Surfing Naked

What are the dangers of websurfing without an antivirus running?

To be more specific, while I understand the basics of email attachments, downloading unsafe programs etc. I was curious about other ways that you may get viruses.

For example I have been to a few sites that as soon as I click on it NOD32 alerts me that something's wrong-I don't remember if it was trojans, worms, viruses-maybe it was malicious script. I remember reading something about people hacking into websites and putting malicious script onto it. Is this what was going on?

Another thing I was wondering, can malware travel like a webspider (although it would be from connection to connection not site to site)? Does it ever travel/enter on it's own through open ports or does it require an action on my part downloading it in some way?

On Instant Messaging can you acquire malware without opening any files etc.?

I appreciate this as I just realized how much I didn't know.

 

Hi David, as your topic is in relation to General Security and not a Nod32 support issue or question I have moved your thread to here where it should get more attention.

Cheers

Blackspear

 

There are lots of risks on the net. Most of them are exploits, programs that mis-use vulnerabilities on all kinds of systems. The last big 'spider' like attack was santy, a perl script that even this week took advantage of a hole in phpbb. From an infected system it searched for and infected other phpbb systems. No manual action needed at all. Same applies to nimda, blaster and sasser, worms that by themselves can propagate on networks.
The way to avoid this kind of attacks is by patching (regular managing your systems) and using security software like firewalls and anti virus software. Patching is only possible if the vulnerability is known and the manufacturer has created a patch. If no patch is available, only security software can help.

There are lots of exploits that take advantage of vulnerabilities in software. For Internet Explorer and other tools based upon it (Outlook Express for instance) there are lots of exploits, that allow lamware to infect your system on looking at a file.
Internet Explorer even has features that are designed in such a way that malicious software can use it.

Best way to avoid such malware is to avoid the vulnerabilities by using other software.

 

You may want to take a look here for further discussion on security and how to make your system that much stronger and here for more.

This is what works really well for me, very simple to use and maintain.

Hope this helps...

Let us know how you go.

Cheers

 

David,
I recall doing a reinstall of Windows XP some time ago....I wiped the HDD..Reinstalled XP...Loaded my NAV..and then connected to Live Update only.
No email..No surfing just Nav Live Update. Now on this particular reinstall I had inadvertently forgotten to enable the XP firewall!!!! About 3mins into the update I was hit with a virus which NAV was unable to fix!!! I just turned it off and reinstalled again...put me back a couple of hours though, but taught me a valuable lesson!!! Hit with a virus while on the NAV live update!!!! Go figure!!
Surfing Naked......Nah!!!
Buck.

 

This thread isn't what I thought it was

Anyway, realy you should always use antivirus software.... at least. To obtain full protection from most of the online nasties, you need a range of applications installed.

Jimbob

 

So are we saying then, if one bought a new machine with, say XP as the OS, the first thing to do is enable the MS Firewall before doing any updates etc at all. Would the FW be sufficent protection. I use NOD and would have to connect to install the AV. this is all assuming that the machine is the only one in the house, so backups and transfers from another machine are not an option. If more protection is needed before connecting to the net then how would it be done apart from buying software from a store (which would prob need a connection to update to latest version anyways) ?

 

... even before connecting to a network. Install XP without any network cable connected.

 

100% Correct, or any firewall will do.

To start you off and get your machine patched, yes.

Nothing else is needed, firewall and then update.

Hope this helps…

Cheers

 

How about the other nasties out there, apart from viruses?

Jimbob

 

No need to update nasties

 

I only have a firewall and an AV email scanner (no full-time AV protection). I don't do porns or go to warez websites. I decline all offers to download XYZ to view ABC.

In summary, I browse the net without a real-time AV scanner for almost 4 years. Still bug free. Always make sure that the FW is properly configured before you connect to the internet. Set IE's security mode to HIGH. And always backup the data in the form of an image file of the C partition.

 

I agree with all of the above. I just wanted to add that if you're behind a router (which serves as a hardware firewall) you are safe from the get go. Of course, getting a software firewall to protect from malicious outbound traffic is a priority upon setting up from scratch - or a purchase from the store.

 

Once you are firewalled and Windows is fully up-to-date, then install all of your other security products, update these and your systems is now secure. Then you can start surfing to your hearts content

Cheers