Introducing EMET v3

Discussion in 'other security issues & news' started by ronjor, May 15, 2012.

Thread Status:
Not open for further replies.
  1. Tsast42

    Tsast42 Registered Member

    Joined:
    May 7, 2012
    Posts:
    137
    Location:
    United Kingdom
    Re: EMET v3 - More of the best

    "Best security software ever created"
    Hmmm....
     
  2. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    Re: EMET v3 - More of the best

    It's not like there's much competition.
     
  3. Pinga

    Pinga Registered Member

    Joined:
    Aug 31, 2006
    Posts:
    1,420
    Location:
    Europe
  4. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    9,625
    Re: EMET v3 - More of the best

    So what's better?
    Mrk
     
  5. Escalader

    Escalader Registered Member

    Joined:
    Dec 12, 2005
    Posts:
    3,710
    Location:
    Land of the Mooses
    Re: EMET v3 - More of the best

    Thanks Mrk. Good blog.
     
  6. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    EMET 3.0 on maximum security here.:thumb: Another Kevlar blanket with out the wait.:D
     
    Last edited: Jul 8, 2012
  7. mack_guy911

    mack_guy911 Registered Member

    Joined:
    Mar 21, 2007
    Posts:
    2,677
  8. Escalader

    Escalader Registered Member

    Joined:
    Dec 12, 2005
    Posts:
    3,710
    Location:
    Land of the Mooses
    Agree 100% that this product is a keeper.

    But I'm going to remember that it works as a blocker for malware that is trying to run on my PC!

    ie it sliped by my layered defenses, router, Firewall, hardened browsers etc.:D
     
  9. Tsast42

    Tsast42 Registered Member

    Joined:
    May 7, 2012
    Posts:
    137
    Location:
    United Kingdom
    Re: EMET v3 - More of the best

    The first software that springs to mind as being better at OS-wide security is Kaspersky PURE or any similarly OTT security suite covering anti-virus/heuristics/behaviour blocking/HIPS as this will prevent most all infection from occurring in the first place and notify you in the rare event of malware breaching the preventative measures followed by at least a fairly good attempt at removal. EMET doesn't do any of that; certainly there is no evidence showing it comparable in efficiency. Another quick example of security software superior to EMET is Defensewall. Really there are many better options IMHO.
     
  10. EMET can prevent large swaths of memory exploits from ever happening, with no user interaction. I wouldn't say that qualifies it for "best security software ever," but that's pretty good in my book. The "no user interaction" part is especially important, because novice users don't know how to respond to HIPS popups. In theory, it may not provide as effective a security layer as a good HIPS; but for most users it's probably better, because they can't click "Yes" and get infected.
     
  11. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    9,625
    Re: EMET v3 - More of the best

    A third-party software that costs money and is based on blacklisting? I see.
    Removal? There should be none, because there's nothing to remove.
    Notify user? As if users know anything.
    Waste cpu cycles? No.

    The answer is: EMET wins.

    Mrk
     
  12. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    Re: EMET v3 - More of the best

    :thumb: :thumb: :thumb:

    Also...EMET is made by Microsoft and is being progressively developed so I consider it part of "Windows protecting Windows." :)
     
  13. STV0726

    STV0726 Registered Member

    Joined:
    Jul 29, 2010
    Posts:
    900
    UPDATE: I am now happily running v3 and I love the littler notifier. It doesn't seem to be using THAT much memory for me either... 7900 K. Could be a lot better considering all it does is notify, but I like the functionality. It can save major guess-at-problem headaches.

    Also, YES, my system-wide settings and app settings are preserved as promised.

    I'm currently going through a big decision whether to start implementing EMET for applications I always sandbox(ie).
     
  14. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Here is what I added for applications so far and Cranked up on maximum security.So far nothing has broken
     

    Attached Files:

  15. emmjay

    emmjay Registered Member

    Joined:
    Jan 26, 2010
    Posts:
    1,384
    Location:
    Triassic
    I have been using EMET ever since it was made available and I have it on my laptop (W7/32) and desktop (Vista/Bus). I think it is a good security layering option and should be seriously considered by all windows users.

    I recently upgraded EMET v2 to v3 on my laptop and got a BSOD (it is not EMET causing the problem) I had recently reinstalled BufferZone on that system to show a friend how it worked and forgot to uninstall it. BZ goes caster up every now and again on 'bad pool header' which is a known problem with this mob. A normal restart will return the system back to normal.
    If you have BZ running I suggest disabling it before installing EMET. You can re-enable it after the install and BZ will be OK. Just saying.

