What is your security setup these days?

Discussion in 'other anti-malware software' started by dja2k, Dec 15, 2005.

  1. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,102
    Location:
    North Carolina USA
    But when the weight of keeping ones money safe, outweighs the gain of the guy trying to pick my wallet, then and only then, do things happen. We shall see my friend, I can only hope so.
     
  2. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    The problem is that it isn't a question of pouring money into a protective wallet, there is a limit to how secure that wallet can be etc etc. An attacker can make 50 dollars by exploiting someone's computer but Windows and the AV software my cost 150 dollars. Their profit is certainly less than my cost, it's not really important to them.

    And what about vulnerabilities in things like SSL and protocol? No program is going to fix that.

    Or a compromised network. Or cert.

    There are soooo many ways to get into a machine and there are so many other ways to exploit users without ever having to touch their computer.

    I'd certainly like to see some big advancement in security but I don't expect it.
     
  3. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,102
    Location:
    North Carolina USA
    the ironic part is, you are already witnessing it.
     
  4. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    Witnessing what exactly? And how so?
     
  5. dw426

    dw426 Registered Member

    Joined:
    Jan 3, 2007
    Posts:
    5,543
    Exactly, witnessing what? Surely you don't mean advances in security, because it's still the same situation it was in 2000. Get signatures as quick as possible, blacklist URLs and files, and pray. Patch this, patch that, it was being done back then and it's being done now. The addition of the "cloud" (which isn't going to last long) and tossing heuristics into programs isn't going to rectify the situation. I'm sure people will hold their HIPS software up high and praise it too, but guess what, it's still too complicated to use by the general public and relatively few use them to begin with. Hell, it's hard enough to get people on board with simple things like Sandboxie, which literally can be run out of the box with little risk.

    Hungry hit the real source of the problem, the Internet itself, its structure, is broke, is insecure, and, as he said, no amount of HIPS, virtual software, anti-virus and malware scanners are going to nor can fix that. To avoid the issues we're seeing so much of now, and that will continue to worsen, the Internet will basically have to be re-invented. You can only patch so much before the patches themselves start to cause problems, and you as a user can't do a damn thing about broken and insecure vital functions of the Internet.
     
  6. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    Heuristics aren't even new. As I said, they've been around since the 80's and popularized in the 90s under different names.

    HIPS isn't new either, it's just more refined now. But yeah, you hit the nail on the head.

    Essentially a lot of it comes down to this (though it's not even just limited to this) the internet is just insecure. It wasn't built with security in mind and we've been slapping protocol onto it for years and once in a while something half-decent sticks and we call it security.

    As for local security, that's definitely... well evolving is the wrong word... it's definitely improving. But there hasn't been some radical new implementation of security and most everything I see is a stopgap that requires constant updates. And of course it's all 3rd party so the vulnerabilities of the OS are always still exploitable.
     
  7. AaLF

    AaLF Registered Member

    Joined:
    Feb 20, 2005
    Posts:
    986
    Location:
    Sydney
    I never have the same setup for too long. but I have favorites. And again I have been 'saved' by the one I always forget about. I always toy with tests for hips & firewalls etc and sooner or later I get bitten.

    That's when I reach for AaLF's little helper, Snapshot. Disk Imaging.
     
  8. Emetic

    Emetic Registered Member

    Joined:
    Oct 4, 2011
    Posts:
    73
    When you have checked out the excellent Dedoimedo guide:

    These should give you a good overview and get you up and running -

    Protecting your Windows PC with Microsoft EMET 2.1:
    http://rationallyparanoid.com/articles/microsoft-emet-2.html

    Testing exploits against systems running Microsoft EMET:
    http://rationallyparanoid.com/articles/emet-testing.html

    How to download, install and configure Microsoft EMET to add an extra security layer for
    programs and applications in Windows XP, Vista or 7:
    http://help.artaro.eu/index.php/general-security/other-security-programs/microsoft-emet.html


    And don't forget these two excellent resources when you want/need to go a bit deeper -

    EMET User guide:
    http://www.scribd.com/doc/36822486/...perience-Toolkit-EMET-version-2-0-Users-Guide

    EMET Forum:
    http://social.technet.microsoft.com/Forums/en/emet/threads
     
  9. Emetic

    Emetic Registered Member

    Joined:
    Oct 4, 2011
    Posts:
    73
    Imaging is probably the best solution, but how many of us even technical people do it as often as we should? It is beyond the ability of quite few people I know who use computers, otherwise intelligent people. I know a person at the level of Chess Grandmaster that went ballistic when I tried to show him the concept of Sandboxie. He was infuriated at his inability to get his head around such complexity!

    I just got back from my Mum/Step-Dad's place. In the six weeks I was away they have somehow managed to pick up a TDSS file system (no infection apparently though) on the HD. I can only think that the resident real time AV I put on there cleaned it (I know they are not supposed to pick them up). That would be Avira. I doubt somehow the real time SAS would have. Maybe. It wasn't in the logs. I had just done a re-format and partition so it must have been recent. I have to admit, I am clueless as to what is going on with their computer and how it is constantly picking up infections. No porn, no warez.
    I believe it has something to do with the clicking on the .jpgs that friends email. I am fighting a losing battle and I can not lock down the machine, coz they wouldn't be able to use it.

