ŔE Hips

What do you think about? https://rehips.com/en/

 

20 years ago with XP, it was probably a good idea. Today, with a modern version of Windows and today's antimalware solutions, not needed.

 

Good point thanks

 

YW

 

ReHIPS is a Host Intrusion Prevention System (HIPS) or a sandbox with antispy features. It reliably secures your data, protects your computer from attacks, exploits, malware and espionage and doesn't require frequent updates or internet access.

 

Yes, I know what it is. I feel like you are trying to convince me that this is a needed program. It's not.

HIPS programs have been around for decades. All those claims are just standard marketing hype. I never found the need to use one, and never regretted not having one. If you keep your OS updated, use a decent anti-malware solution, and you are not "click-happy" on every link, popup, download and attachment you see, you don't need it.

I actually had to laugh when I saw your "espionage" there. To me, that is like saying, sure, a burglar could steal your wallet. All he has to do is park his strange car out in your street, sneak past your nosy neighbor, past your security lights, past your Ring doorbell, past your alarm system, break through the regular door lock and 2 deadbolts, past your two Rottweilers, then pick-pocket your pants, then sneak back past the two dogs, out the door, past the neighbor, hop in his get-away car and drive away - all without being noticed.

You are using a router, right? That alone is a HUGE layer of protection. Then you [hopefully] have a firewall and an anti-malware solution - both enabled by default in W10 if you did not dink with them. Then the operating system itself (especially if W10) is very secure on its own, with very few vulnerabilities, with all known vulnerabilities patched (assuming you keep Windows current). And all that is just to protect you from bad guys coming in.

They then would have to install malicious code on your system, run that code, and collect your data. All decent antimalware solutions, including W10's Microsoft Defender (formally Windows Defender), already do "behavior analysis" to look for (and block) that type suspicious activity. Then once collected, that malicious code would have send (upload) that data to somewhere - again something your anti-malware solution (and firewall) will be looking at, and block if not authorized.

I like to say we don't need to drive around in an Abrams tank to be safe. We just need a fairly recent car that is properly maintained, we need to wear our seat-belts, and most importantly, we need to drive defensively.

Will it hurt to install a HIPS program? Well it could hurt performance. This is because it will use some system resources (RAM, CPU cycles, and disk space). Will it make you more safe? Not really.

 

I just posted what I read and not trying to convince no one

 

Okay. That's cool.

 

Sorry but I just want to some info and see how secure will it be comparing to what I have

 

I also realize that you got good points here

 

Well, can't really tell because you didn't say what you have now.

As seen via the link in my sig, I've been doing this for quite awhile. And as I said before, years ago, this might have been helpful. A multi-layered approach to security was a pretty common practice. But, still, I never found a need for a HIPS program because the standard layers were already so effective. So I never used or recommended one for any of my clients, friends, colleagues, or relatives.

That said, it helps if you are the only user of the computer. If the computers are used by several users, and not all are what I call, "security aware" or as disciplined to avoid being "click-happy", then adding extra layers is not a bad idea - at least not for peace of mind.

But since XP, and especially starting with W7, Windows itself has gotten a lot smarter and Microsoft has too. Plus, Microsoft got fed up constantly being blamed over security when it was the bad guys who really deserved the blame. So MS has done a good job of locking down Windows (even if it meant less flexibility) to make it much harder for the bad guys to compromise and exploit Windows - especially W10 (if kept current).

On top of that, the security industry has made huge advances. So, we no longer need an anti-spyware program, an anti-virus, anti-trojan, and multiple other layers of security programs. One decent anti-malware program is good enough for the vast majority of systems out there.

This is exactly why bad guys are concentrating more and more on business systems. It is too hard to infect W10 anymore.

It is also why bad guys, instead of using brute force to hack our systems, they depend on tricking users with socially engineered methods of distributing malware. That is, they send spam messages that look like they came from your bank, for example, and trick users to click on a link that asks for your personal information. That's where avoiding being "click-happy" comes in. Even the best computer security solution in the world is useless if the user opens the door and lets the bad guy in.

For the record, I have 5 computers here. I use Microsoft Defender as the main real-time anti-malware solution on all of them. On my two primary systems, I also use Malwarebytes Premium. On the other three, I use Malwarebytes Free. The free version does not have a real-time scanner. You have to do manual scans with it. Regardless your primary anti-malware solution, I always recommend a 2nd scanner be on hand for "on-demand" scanning - just to make sure the primary or user (always the weakest link in security) didn't let something slip on by.

Besides keeping W10 current, that's all that's needed since I am not "click-happy" and I have taught the other users of my other systems (visiting kids and grandkids) not to click on unsolicited links and popups.

FTR - I have not had any of my personal computers infected since Windows 95 days - and that was infected via the "sneakernet". That is, on a work computer, a co-worker brought in an infected floppy disk from his home and left it in work computer overnight. In the morning, not knowing (and failing to check ) the floppy was in there, I booted the computer and it booted to the infected floppy. Not good. That co-worker spent the next several days going around to the 150 or so computers in the building to make sure the BIOS Setup Menus where set to boot to the hard drives first, and never to a floppy.

Anyway, my point is, just because another 3rd party security program might be decent at what is claims to do, that does not mean we need it. And in this case, if you already have a decent, real-time anti-malware program, you keep Windows current, and you don't click on every unsolicited link, popup, download, or attachment you see, you don't need it either.

If you already have 3 locks on your door, do you really need a 4th?

One last thing to remember. Bad guys are lazy opportunists. They go for the easy pickings. They look for users running outdated operating systems, wifi networks with the default passphrase or simple to guess passwords. If they run into anything more challenging, they are just going to move on and not waste their time. The exception would be someone who knows you personally and knows you have something they want. And in that case, you have bigger problems than just keeping your computer secure to worry about.

 

Fully agree

 

I agree with Bill. If you keep your system updated and are careful about what files you open, it is actually extremely hard to get infected.

The only security software I've installed on my system is a third party antivirus (but WD would protect me just as well). I don't feel the need to use a layered setup, or care too much about having the best antivirus, because in my countless hours spent on the web, visiting many websites, I never encounter malware. I do run very occasional scans with Emsisoft Emergency Kit, which is the only other security software I use.

 

Roger thank you for your comment

 

It is probably not needed for AV user, but it may be helpful for people not using AV.

 

Very true.did ever use it? I only read online but it maybe buggy last update was in 2018 and also it is very pricey.