    I installed it on my Vista system that has SBIE running ... no problems.
     
  16. Tsast42

    Tsast42 Registered Member

    Joined:
    May 7, 2012
    Posts:
    137
    Location:
    United Kingdom
    Re: EMET v3 - More of the best

    Good.

    Nothing to remove? So in the majority of infections: where the user has downloaded something they shouldn't have, or received an noxious email, or inserted a USB containing malware, or run an infected CD your solution will be to tell them not to worry as thanks to the presence of EMET they magically have nothing to remove. Sure. Just so long as you consider doing local PC users a favour and not taking calls as an IT maintenance engineer.

    Some do, some don't. Without notification you don't even have a chance.

    Reducing CPU cycles may be of some value for saving electricity. For the user they're quite irrelevant as what counts is performance and stability which are frequently impacted by EMET by an order of magnitudes more than anti-malware products.

    In a one-legged chumps race.
     
  17. elapsed

    elapsed Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    7,076
    Re: EMET v3 - More of the best

    Looks like flame-bait to me. I doubt a Wilders member would genuinely think this to the point they are trying to express it as fact, considering they are all directly related... or that injecting an anti-exploit DLL into a process would impact more than running a real-time anti virus product.
     
  18. Sure you do, if the exploit is blocked in the first place. Anyway EMET is not a one-stop fix for all security holes... Nothing is. It's just another security layer.

    Edit: BTW, it is generally considered unwise to rely on an on-access AV for malware removal. Once a system is infected, the antivirus is also untrustworthy (and possibly infected itself, depending on the malware).
     
  19. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    9,625
    Re: EMET v3 - More of the best

    That was cynicism on my end.
    You are welcome to your own world of security illusions.
    Mrk
     
  20. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Agree with this and there is many post in here where people come for help that there AV of choice is alerting to something on there system and cant clean it or remove it and there lucky to even get the alert in the first place.EMET can be that extra layer that cant help from exploits.A ounce of prevention is worth a pound of cure.
     
    Last edited: Jul 9, 2012
  21. Tsast42

    Tsast42 Registered Member

    Joined:
    May 7, 2012
    Posts:
    137
    Location:
    United Kingdom
    Re: EMET v3 - More of the best

    Which is because of your lack of understanding of the functioning of operating systems and software in general which in this instance shows in your mistaken assumption that the limiting factor in the running of software is the CPU. Don't worry yourself about it too much all that needs saying is that computing is a complicated area where what seems common sense is more often than not invalidated by unconsidered factors, requiring testing for discovering the facts rather than inferring from what knowledge one has learned.
     
  22. Tsast42

    Tsast42 Registered Member

    Joined:
    May 7, 2012
    Posts:
    137
    Location:
    United Kingdom
    If it is, then yes. But inevitably not all exploits are and without notification you won't know either way.

    I don't disagree with any of that, it's the suggestion that EMET is the best security solution in itself that is wrong.

    True, malware removal is not the primary benefit of AV.
     
  23. Tsast42

    Tsast42 Registered Member

    Joined:
    May 7, 2012
    Posts:
    137
    Location:
    United Kingdom
    Re: EMET v3 - More of the best

    I was aware of your intentions, it was the lack of any serious argument that rendered them uninteresting to me. Your claim was obviously controversial but I didn't expect that there would be nothing behind it. As there isn't I'm considering the matter settled, all sorts of people believe in all manner of ideas, I'm concerned neither with arguing nor convincing them to the contrary. Argumentation is only of utility as a means to uncovering the truth of any given claim, once it is reached the dispute can end as it has here.
     
  24. elapsed

    elapsed Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    7,076
    Re: EMET v3 - More of the best

    Lol, obviously. If one program uses a lot of CPU it totally won't affect the rest of the systems performance and domino onto other processes, how silly of me! :argh:
     
  25. Tsast42

    Tsast42 Registered Member

    Joined:
    May 7, 2012
    Posts:
    137
    Location:
    United Kingdom
    Re: EMET v3 - More of the best

    Correct: the use of CPU will only drag down the system when it is the bottleneck, where it is a increase from 3% to 5% of CPU utilisation the cause of the performance reduction will lie elsewhere.

    EDIT: But believe what you will.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.