    Yes most people are lazy and leave themselves wide open. Not even wanting to learn or understand when things are spelt out for them. The problem with my folks is that they are both very ill, and they are just not capable of getting their head around what is needed to be done. They don't do that much surfing stuff though. Facebook is the most dangerous thing I would imagine.

    So, to get to the point - We can keep our heads above the water by putting in massive amounts of energy and resources, but for the average user they really are wide open with out a multi-layered security strategy that is maintained and up to date by someone that knows what they are doing. How many would be willing to pay *any* amount for that? Few I would wager.

    I am done with fixing people's computers for free. Too many promises of beers never bought when it comes down to it. And to bring someones computer back from the dead and recover their data - a full two days worth of work, and then find out that they had paid £50 for McAfee was the final insult and wake up call I needed (no offense to McAfee). That was on a promise of a few beers. You can buy a lot of beer for 50 quid. The beers never came and it is an all too familiar tale. Fixing computers is not an equitable thing. I would have to charge more than they are willing to pay. That is why I don't do it for anyone any more - not even 'friends'. Just family.


    So to all you recent posters - you are quite right. And I would also wager there are going to be a lot more wake up calls going out to a lot more people real soon as this 'Internet Security' thing is just starting to get going...

    I'm a noob myself but I can see how the whole 'model' is broken. And is going to have to get a lot worse before it gets better.


    Hopefully this post seemed relevant. Mods feel free to delete. No hard facts here, just some 'hard' impressions...o_O
     
  10. KelvinW4

    KelvinW4 Registered Member

    Joined:
    Oct 11, 2011
    Posts:
    1,199
    Location:
    Los Angeles, California
    I added Immunet and Online Armor
    and took off Malware Defender
     
  11. KelvinW4

    KelvinW4 Registered Member

    Joined:
    Oct 11, 2011
    Posts:
    1,199
    Location:
    Los Angeles, California
    Ohhhh wow..... Immunet slow down my computer unlike last time :'(
     
  12. BG

    BG Registered Member

    Joined:
    Jun 14, 2003
    Posts:
    214
    Trying NIS2011 and WSA Essentials. So far seems really light. Uninstalled MBAM Pro which was running real time.
     
  13. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Trying out Eset smart security for a minute or two.:D
     
  14. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,459
    Location:
    Canada
    i max it up:)
    very light and fast program
     
  15. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,491
    Thank you so much! You have given me a ton to read and learn. I installed EMET yesterday on three machines, but just added Firefox and Foxit Reader. No problems so far but I want to read more about this and likely add more programs in the mix to see the results.

    Thanks also for replying over at DSL Reports.

    Cheers!
     
  16. buckslayr

    buckslayr Registered Member

    Joined:
    Jun 1, 2009
    Posts:
    484
    Location:
    Michigan, USA
    Using Webroot SecureAnywhere. Can't believe how light this is. Bought the 3 PC license essentials version.
     
  17. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,459
    Location:
    Canada
    how much does it cost?
     
  18. tomazyk

    tomazyk Guest

    Removed Eset Nod32 v5 and went back to good old Malware Defender :thumb:
     
  19. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    13,459
    Location:
    Canada
    Malware Defender good choice
     
  20. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    Has anyone run/is running DefenseWall?

    I used a trial or something on my old laptop but I never got to play with it.

    Is it compatible or do you have to whitelist some programs etc?

    I see it considers applications "Trusted" and "Untrusted."

    What happens when something is considered trusted? Untrusted?
     
    Last edited: Nov 9, 2011
  21. The Hammer

    The Hammer Registered Member

    Joined:
    May 12, 2005
    Posts:
    5,734
    Location:
    Toronto Canada
    Any issues with MBAM running real time?
     
  22. chrismc2

    chrismc2 Registered Member

    Joined:
    Nov 7, 2011
    Posts:
    10
    Hi Guys

    Pretty new here. My set up is as follows Thoughts on this. Thanks in advance.

    KIS on my Encrpyted HDD with Hidden System
    Cocoon with Firefox & Sandboxie
    SuperSpyware
    Malawarebytes

    For Super Anti-Privacy I have my IronKey Personnel

    Thanks again :doubt: :blink:
     
  23. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Your set up is good but I hope you ment to say SuperAntispyware,because superspyware is rogue.I hope you dont have this superspyware.In case your wondering, I actually ran this live.
     

    Attached Files:

    Last edited: Nov 9, 2011
  24. chrismc2

    chrismc2 Registered Member

    Joined:
    Nov 7, 2011
    Posts:
    10
    Hi

    Thanks for the quick response.

    Yeah I have SuperAntiSpyware. lol
     
  25. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    Your Welcome.

    I wae pretty sure you didn't have a rogue.:thumb:
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.