Why ok to run multiple resident, real time security apps?

Discussion in 'Prevx Releases' started by NBP Pipsquack Bird, Apr 25, 2010.

Thread Status:
Not open for further replies.
  1. NBP Pipsquack Bird

    NBP Pipsquack Bird Registered Member

    Joined:
    Aug 12, 2007
    Posts:
    59
    Location:
    Kingdom of NOD
    Based on the smarts of the folks around here, I suppose this forum is as good as any for this question. Plus it goes to the matter of Prevx saying it will work fine side by side other AV/AT/AS/AM.

    Why is it ok to run multiple security apps with realtime scanners?

    What I get:
    Layering is wise from the standpoint you are not trusting your security to any one vendor or methodology.
    You can set exclusions for Product A in the settings of Product B, and vice versa.
    A security app compnay stands to sell more licenses saying, 'You can add our stuff without having to make the huge decision to drop someone elses stuff.'

    What I don't get:
    The dinner table food fight analogy. You have a plate of meatloaf on the dinner table (malware.) Bobby (security app A) sees it and grabs for the plate. Sally (security app B) also see the meatloaf and grabs for the plate at the same time. Mom (computer user) can tell Bobby and Sally to ignore each other (exclusions lists.) And while Bobby and Sally may be ignoring each other, you still have both of them grabbing the plate. If one of them doesnt say "uncle" what is going to happen to the plate of meatloaf?
    And if this goes on long enough while mom is away from the table (User away from the PC) there surely is a risk of the PC locking up, BSOD, etc.
    Who ultimately handles the meatloaf in the end?
    And if there is a BSOD, you may not have gotten infected, but you may have just corrupted or lost valuable data that was active during that Windows session.
    Corrupted and lost data is just as bad as having gotten infected.

    As you can tell from the analogy, security software guru I am not. I'm sure I am missing some basic concepts here.
    Ive recently come to fully grasp no one security app can protect you from everything. Running multiple apps to cover bases and patch holes is my natural inclination. And trusting one app leaves me feeling truly hesitant.

    But the analogy above does make me wonder if Microsoft might have a valid point when saying - you should not run more than one app with a real time scanner.

    If security vendors can start to grasp that, to the end user, corrupted data is equally as bad as infected data,
    If two apps try to grab, quarantine, react to the same piece of malware at the same time,
    If each security app is set to ignore the other, yet they both try to respond to a piece of malware,
    Why would it be ok to run multiple real time apps?


    conundrum.
     
  2. ljg

    ljg Registered Member

    Joined:
    Nov 16, 2005
    Posts:
    34
    One question I have is which comes first? Application #1 or application #2.

    If application #1 marks a potential intruder as "safe," does application #2 even get a chance for analysis?
     
  3. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Prevx works alongside any other AV because of how we've designed it - when Prevx blocks a file, it catches it long before it tries to execute, immediately blocking it from running and stopping it in its tracks. Some other AVs are more intrusive and will try to block the file from opening earlier, but we're fine with that - we step out of the way to allow another AV to block the file if they are going to, preventing incompatibilities and not reducing protection.

    If the AV allows the file through or doesn't block it, Prevx will step in and catch it at that point (or before the AV in some cases, but it depends on the product/implementation).

    Nothing that Prevx does in realtime will cause a BSOD or loss of data if another AV is installed or tries to block a file while Prevx blocks it and it is not necessary to add Prevx to the exclusion list of another AV or vice versa for realtime protection functionality (it may just be helpful during an on-demand scan to prevent another AV from scanning files as Prevx scans them).

    Let me know if you have any questions on this! Compatibility is one of our primary goals and we have spent considerable effort ensuring that we are compatible with all major security software :)
     
  4. NBP Pipsquack Bird

    NBP Pipsquack Bird Registered Member

    Joined:
    Aug 12, 2007
    Posts:
    59
    Location:
    Kingdom of NOD
    Thanks Joe,

    So ... Bobby (Prevx) is the more polite child than Sally (seccurity app B.)
    So we better hope if Sally grabs the meatloaf first .... she doesn't make a mess of the table!

    Very good of Prevx. Makes sense Im sure this doesnt necessarily hold true of all dual security app combos. But I do feel better that if I do stay with Prevx + AV Im not having reduced Prevx functionality or two apps struggling over the same malware.

    Only thing better might be some future implementation by Prevx and others a "gimme that malware, youre making a mess of things" algorithm! lol.



    ...OT ....I really love meatloaf
     
  5. ljg

    ljg Registered Member

    Joined:
    Nov 16, 2005
    Posts:
    34
    Assuming you're talking about the food and not the singer...

    As a kid, we ate meatloaf at least once a week. Apparently, my mother (not a great cook, may she rest in peace) neglected to put in whatever binders held the meat together. Every time (EVERY TIME!) we had at it, it would immediately crumble like a bad rock wall, so we'd eat it with spoons.

    It wasn't until I was seven or eight years old that I realized something was wrong. I had dinner at my best friend Billy's and, afterwards, ran home to tell my parents that Billy's family ate meatloaf with a fork!

    I still have flashbacks whenever I see a meatloaf! :eek:
     
    Last edited: Apr 26, 2010
  6. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    :D :D :D

    This is exactly correct :) I believe we are unique in this regard, which helps differentiate Prevx from the rest of the security products :)
     
  7. ljg

    ljg Registered Member

    Joined:
    Nov 16, 2005
    Posts:
    34
    On the serious side, my personal experience has been that Prevx not only provides an excellent product, but also has support to match! :thumb:
     
  8. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,012
    Location:
    Ontario, Canada
    I could not of said it better myself! :cool:

    TH
     
  9. shadek

    shadek Registered Member

    Joined:
    Feb 26, 2008
    Posts:
    2,363
    Location:
    Sweden
    Indeed. I get an answer within a short period of time each time I ask of something! :)
     
  10. NBP Pipsquack Bird

    NBP Pipsquack Bird Registered Member

    Joined:
    Aug 12, 2007
    Posts:
    59
    Location:
    Kingdom of NOD
    Still testing some different configurations. But the more I explore and expereince the more impressed I am with Prevx and less and less with many mainline AVs.

    Busy week. But at weeks end I plan to post my unabashed impressions from this in depth adventure into security software.

    For now suffice it to say, Prevx and Joe are extremely valuable assets.
    I cannot expression my gratitude and appreciation enough!

    (Prevx = Euro/N.American security co. of serious professionals who secure PCs and solve problems so businesses and indivduals can stop struggling with their PCs get back to using their PCs! No excuse making, passing the buck, or language barriers. No childish logos. No references to evil, serpents, punching, stomping or any other ridiculousness. Just PC security that works.)
     
Thread Status:
Not open for further replies.