + Virtualization (PS) + Imaging Recovery App.

<-QUOTE}

What is PS? You have VMWare or Microsoft's equivalent? What other virtualization is there besides those two? Why do you need HIPS if you run in VMWare? Or do you mean you have HIPS for the host computer?

{QUOTE-> What is PS? You have VMWare or Microsoft's equivalent? What other virtualization is there besides those two? Why do you need HIPS if you run in VMWare? Or do you mean you have HIPS for the host computer? <-QUOTE}


I think the PS = powershadow

http://www.powershadow.com/

I think so too

Yes Easter means PowerShadow, which protects his system partition in single shadowmode or all his harddisks in full shadowmode.
I use FirstDefense-ISR which uses a different method but with the same result, FDISR only protects my system partition and can't protect any other partition or harddisk.
Unfortunately both methods act too late IMO. I'm waiting for another software that works the way I think.

{QUOTE-> What is PS? You have VMWare or Microsoft's equivalent? What other virtualization is there besides those two? Why do you need HIPS if you run in VMWare? Or do you mean you have HIPS for the host computer? <-QUOTE}

Depends on what you are doing. If high risk surfing, I'll run full set up of security software, along with Sandboxie, in the virtual machine. If I am playing with fire, I like having a lot of water around so to speak.

Going with no AV is like driving a car without a seatbelt. High Risk.

Start going fast or visiting bad parts of town and you will soon have trouble. ;)

{QUOTE-> So when someone plugs in their infected USB flash drive from a different PC - what then? <-QUOTE}

You can setup DefenseWall to treat all external drives (USB) as untrusted thus eliminating any possible infections.

It will be interesting to see threads simuliar to this one when Comodo releases their new firewall ;D

{QUOTE-> What is PS? <-QUOTE}PowerShadow (specifically version 2.6).

He has made comments about 2.6 works very well for him.

The 2.8.2 version is not native English, and v2.8.2 has hidden data... http://www.wilderssecurity.com/showthread.php?t=175191

Also see EASTER's signature.

Mike

{QUOTE-> Yes Easter means PowerShadow, which protects his system partition in single shadowmode or all his harddisks in full shadowmode. <-QUOTE}He only has PS 2.6 = NO full shadow (only single shadow). UPDATE: I was wrong... see following posts.

Mike

{QUOTE-> He only has PS 2.6 = NO full shadow (only single shadow).

Mike <-QUOTE}
I tested PS 2.6. and I saw both modes at reboot :
1. WinXP
2. WinXP single shadowmode
3. WinXP full shadowmode
and also the Shadow Screen gave me both options.

{QUOTE-> I tested PS 2.6. and I saw both modes at reboot :
1. WinXP
2. WinXP single shadowmode
3. WinXP full shadowmode
and also the Shadow Screen gave me both options. <-QUOTE}Well, I was wrong... sort of. ;)

My XP boot screen (boot.ini) shows ""Single shadow mode for microsoft windows xp professional".

BUT, the PowerShadow GUI "Startup Menu" tab, allows you to display Single/Full/Both/None.

So, I guess the default install only shows Single.

How about giving my 1/2 a point for being half-axe right? ;D

Mike

{QUOTE-> Well, I was wrong... sort of. ;)
My XP boot screen (boot.ini) shows ""Single shadow mode for microsoft windows xp professional".
BUT, the PowerShadow GUI "Startup Menu" tab, allows you to display Single/Full/Both/None.
So, I guess the default install only shows Single.
How about giving my 1/2 a point for being half-axe right? ;D
Mike <-QUOTE}
When I was trying PS, I had the impression that it didn't work properly, because these 3 options weren't displayed at the very beginning. For awhile it showed only two options without the full mode and then suddenly all options appeared.
If I booted in single or full mode I got an error message, so I could only boot in winXP mode and activate single mode on the desktop. So I ditched it.