Optimal NOD32 AV v4.2.40 Settings

Discussion in 'ESET NOD32 Antivirus' started by LaFemmeMichele, Jul 10, 2010.

Thread Status:
Not open for further replies.
  1. LaFemmeMichele

    LaFemmeMichele Registered Member

    Joined:
    Sep 13, 2006
    Posts:
    142
    Hello,

    I'm interested in feedback on my configuration.

    Setup>AV&AS>Web access protection>HTTP, HTTPS>Active mode. Unticked by default, I chose to tick: iexplorer.exe, WINWORD.EXE, wltuser.exe, wmplayer,exe, chrome.exe, svchost.exe.

    Setup>AV&AS>Web access protection>Protocol filtering>SSL protocol checking>configuration of protocols encapsulated in SSL protocol. Ticked by default is Do not scan SSL protocol, I chose to tick: Always scan SSL protocol.

    Please do not respond with the default settings are recommended. I'd like your thoughts and rationale.

    Thanks in advance.

    M
     
  2. grun93

    grun93 Registered Member

    Joined:
    May 11, 2009
    Posts:
    24
    If you really want feedback but don't want answers like: what's wrong with the default settings, please give your motivation and share your thoughts about why you think that the default settings are not the right ones in your particular situation. There must be a reason why you choose your settings? My guess is that you may have a very good reason for changing the default, but without knowing your reasons for doing so, it is a littlebit shooting in the dark or a catch-22 situation for the rest of us.
     
  3. LaFemmeMichele

    LaFemmeMichele Registered Member

    Joined:
    Sep 13, 2006
    Posts:
    142
    grun93,

    Really? Let me help you out of your catch 22 situation by pointing out you aren't in one. :) I believe everything can be improved on or customized. I believe that web facing apps ie, browsers, deserve web access protection. I understand that SSL is protocol that secures email and web transactions. So when I see these are omitted by default, I tend to want to include them. I thought that would be clear. My motivation is the same as that of any other AV user. I don't have an anti-intellectual gene and I am a spoiled woman who truly misses the excellence of a certain moderator.

    M
     
    Last edited: Jul 12, 2010
  4. jimwillsher

    jimwillsher Registered Member

    Joined:
    Mar 4, 2009
    Posts:
    668
    M

    Like grun93, I was totally confused by your posting - and your follow-up doesn't help.

    When you install software, it has default settings. If you don't like the default settings then you tweak them. In other words, you change a setting as a specific task in order to make the software work differently.

    So.......how can anyone answer your question? You must have ticked/unticked options for a specific reason, and that is your preference.

    Personally? I just untick "scan on open" and "scan on create", as I'm happy to run with just "scan on execute". Those two boxes are the only ones I untick. Oh, and I also remove all message tagging on inbound/outbound emails. As THESE are the preferences I want to tweak, for my own reasons.

    If I were you - use default settings unless you have a particular need to change any. No-one else's settings are any use to you, it's your settings which matter to you.

    My 2p.



    Jim
     
  5. LaFemmeMichele

    LaFemmeMichele Registered Member

    Joined:
    Sep 13, 2006
    Posts:
    142
    Jim,

    When you scan on execute aren't you in the least bit interested in what's being scanned?

    M
     
  6. grun93

    grun93 Registered Member

    Joined:
    May 11, 2009
    Posts:
    24
    Yes, really. The default settings are choosen because they are the best optimized settings for 99% of most users: the fine thin line between maximum security on one hand and the least timeconsuming interference for users on the other hand. Everyone wants maximum security against all the dangers from the internet but no one like to wait for a couple of minutes while a file is being scanned.

    Sure, you have the right to improve security by changing default settings, I am not arguing with that. That doesn't mean that you don't have to think twice and thinking about the risks before clicking on any link at a webpage or at an attachment in your email. There simply is no such thing as 100% security.
     
  7. jimwillsher

    jimwillsher Registered Member

    Joined:
    Mar 4, 2009
    Posts:
    668

    Not really. I just care that whatever I execute is being scanned. However I'm less concerned about scanning files on open or on create, so I disable those options. I just scan on execute.


    Jim
     
  8. LaFemmeMichele

    LaFemmeMichele Registered Member

    Joined:
    Sep 13, 2006
    Posts:
    142
    Jim,

    After reading your post, it occurred how differently one could interpret the meaning of the settings. I reread about Active mode and I now interpret it to mean a mode to be utilized if issues arise with any of items listed.,, I unticked all of them. The virulence of the product doesn't need to be diminished in order to achieve compatibility.

    I'm leaving always scan SSL protocol. If anyone has a valid reason for not doing this, I'd like to hear it.

    M
     
    Last edited: Jul 12, 2010
Thread Status:
Not open for further replies.