2 is greater then 10

Discussion in 'other anti-malware software' started by trjam, Jun 15, 2009.

Thread Status:
Not open for further replies.
  1. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,537
    My normal setup is:

    Hardware Firewall
    Software Firewall (sometimes)
    Common Sense
    Anti-virus (only Web and Network Shields)
    Classical lightweight HIPS or Behavior Blocker

    Very light :)
     
  2. Trespasser

    Trespasser Registered Member

    Joined:
    Mar 1, 2005
    Posts:
    1,204
    Location:
    Virginia - Appalachian Mtns

    Good one. Funny. :).
     
  3. Pleonasm

    Pleonasm Registered Member

    Joined:
    Apr 9, 2007
    Posts:
    1,201
    Here is one simple way to think about the problem that might be useful for some . . .

    If pi = the probability that a malware instance will be correctly detected by anti-malware producti, and n = the number of anti-malware products active on the PC, then (1-p1)*…(1-pn) = the malware risk -- i.e., the likelihood that malware will failed to be detected (assuming independence among the n anti-malware products).

    Substitute values for each pi (e.g., obtained from a comparative review) and for n that correspond to your own security setup, and estimate the risk level.

    P.S.: Of course, as n increases, so too does the possibility of a false positive.
     
  4. Coldmoon

    Coldmoon Returnil Moderator

    Joined:
    Sep 18, 2006
    Posts:
    2,981
    Location:
    USA
    The number of programs you use is completely irrelevant. What IS important is how effective they are at addressing your risk of getting infected or compromised.

    The real things you need to cover are:

    1. Prevention
    2. Detection/removal
    3. Long term stability or cure

    Ilya only needs one application and a firewall to be secure as he is almost certainly able to provide his own prevention, can recognize an infection without needing a scanner, and uses strict backup and recovery techniques as a professional developer and researcher. This combination however would be a disaster for a newbie...

    The key here is to make the line up as simple as possible; both for implementation/maintenance and user comprehension. It is very easy to see how a new user could get infected even though they had the best rated security programs installed. If they conflict or the combination is too complex, the game is over...

    Mike
     
  5. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Ok, let me ask. Suppose u are not developing DW and DW doesn,t even exist, what u will use? :D :D
     
  6. Trespasser

    Trespasser Registered Member

    Joined:
    Mar 1, 2005
    Posts:
    1,204
    Location:
    Virginia - Appalachian Mtns
    Good question, but I don't expect Ilya to answer that one.

    Later...
     
  7. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    LOL. You are really nasty to ask Ilya such questions :)
     
  8. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    lol...BTW.. let me guess the answer..... just a hradware FW.
     
  9. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    HW fw is good, but only for a desktop computer. If you use laptop and not only at home you will hardly find it convinient to take additional HW with you every time. BTW, XP/Vista restorepoint, I think, is very underestimated. So while for a desktop with a stable set of the software HW firewall + native system means + common sense are pretty enough, for a "mobile" computer you need, I think, somewhat more keen tools. Better incremental backup, some kind of HIPS (it depends on a taste what you would pick sandbox-like, BB-like or what they call "classical") and s/w firewall, of course. May be some people would prefer classical AV, but me personally ever regarded AV as a secondary protection.
     
  10. Sully

    Sully Registered Member

    Joined:
    Dec 23, 2005
    Posts:
    3,719
    Yep. Same here. Sort of a necessary evil days ago. Now with as little resource as Avira uses, I guess I figure it is hurting nothing, and what it does catch at least I know about. I don't expect it to identify the latest greatest at all, just the ones that might still be floating around. And it does that well enough for me.

    Sul.
     
  11. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    The answer is simple. I always use only self-written security tools, I don't trust third-party vendor's products as I can't control it. So, the option "DW doesn't exist" is not exists.
     
    Last edited: Jun 17, 2009
  12. Ilya Rabinovich

    Ilya Rabinovich Developer

    Joined:
    Sep 13, 2005
    Posts:
    1,543
    Oops... Wrong guess!!!
     
  13. Acadia

    Acadia Registered Member

    Joined:
    Sep 8, 2002
    Posts:
    4,322
    Location:
    US
    ... and how many of us are capable of writing our own security programs?

    Acadia
     
  14. elapsed

    elapsed Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    7,076
    Lots, the question is how many of us can be bothered when it's already done for free or low prices?
     
  15. benton4

    benton4 Registered Member

    Joined:
    Nov 29, 2004
    Posts:
    158
    Location:
    Oregon
    Re: 1 is greater than 2

    Common sense? come on, where would all the the security vendors be if weren't for us hobbiest's? :D :D :D
     
  16. Wildest

    Wildest Registered Member

    Joined:
    Apr 28, 2009
    Posts:
    304
    Re: 2 is greater then 10... for ME!

    IMO this factor is not given enough attention, and for this reason I think the title of the thread is not the best.

    It should be "2 is greater than 10... for ME!", because while I need more than 2 anti-malware products given the nature of my internet activities, my mother only need a security suite because of the sites she wants to visit, and my daughter doesn't need any security applications because of the sites she is allowed to visit.

    >90% of these posts promote one configuration as some silver bullet even though said configuration is 100% effective only in specific situations.

    SandboxIE might be 100% effective while I am at the controls, but will it be 100% effective for my mother to operate?

    I find this interesting since I was just yesterday reading somewhere about Virut..
     
  17. Acadia

    Acadia Registered Member

    Joined:
    Sep 8, 2002
    Posts:
    4,322
    Location:
    US
    Really? I'm willing to bet, although I don't know how I'd prove it, that over 99% of computers users could not write their own security software.

    Acadia
     
  18. nomarjr3

    nomarjr3 Registered Member

    Joined:
    Jul 31, 2007
    Posts:
    502
    1 can be better than 2 honestly.... if someone can program a Behavioral Blocker that has an extensive, automatic whitelist/blacklist that can monitor every possible exploit in-the-wild and has incremental auto-updates, without the need for user intervention (no more confusing pop-ups for newbies).


    I agree that 2 is better than 10.
    All you need is a firewall (I personally prefer a SW firewall), and EAZ-Fix.
     
  19. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Aigle who are you kidding, in Ilya's world there is only trusted and untrusted :D
     
  20. Rivalen

    Rivalen Registered Member

    Joined:
    Oct 18, 2005
    Posts:
    413
    Went from 2 to 3 today.

    DW + Avira for very long - added IObit 360. No slowdown.

    But I am an amateur.

    Bestens
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.