Internet security, can you go too far?
Moderators: NeilBlanchard, Ralf Hutter, sthayashi, Lawrence Lee
-
- Posts: 3142
- Joined: Mon Feb 26, 2007 9:20 am
- Location: Missing in Finnish wilderness, howling to moon with wolf brethren and walking with brother bears
- Contact:
Internet security, can you go too far?
Hello everyone!
I was wondering as Internet security is quite important thing these days and many don't even use most basic security but there's always those who intend to go overboard.
When do you think you go too far in internet security?
I got homenetwrok with router with iron firewall protecting my network and each computer has Virus sscanner and at least windows own firewall active.
My main computer, which I use mostly online surfing and working has malware shield program, non-commercial free firewall and some of my personal folder's have been encycrypted / password protected.
So I am going thru net thru two firewalls and via proxy most time... Made me wonder if I am going overboard. But good news is in past 3 years I've only suffered one virus problem, that caused me re-install everything and that was due my own mistake.
I was wondering as Internet security is quite important thing these days and many don't even use most basic security but there's always those who intend to go overboard.
When do you think you go too far in internet security?
I got homenetwrok with router with iron firewall protecting my network and each computer has Virus sscanner and at least windows own firewall active.
My main computer, which I use mostly online surfing and working has malware shield program, non-commercial free firewall and some of my personal folder's have been encycrypted / password protected.
So I am going thru net thru two firewalls and via proxy most time... Made me wonder if I am going overboard. But good news is in past 3 years I've only suffered one virus problem, that caused me re-install everything and that was due my own mistake.
-
- Posts: 1839
- Joined: Mon Feb 05, 2007 2:10 pm
- Location: Northern New Jersey
- Contact:
I use the Windows 7 Firewall Control app to make the Windows 7 firewall a little more effective, and I use it with Avast AV, *knock on wood* and I can't say I've gotten a virus with it. The same combo is on my older sisters new laptop.
I think my D-Link router has a firewall built into it, but I've never used it, and I'm sure viruses have gotten past it onto my other sister's computers, not sure how though.
I think there is overkill, but that's when you're running your own enterprise firewall just for home surfing. just unnecessary unless you're looking for trouble.
I think my D-Link router has a firewall built into it, but I've never used it, and I'm sure viruses have gotten past it onto my other sister's computers, not sure how though.
I think there is overkill, but that's when you're running your own enterprise firewall just for home surfing. just unnecessary unless you're looking for trouble.
On Windows:
* I pick the Edition with Software Restriction Policy.
ie:
WinXP Professional;
Vista Business or better;
Win7 Professional or better.
* I then create a Limited/Restricted User Account for day-to-day use. (Borrowing the idea from Linux/Unix world.)
* I only use the default Administrator account for system updates, maintenance, troubleshooting, install/update third-party apps.
* I then apply Software Restriction Policy as discussed here.
=> http://www.mechbgon.com/srp/
(This turns the system into "default deny". Only legit/trusted executables are allowed to run. Everything else is denied. Double-clicking on random executables from the web will be met with a pop-up message saying its been blocked.)
* I don't install AV software for three reasons:
(a) Its a reaction mechanism. Not a prevention mechanism.
(Meaning you are always one step behind malware authors!)
(b) A poorly made signature update can kill your system.
(In the last 5yrs; its becoming a common occurrence!)
(c) It creates a potential vulnerability because it needs to access key system components of Windows...
New attack bypasses virtually all AV protection
http://www.theregister.co.uk/2010/05/07 ... av_bypass/
* I pay strict attention to what is allowed to be installed.
ie: If I don't know where it came from (untrustworthy, illegal, etc); It gets deleted.
* I only install what I need and nothing more. As well, I disable/turn off features and services I don't use.
* Windows's Firewall is sufficient when you apply the above. You don't need Zone Alarm, Comodo, Online Armor, etc.
* I use Firefox browser with NoScript extension. (Mainly because I also use the same browser under Linux.)
My home network firewall is a custom FreeBSD based solution on a fanless PC with two NICs.
With the above approach, I've never had issues with malware.
* I pick the Edition with Software Restriction Policy.
ie:
WinXP Professional;
Vista Business or better;
Win7 Professional or better.
* I then create a Limited/Restricted User Account for day-to-day use. (Borrowing the idea from Linux/Unix world.)
* I only use the default Administrator account for system updates, maintenance, troubleshooting, install/update third-party apps.
* I then apply Software Restriction Policy as discussed here.
=> http://www.mechbgon.com/srp/
(This turns the system into "default deny". Only legit/trusted executables are allowed to run. Everything else is denied. Double-clicking on random executables from the web will be met with a pop-up message saying its been blocked.)
* I don't install AV software for three reasons:
(a) Its a reaction mechanism. Not a prevention mechanism.
(Meaning you are always one step behind malware authors!)
(b) A poorly made signature update can kill your system.
