Surfing Naked

Discussion in 'other security issues & news' started by David S, Dec 23, 2004.

Thread Status:
Not open for further replies.
  1. David S

    David S Registered Member

    Joined:
    Feb 17, 2004
    Posts:
    32
    What are the dangers of websurfing without an antivirus running?

    To be more specific, while I understand the basics of email attachments, downloading unsafe programs etc. I was curious about other ways that you may get viruses.

    For example I have been to a few sites that as soon as I click on it NOD32 alerts me that something's wrong-I don't remember if it was trojans, worms, viruses-maybe it was malicious script. I remember reading something about people hacking into websites and putting malicious script onto it. Is this what was going on?

    Another thing I was wondering, can malware travel like a webspider (although it would be from connection to connection not site to site)? Does it ever travel/enter on it's own through open ports or does it require an action on my part downloading it in some way?

    On Instant Messaging can you acquire malware without opening any files etc.?

    I appreciate this as I just realized how much I didn't know.
     
  2. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    Hi David, as your topic is in relation to General Security and not a Nod32 support issue or question I have moved your thread to here where it should get more attention.

    Cheers

    Blackspear :D
     
  3. meneer

    meneer Registered Member

    Joined:
    Nov 27, 2002
    Posts:
    1,132
    Location:
    The Netherlands
    There are lots of risks on the net. Most of them are exploits, programs that mis-use vulnerabilities on all kinds of systems. The last big 'spider' like attack was santy, a perl script that even this week took advantage of a hole in phpbb. From an infected system it searched for and infected other phpbb systems. No manual action needed at all. Same applies to nimda, blaster and sasser, worms that by themselves can propagate on networks.
    The way to avoid this kind of attacks is by patching (regular managing your systems) and using security software like firewalls and anti virus software. Patching is only possible if the vulnerability is known and the manufacturer has created a patch. If no patch is available, only security software can help.

    There are lots of exploits that take advantage of vulnerabilities in software. For Internet Explorer and other tools based upon it (Outlook Express for instance) there are lots of exploits, that allow lamware to infect your system on looking at a file.
    Internet Explorer even has features that are designed in such a way that malicious software can use it.

    Best way to avoid such malware is to avoid the vulnerabilities by using other software.
     
  4. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    You may want to take a look here for further discussion on security and how to make your system that much stronger and here for more.

    This is what works really well for me, very simple to use and maintain.

    Hope this helps...

    Let us know how you go.

    Cheers :D
     
  5. bigbuck

    bigbuck Registered Member

    Joined:
    Jul 7, 2004
    Posts:
    4,877
    Location:
    Qld, Aus
    David,
    I recall doing a reinstall of Windows XP some time ago....I wiped the HDD..Reinstalled XP...Loaded my NAV..and then connected to Live Update only.
    No email..No surfing just Nav Live Update. Now on this particular reinstall I had inadvertently forgotten to enable the XP firewall!!!! About 3mins into the update I was hit with a virus which NAV was unable to fix!!! I just turned it off and reinstalled again...put me back a couple of hours though, but taught me a valuable lesson!!! Hit with a virus while on the NAV live update!!!! Go figure!!
    Surfing Naked......Nah!!!
    Buck.
     
  6. Jimbob1989

    Jimbob1989 Registered Member

    Joined:
    Oct 18, 2004
    Posts:
    2,529
    This thread isn't what I thought it was :D

    Anyway, realy you should always use antivirus software.... at least. To obtain full protection from most of the online nasties, you need a range of applications installed.

    Jimbob
     
  7. Huwge

    Huwge Registered Member

    Joined:
    Oct 21, 2004
    Posts:
    405
    Location:
    UK
    So are we saying then, if one bought a new machine with, say XP as the OS, the first thing to do is enable the MS Firewall before doing any updates etc at all. Would the FW be sufficent protection. I use NOD and would have to connect to install the AV. this is all assuming that the machine is the only one in the house, so backups and transfers from another machine are not an option. If more protection is needed before connecting to the net then how would it be done apart from buying software from a store (which would prob need a connection to update to latest version anyways) ? o_O
     
  8. meneer

    meneer Registered Member

    Joined:
    Nov 27, 2002
    Posts:
    1,132
    Location:
    The Netherlands
    ... even before connecting to a network. Install XP without any network cable connected.
     
  9. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    100% Correct, or any firewall will do.


    To start you off and get your machine patched, yes.


    Nothing else is needed, firewall and then update.

    Hope this helps…

    Cheers :D
     
  10. Jimbob1989

    Jimbob1989 Registered Member

    Joined:
    Oct 18, 2004
    Posts:
    2,529
    How about the other nasties out there, apart from viruses?

    Jimbob
     
  11. meneer

    meneer Registered Member

    Joined:
    Nov 27, 2002
    Posts:
    1,132
    Location:
    The Netherlands
    No need to update nasties :p
     
  12. nod32_9

    nod32_9 Guest

    I only have a firewall and an AV email scanner (no full-time AV protection). I don't do porns or go to warez websites. I decline all offers to download XYZ to view ABC.

    In summary, I browse the net without a real-time AV scanner for almost 4 years. Still bug free. Always make sure that the FW is properly configured before you connect to the internet. Set IE's security mode to HIGH. And always backup the data in the form of an image file of the C partition.
     
  13. securityuser

    securityuser Guest

    I agree with all of the above. I just wanted to add that if you're behind a router (which serves as a hardware firewall) you are safe from the get go. Of course, getting a software firewall to protect from malicious outbound traffic is a priority upon setting up from scratch - or a purchase from the store.
     
  14. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    Once you are firewalled and Windows is fully up-to-date, then install all of your other security products, update these and your systems is now secure. Then you can start surfing to your hearts content ;) :D

    Cheers :D
     
Thread Status:
Not open for further replies.