Can anyone give me a link about these stuffs?

Discussion in 'other security issues & news' started by O.Alexander, Feb 5, 2009.

Thread Status:
Not open for further replies.
  1. O.Alexander

    O.Alexander Guest

    Hi!

    I'm using Vista 32, and my first layer defense is DW.

    I'm thinking of adding some really light stuffs (something like DEP) to my protection,
    but I need some links on how to do it!

    1. How to use LUA in Vista?
    2. Is SRP for XP or Vista?
    3. Something else I should add?

    Thanks!
     
  2. ola nordmann

    ola nordmann Registered Member

    Joined:
    May 6, 2007
    Posts:
    89
    LUA is sort of "enabled" by default in Vista. Because in XP people were running with full admin rights all the time (by default), and therefore very prone to exploits. A way to fix the probelm in XP involves either logging in with multiple accounts (admin only when needed, and a limited account the rest of the time), or the use of third party programs that can change privileges when running programs, e.g. stripmyrights, Online Armor...

    In Vista even with admin account you don't have full admin privileges all the time - instead the infamous UAC-prompt elevates priviliges when needed.

    Sort of like what has been available in linux and other OSes for ages.
    It's available in both OSes, but only in the "business" versions of Windows, not the "home" versions typically sold to home users.:

    WinXP Pro, Vista Business, Vista Ultimate
     
  3. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    1
    LUA see https://www.wilderssecurity.com/showpost.php?p=1075022&postcount=1

    2
    SRP is available on XP Pro and Vista Business

    3 Anything else

    Enable DEP for all programs/processes, see http://www.vistax64.com/tutorials/120778-dep-enable-disable.html

    Use Norton's UAC Tool to remember UAC choices, you can set

    "ConsentPromptBehaviorAdmin" set to 2 (Full), download http://www.nortonlabs.com/inthelab/uac_beta.php

    When you use Windows Defender, join the community as advanced member, deactivate daily scans, add a good free antivirus (Avira, Avast, AVG), Avira gets the best test results but has limited AntiSPyware (this 'gap' is more or less filled in with Windows Defender, when you use AVG or Avast, you could drop Windows Defender)

    For easy outbound control you can add the free Vista FireWall control download http://www.sphinx-soft.com/Vista/order.html

    When you browse with IE or FF download the free Keyscrabler, see http://www.qfxsoftware.com/Download.htm

    With this you have covered your security in an easy and cheap way:

    Vista UAC = primative HIPS made smart with Norton's UAC
    Windows Defender = basic IDS + AntiSPyware when joining as advanced member
    Avira = free Antivirus
    Vista Fire Wall + Vista FW Control = very good inbound protection and basic outbound protection
    DefenseWall = malware paralizer for files and applications (strong HIPS/policy sandbox)
    KeyScrambler=to outwitt any keylogger which might get through (which is very low chance)

    ALthough a lot of FF lovers will hate me for this, I would use IE in Vista (IE8 even has cross site scripting protection) for ordinary browsing. When you would like a real fast performer use Chrome instead of FF/Opera/etc. Safety talk on browsers is a non-isue with DefenseWall. Chrome has due to its architecture 70% less chance of being comprimised than other browsers (search for Chrome and Sandbox on wilders and you will find the link of I thought standford university study)).

    Cheers
     
    Last edited: Feb 5, 2009
  4. O.Alexander

    O.Alexander Guest

    @ Kees, ola nordmann.

    Thanks!
    I found out the word I should have used.
    "hardening tools", is it?
    Sorry, I speak English as my second language. :oops:
     
Loading...
Thread Status:
Not open for further replies.