(In the last 5yrs; its becoming a common occurrence!)
(c) It creates a potential vulnerability because it needs to access key system components of Windows...
New attack bypasses virtually all AV protection
http://www.theregister.co.uk/2010/05/07 ... av_bypass/
* I pay strict attention to what is allowed to be installed.
ie: If I don't know where it came from (untrustworthy, illegal, etc); It gets deleted.
* I only install what I need and nothing more. As well, I disable/turn off features and services I don't use.
* Windows's Firewall is sufficient when you apply the above. You don't need Zone Alarm, Comodo, Online Armor, etc.
* I use Firefox browser with NoScript extension. (Mainly because I also use the same browser under Linux.)
My home network firewall is a custom FreeBSD based solution on a fanless PC with two NICs.
With the above approach, I've never had issues with malware.
I use Nod32 and Zone Alarm with a hardware firewall.
Then to top it off i also use Faronics Deep Freeze which always restores the C drive with every restart ("My Documents", "Favorites" etc is on the D partition). This keeps the computer safe and secure. Most of the time I only need to unfreeze it when updating windows or installing new software.
Lately I've also been using Sandboxie to keep my web browser in a Sandbox to keep it extra secure.
Instead of those last two security programs you could only use Google Chrome though. It already has a built in Sandbox and should probably be enough for most people.
Then to top it off i also use Faronics Deep Freeze which always restores the C drive with every restart ("My Documents", "Favorites" etc is on the D partition). This keeps the computer safe and secure. Most of the time I only need to unfreeze it when updating windows or installing new software.
Lately I've also been using Sandboxie to keep my web browser in a Sandbox to keep it extra secure.
Instead of those last two security programs you could only use Google Chrome though. It already has a built in Sandbox and should probably be enough for most people.
-
- Posts: 1839
- Joined: Mon Feb 05, 2007 2:10 pm
- Location: Northern New Jersey
- Contact:
Very good suggestions.stmok wrote:On Windows:
* I pick the Edition with Software Restriction Policy.
ie:
WinXP Professional;
Vista Business or better;
Win7 Professional or better.
* I then create a Limited/Restricted User Account for day-to-day use. (Borrowing the idea from Linux/Unix world.)
* I only use the default Administrator account for system updates, maintenance, troubleshooting, install/update third-party apps.
* I then apply Software Restriction Policy as discussed here.
=> http://www.mechbgon.com/srp/
(This turns the system into "default deny". Only legit/trusted executables are allowed to run. Everything else is denied. Double-clicking on random executables from the web will be met with a pop-up message saying its been blocked.)
* I don't install AV software for three reasons:
(a) Its a reaction mechanism. Not a prevention mechanism.
(Meaning you are always one step behind malware authors!)
(b) A poorly made signature update can kill your system.
(In the last 5yrs; its becoming a common occurrence!)
(c) It creates a potential vulnerability because it needs to access key system components of Windows...
New attack bypasses virtually all AV protection
http://www.theregister.co.uk/2010/05/07 ... av_bypass/
* I pay strict attention to what is allowed to be installed.
ie: If I don't know where it came from (untrustworthy, illegal, etc); It gets deleted.
* I only install what I need and nothing more. As well, I disable/turn off features and services I don't use.
* Windows's Firewall is sufficient when you apply the above. You don't need Zone Alarm, Comodo, Online Armor, etc.
* I use Firefox browser with NoScript extension. (Mainly because I also use the same browser under Linux.)
My home network firewall is a custom FreeBSD based solution on a fanless PC with two NICs.
With the above approach, I've never had issues with malware.
LUA, Group policy and a good firewall, Firefox w/noscript, no flash, disabling services etc - turns your PC into a very secure system. I've implemented this for years and had no malware problems on the windows boxes I run.
I do run AV-software though, mainly because I want to scan inbound/forwarded emails.
-
- Posts: 266
- Joined: Wed Mar 31, 2010 8:19 am
- Location: OV, The Netherlands
Hmm, im not that into protection.
Every PC in this house runs AVG Free + Windows Firewall. They also have CCleaner and hitman pro installed. That way i can remove virusses and spyware and clean up temp files/cookies/other crap.
Every PC gets scanned once in a week on a sunday. No virusses for 2 years (i dust out the systems once a year and then i also do a reinstall of windows).
Also every PC is updated automatically (except my PC and laptop/sister and parents pc do).
Every PC in this house runs AVG Free + Windows Firewall. They also have CCleaner and hitman pro installed. That way i can remove virusses and spyware and clean up temp files/cookies/other crap.
Every PC gets scanned once in a week on a sunday. No virusses for 2 years (i dust out the systems once a year and then i also do a reinstall of windows).
Also every PC is updated automatically (except my PC and laptop/sister and parents pc do).
-
- Posts: 4
- Joined: Wed Jun 02, 2010 9:08 pm
- Location: chicago