Discussion in 'polls' started by alex_s, Jun 25, 2008.
What security setup do you prefer ?
Actually a mix of two. As you can see in my sig, I have a security suite + anti spywares + anti rootkits.
Not only on computer security, but in many aspects of my life, I prefer different tools that are superb in achieving their function over an "all-in-one" tool.
(Only exception is my swiss army knife )
I am a firm believer In seperates. If one breaks you dont lose everything so to speak.
My current defense is more and more based on a combination of virtual/sandbox/Imaging security: I rely basically on DeepFreeze activated within FD-ISR Rescue, and both backedup by ShadowProtect Desktop. With this kind of umbrella, the Vista default security is more than adequate.
Without a doubt, A set of different specialized products.
Since ancient times a worrior's Armour has been "layered" for good reason: it provided attack from different types of sneaky weapons .
The same principle applies to "microchip warriors".
Sandboxie and Returnil plus the regular compliment of anti malware applications makes for near foolproof protection.
A set and not a single suite: av+fw possibly from the same House, an HIPS, and Returnil. ( And something more else ).
I prefer "A set of different specialized products", mostly because I haven't seen any security suite that lived up to my standards, and also, if such a suite gets shutdown (or has a serious flaw) all your protection is gone. Of course the problem with separate security tools is that they might start to conflict with each other, but there are some tools out there that can work together just fine.
I always use applications from different vendors.I think layered approach is better.
My set up exactly!
A combination of recovery and security, except security based on blacklists.
I have to admit, I've been using endpoint for a bit, but I always like to have as many layers as possible- starting at the modem
Layering....although on a different scale that most.
First...navigation of the internet. I use OpenDNS DNS servers for myself..and for my clients. Many known malware sites are blocked via OpenDNS.
Always have all PCs behind a NAT router
Maintain Microsoft Updates
Quality antivirus program
Don't leave Administrator account password blank
I'm moving more and more clients behind UTM firewalls..instead of plain NAT routers. Untangle to be precise. Does scanning of traffic for viruses/spam/ad/spyware/malware....before it hits the PCs.
I more often surf with Firefox
And I cap it all off with "smarts"...I use my head, not my first day on a comptuer or out on the internet. These simple things have worked for me...no need to install 88 programs on my PC out of fear..or spend 23.5 hours of the day scanning my computer with 23 different programs from 1/2 hour of use.
I'm not familiar with the term UTM?
A set of different specialized products
IMO, a mix and match strategy makes for an unpredictable shot in the dark for potential malware, old or new, and individual set up approaches/defenses are is good as razor wire in comparison.
Definitely layered, but not everything and the kitchen sink. I try to keep it simple, and rely primarily on good sense.
singe multifunction product, backed up with online scanning from other products.
Whatever meets my demands.
So far, it's a single product - firewall. It's multifunctional too - inbound and outbound.
Just a test
I use BDTS for almost every thing to protect my pc
I would say "a set of different specialized products" simply because i don`t believe there is a "single multifunction product" that gives you a total security coverage out there today. For AV + Firewall i think the "internet security" packs works just fine (i`m running one myself) but when you want to focuse on bad things like rootkits, keyloggers, etc. i do believe that there are better options available with software dedicated for these special purposes IMO.
And of course combine this with some online-scanning from time to time
Seperates for me
I use separate, rule based apps. Except for a couple of test images I load in occasionally, each Windows OS (all versions) contains the following:
Internet firewall: Kerio 2.1.5
Application firewall, aka HIPS: System Safety Monitor.
Web content filtering: Proxomitron.
Full system backups of each: Acronis CD.
Depending on which image/OS I'm using, they may include one or all of the following:
Integrity checking of system files and applications: Filechecker, NIS Filecheck, DOS batch files, others.
Folder contents monitoring: MoniDir2000, FileMap/Bootalert, others.
Registry protection: SSM, RegProt, DOS batch files.
Encryption of file system, apps, e-mail. Multiple apps.
Numerous other privacy tools.
Removal and modification of vulnerable built-ins and files: IEradicator, 98Lite, various file modification tools.
Script protection: Script Sentry, others.
Virtualization: Just for the fun of it. Waiting to get better hardware to make full use of it.
Pretty much the same as YeOldeStonecat with...
UTM firewall (with antimalware/antispam(can be changed,) exploit scan and web filter) scanning traffic and reporting.
Firefox with NoScript, IE with zones hardened or server ie.
...then any separate I fancy, the ones I like I give them their own snap-shot, finishing off with imaging.
Separate names with a comma.