*Must have* software?

Discussion in 'other security issues & news' started by daf, Oct 18, 2004.

Thread Status:
Not open for further replies.
  1. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    Apart from an AV and a decent firewall, what other software do I **really** need to stop a persistant hacker?

    Thanks!
     
  2. optigrab

    optigrab Registered Member

    Joined:
    Nov 6, 2002
    Posts:
    624
    Location:
    Brooklyn/NYC USA
    Are you limiting your threats to persistent hackers? If you have a hacker problem I would imagine the firewall is your first and best line of defence, but you will also need some specialized help from someone with relevant experience.

    If you are just speaking about security in general - browser exploits, phishing, spyware, redirects, trojans, DDoS, hacking, etc. - there will be a long (but valuable) list.
     
  3. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Hi Daf, Difficult question but here are few ideas from my website:

    Lines of Defence:

    Here is a suggested range of solutions which MAY protect you, Why MAY? Because putting it simply nothing is 100% foolproof.

    FIRST lines of defence:

    Ensure you have the latest security updates for your chosen OS & programmes
    Secure password strategy
    Router with NAT or other firewall configuration. (networked environment) especially in a broadband environment.
    Software firewall preferably with both application & rule based capabilities, to allow outbound control where NAT routers usually only control inbound
    System Application Monitoring such as, Process Guard

    Second Lines of Defence:

    Anti-virus - resident
    Anti-Trojan - resident (execution protection)
    Dedicated Worm / script guards with registration protection
    Spyblocking Pop-up & Ad stopper, Unsafe Java, Active X , unfriendly cookies + parental control i.e Browser protection & set up
    Email, AV + Spam removal identification / removal facilities.
    Secure encryption facilities
    Proxy browsing etc.
    Practice Safe HEX!

    Other Lines of Defence:

    Spyware and registry cleaners
    Temporary internet file & unwanted cookie cleaners.
    On demand AV & AT scanners
    Secure data back-up facilities.
    Monitoring utilities & logging

    There will be other requirements based upon your perceived personal needs.

    Unfortunately there are no "foolproof" answers
    .
     
  4. se7engreen

    se7engreen Registered Member

    Joined:
    Feb 6, 2004
    Posts:
    369
    Location:
    USA
    Process Guard
    SSM
    Abtrusion Protector
    Take your pick of the above and possibly consider Prevx Home(free) for some added protection.
     
  5. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    Process Guard
    SSM
    Abtrusion Protector
    Prevx Home(free)

    The best is...

    Worth installing them all?
     
  6. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Probably a bit over the top :) You can use Process Guard to protect which ever ones you choose.
    You would also find a noticeable degradtion in performance with that lot fighting each other + probably some incompatability issue.

    Pilli
     
  7. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    Unfortunaltey Process Guard Free only allows me to protect 1 process e.g. firewall software. Worth installing this or maybe use one of these which are free?

    SSM
    Abtrusion Protector
    Prevx Home(free)

    ??
     
  8. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    Kaspersky Anti-Hacker 1.5??

    Opinions?
     
  9. se7engreen

    se7engreen Registered Member

    Joined:
    Feb 6, 2004
    Posts:
    369
    Location:
    USA
    No don't install all of them. My advice is to try Process Guard, SSM, and Abtrusion Protector and decide which works best for you.

    For me, Process Guard is what I trust to protect me from trojan and rootkit installations as well as application hijacking. I also use Prevx, which is for intrusion prevention, as extra protection.

    To clarify, SSM and Abtrusion Protector serve a similar purpose as process guard.
     
  10. nod32_9

    nod32_9 Guest

    If the firewall is properly configured, then your PC will be "STEALTH" when you're connected to the internet. Hackers have plenty of unprotected PCs to hit. There is NO need for them to hunt for STEALTH PCs. It is very very rare for bugs to sneak past a properly configured firewall. Most infections occur because the bugs is contained within a downloaded application. You wouldn't invite any stranger into your home. Use the same logic when it comes to downloading data from the internet.
     
