System Safety Manager (SSM)

Discussion in 'other security issues & news' started by srfox, Aug 26, 2003.

Thread Status:
Not open for further replies.
  1. srfox

    srfox Registered Member

    Joined:
    Jul 25, 2003
    Posts:
    86
    Location:
    Los Angeles
    Ok,
    I'm currently using SSM and would like to hear from others on this subject, especially how to interpret different dll calls, and what processes to be suspicious of and anyone's experience doing different things with it.
     
  2. Tassie_Devils

    Tassie_Devils Global Moderator

    Joined:
    May 8, 2002
    Posts:
    2,514
    Location:
    State Queensland, Australia
    HI srfox :)

    Yes, a lot of people use System Safety Monitor, it is another fine program in a security layered defence.

    I do not know a great deal about it really, just start it and made only the apps I wanted to trust in the list, and monitor the registry.

    Never had an alert so far [knocks on wood] and cannot comment on its true effectiveness....

    But I also have a great Anti-Trojan program and never had to use that either, LOL, so I guess one relies on faith in the products.

    Cheers, TAS.
     
  3. srfox

    srfox Registered Member

    Joined:
    Jul 25, 2003
    Posts:
    86
    Location:
    Los Angeles
    You would get a lot more alerts if you set it to watch App Activity.
     
  4. AplusWebMaster

    AplusWebMaster Registered Member

    Joined:
    Jun 14, 2003
    Posts:
    239
    Location:
    Philadelphia, PA, USA
    :eek: FYI...
    Fight Against Viruses May Move to Servers
    http://www.washingtonpost.com/ac2/wp-dyn/A56103-2003Aug27?language=printer
    "Computer viruses are becoming so aggressive and sophisticated that they may soon be able to elude anti-virus programs installed on individual computers, according to many in the security industry. The task of protecting information stored on computers, they say, will increasingly be turned over to software installed on servers that have the power and speed to trap and disable malevolent code. "Users may not realize that just having anti-virus software and a firewall isn't enough to protect them anymore," said Brian King, an Internet security analyst with the government-funded CERT Coordination Center at Carnegie Mellon University.
    The computer security industry says the speed with which viruses and worms now propagate require technologies that predict outbreaks before they happen. Such predictive systems require intensive computing power beyond the capacity of desktop machines. "Viruses will soon be too good for desktop computers to stop," said Mark Sunner, chief technology officer at e-mail security company MessageLabs..."

    Also see this post:
    https://www.wilderssecurity.com/showthread.php?t=12613;start=msg83372#msg83372

    EDIT: - Post -url- location...
     
  5. optigrab

    optigrab Registered Member

    Joined:
    Nov 6, 2002
    Posts:
    624
    Location:
    Brooklyn/NYC USA
    Hi srfox

    Back to your original question ;)

    I use SSM, with App Activity checked, and I have wondered about the alerts - same as you. I wish that SSM had a user-forum, as it would be a great asset to an already great application.

    I did notice a lot of alerts for an extended time; however after a while they die down.

    As for safety of various dll calls, for a while I bothered to look up a bunch of them using Google/Google Groups. Then I decided that I wouldn't worry until after the initial wave of dll calls subsided (it takes a while) and then see if something new cropped up.

    If anyone has a better approach - I would sure be interested.

    Regards
    Optigrab
     
  6. Blackcat

    Blackcat Registered Member

    Joined:
    Nov 22, 2002
    Posts:
    4,010
    Location:
    Christchurch, UK
    Severa new updates are available, including a SSM guard which monitors services in Win NT systems.

    http://www.wilderssecurity.com/showthread.php?t=13233;start=msg84748#msg84748
     
  7. srfox

    srfox Registered Member

    Joined:
    Jul 25, 2003
    Posts:
    86
    Location:
    Los Angeles
    Optigrab,
    Yeah, I've kinda taken that approach as well. Plus doing scans inbetween to see if I allowed something I should not have. As this did happen once. Beware of Teknum Systems. This comes automatically packed with an application know as HandyBits encryptor.
     
  8. optigrab

    optigrab Registered Member

    Joined:
    Nov 6, 2002
    Posts:
    624
    Location:
    Brooklyn/NYC USA
    Thanks srfox

    Wild coincindence :eek: I was on the verge of installing HandyBits encryptor yesterday, then decided to research some alternative encrytion programs.

    Blackcat, is the SSM Guard feature for WinNT working well?

    Regards
    Optigrab
     
  9. srfox

    srfox Registered Member

    Joined:
    Jul 25, 2003
    Posts:
    86
    Location:
    Los Angeles
    I use AxCrypt, which I find is very good.
     
Loading...
Thread Status:
Not open for further replies.