Do you use/prefer a Classical HIPS (pop ups to answer), a Policy based HIPS, A Behavior Blocker or none of the above. Just curious.....
None of the above. Generally speaking, HIPS solutions require too much time for configurations, and most of them aren't perfect, i.e. malware can bypass them. Matousec.com does a great job on testing ProActive security software: http://www.matousec.com/projects/proactive-security-challenge/
Matousec's tests are decent indicators, but he is a bottom feeder. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ OSSS is a classic-HIPS-in-development AND it is well supported. Ditto for D+. Ditto for Safe'N'Secure. Malware Defender & EQSecurity are Sino-based & not all that interested in Western customers IMO. Butterflies OnlineArmor (QA) is good but lacks the registry/file protection of a full-scope classic HIPS. As for Outpost -- I will have to give its new version a trial when it is released. Are there any other full-scope classic HIPS out there? (I voted for classic HIPS and I now use OA).
Use combo of Online Armor and old version 2 of Anti-Executable although my main protection is surfing using Linux inside of a Virtual Machine which, in turn, is inside of Sandboxie. Acadia
Right now, I do not use any,so that got my vote. My decided preference however is for "Policy based HIPS ". Defensewall and GeSWall are both easy to live with,and secure. I have used both in the past. If I were going in install a HIPs,it would be one of these two. rat
I've just reinstalled XP and haven't got any. I used to run Online Armor and DefenseWall side by side.
Be glad that he tested it against KHOBE without you requesting it (paying it). You should send an e-mail thanking him. Now about the HIPS vs BB. As I mentioned in one other thread (linked to this one, I guess), it depends. For example, DefenseWall is an example of a HIPS that won't freak out the user with all the alerts the so-called classical HIPS will. This is the right approach! I know I've said it quite a few times, but for a system to be secure, it doesn't have to have tools bugging the user all the time, only when necessary! That said, if talking about HIPS, I'd go for DefenseWall or Sandboxie (we can call it HIPS, I guess). Both are great at what they do, and do it on a very silent way. If talking about behavior blocker, I'd go for AVG Identity Protection, formerly SANA's, which is also silent, unlike all other behavior blocker, that actually act more like classical HIPS, and in some cases do work like classical HIPS, if settings set up to the maximum. Security doesn't have to be complicated.
Classicall hips for me. I started using hips some years ago with kaspersky early versions. Then migrated to Real Time Defender and using malware defender since it introduced firewall. I have extensively trialled almost every single classicall hips app or security suite that includes classic hips.
Would Comodo Firewall be a Classical HIPs? I know that it does have a trusted mode which I understand as can be used after a fresh install of your windows and common apps and then all those are trusted. My biggest complaint about Comodo is its UI, in that its very bad at letting you know what main process a DLL or another event is tied to when you get one of its alerts. Also there is no log of alert events so that on a parents PC I can go back and look at when HIPS warnings came up and which ones they let through. I am now thinking of going for DefenseWall expecially with this current deal: http://www.bitsdujour.com/software/defensewall-personal-firewall/ Is DefenseWall have one product or 2? Its hard to tell from website.
Unless your parents can deal with Comodo Defense+ warnings, I'd go with Firewall DefenseWall HIPS. It would be a better approach to them, IMHO.