  11. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    I see but with not being in a position to pay for Process Guard which out of SSM and Abtrusion Protector is more likely to stop hackers?
     
  12. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    To nod32_9

    Normally I'd agree but without wanting to go into what this is all for I really need to basically lock down my PC to intruders and hackers wanting to get at it and take it down.
     
  13. I think you would do well with SSM. It's probably one of the best of the free one's. Then use Process Guard free to protect SSM. Of course newer versions of SSM will no longer be free, but there are still free versions available.
     
  14. se7engreen

    se7engreen Registered Member

    Joined:
    Feb 6, 2004
    Posts:
    369
    Location:
    USA
    Like nod32_9 is getting at, a firewall would be your first line of defense. This should not be overlooked as this will be the most utilized piece of protection. The other products (PG, SSM, Abtrution...) are more aimed at protecting you if your security (firewall, antivirus, antitrojan...) is compromised. If you feel that you need this type of protection, SSM is free and I think there's a price on Abtrusion Protector and there is a price on PG.
     
  15. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    Right, at the moment my defence is:

    1. Kerio 2.1.5 firewall

    2. AntiVir Personal Edition 6.28

    3. SSM 1.9.5 beta 3

    4. Process Guard

    Should PG protect SSM or Kerio firewall?

    Anything else needed?

    Thanks!
     
  16. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    What it's the website of SSM?

    Thanks
     
  17. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    Your firewall because is the first line of protection on your pc!
     
  18. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
  19. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    How can I classify the PG and SSM?
     
  20. se7engreen

    se7engreen Registered Member

    Joined:
    Feb 6, 2004
    Posts:
    369
    Location:
    USA
    I would say if you have ssm protecting your av and fw, then process guard should protect ssm. (that's if I'm right by thinking ssm is not kernal level software and needs protection)

    The only other thing you might what (depending on your level of paranoia :) ) is a trojan scanner. A free on-demand scanner could do some good (ewido or A2 are the only free ones I know of). You could install ewido without the background scanner and you'll have a top knotch trojan scanner.

    But already you are pretty heavilly guarded with what you listed before.
    https://www.wilderssecurity.com/showthread.php?t=29492&highlight=stop
    This thread could be helpfull if you need some help with your firewall rules. Toward the end of the thread there is a link to download a ruleset for kerio 2, created by a firewall guru.

    Good Luck
     
  21. DivineGlitch

    DivineGlitch Guest

    Actually SSM 1.9.5 and above features kernel-mode protection for *NT (2k, xp) ;)
     
  22. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    Taking into consideration your remark about not wanting to get into details....I hope your understanding what Nod_32 and others have said. IF you have Kerio set properly and IF someone hasn't found a way to exploit Kerio. Your firewall IS all you need. IF....you can not trust a properly configured firewall....no amount of extra programs is going to help.
     
  23. AlbatroS

    AlbatroS Registered Member

    Joined:
    Sep 19, 2004
    Posts:
    11
    I like it very much, but it's a problem after a while if activate "Watch App Activity". It seems to freeze system to freeze a 1st time launched app. I tested it on wk2000 and xp and... same result.

    So now I use Process Guard + SSM without WAA waiting a solution.
    Am I the only one that has this problem?
     
  24. daf

    daf Registered Member

    Joined:
    Oct 15, 2004
    Posts:
    27
    Anyone know of a very secure ruleset for kerio 4?
     
  25. snapdragin

    snapdragin Administrator

    Joined:
    Feb 16, 2002
    Posts:
    8,415
    Location:
    Southern Ont., Canada
    Hi daf,

    You have asked about rulesets for Kerio4 in your other thread in the "Other Firewalls Forum" here: https://www.wilderssecurity.com/showthread.php?t=51230

    Please stay with that thread for further firewall questions so this one doesn't go off topic. ;)

    Regards,

    snap
     
Loading...
Thread Status:
Not open for further replies.