Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner

From: Francis Bell (phrankndonna@worldnet.att.net)
Date: 08/29/02

Next message: NeoSadist: "Re: Authentication"
Previous message: Lars M. Hansen: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
In reply to: Shaolin Tiger: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Next in thread: Joseph V. Morris: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Reply: Joseph V. Morris: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Reply: Wolfgang Kueter: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Francis Bell <phrankndonna@worldnet.att.net>
Date: Wed, 28 Aug 2002 19:03:20 -0400

Thanks Lars, Wolfgang, and Shaolin!

I actually am vigilant about my computer. I do have Norton AV and I
do keep the rules updates. I don't open UI email, and even from known
sources I save attachments first and then scan them before opening. I
do know exactly what's on my system, and I keep it very updated with
the latest patches, and if I do download something (which is seldom),
I only do it from a well known source (although I know that's no
guarantee either.)

Wolfgang, you said,
- run no services
        ... like what are you referring to?
- use netstat with appropriate options to check for listening services
        ... what is netstat and how does it differ from a firewall if
         it's just monitoring your system?
- rely on you TCP/IP stack
        ... I've done away with my dialup service in favor of a cable
         modem. Is there still a TCP/IP stack associated with a cable
         modem?

So, the bottom line here is that I'm more or less good with what I've
got. I shouldn't need any additional software (and in Wolfgang's
opinion, the firewall software is extraneous). Just be vigilant and
careful. And as for the flashing Norton Subseven alerts, just nuke em
when they come in. Does that about rap it up? Thanks for all the
help folks!!

Frank

On Wed, 28 Aug 2002 20:05:23 +0100, "Shaolin Tiger"
<r00t@ku.gro.tenkrad> wrote:

>
>
>"Francis Bell" <phrankndonna@worldnet.att.net> wrote in message
>news:3l8pmugomb1ofgfgne1f5nrdudme8cle3k@4ax.com...
>> Thanks so much for all the replies and info! Can any of you recommend
>> a good program that does protect one's system best? Or, if there's
>> not one single program that does cover it all, what is the best way to
>> best protect the computer from most of the threats? Thanks again!
>>
>> Frank
>>
>> On Wed, 28 Aug 2002 01:15:06 GMT, NormanM <my.aren't@we.nosy.invalid>
>> wrote:
>>
>
>
>I recommend Mcaffee AV with all options on and update notification enabled
>(update whenever there is a new DAT file).
>
>This scans downloads, e-mail, web pages and everything else.
>
>Your firewall should also limit what goes out aswell as in.
>
>At the moment my favourite is Tiny Personal Firewall 2.
>
>You can get it here: http://www.darknet.org.uk/content/files/tpf2.zip (their
>site is currently offering TPF 3 beta), I tried Kerio but it stopped working
>after I'd secured Win2k (
>http://www.darknet.org.uk/content/files/securewin2k.txt ).
>
>There is a screen grab of my ruleset here:
>http://www.darknet.org.uk/content/files/TPF.gif this stops incoming and
>outgoing traffic and logs anything that breaks any rules TPF also uses MD5
>checksums for applications so if a trojans binds itself to anything the sig
>will change and you will be notified.
>
>I recommend passwording the admin feature aswell, not so much from a point
>of view of people changing your rules, it just means the program can't be
>closed without the password being entered and stops trojans, malicious files
>etc from closing the FW.
>
>Also just be vigilante, don't open e-mails from unknown sources, don't have
>the preview pane on if you use OE, don't download stuff from warez/porn
>sites.
>
>HTH
>
>Shaolin

Next message: NeoSadist: "Re: Authentication"
Previous message: Lars M. Hansen: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
In reply to: Shaolin Tiger: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Next in thread: Joseph V. Morris: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Reply: Joseph V. Morris: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Reply: Wolfgang Kueter: "Re: SubSeven alerts: Norton Firewall vs Hacks/Trojan cleaner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: question on anti virus programs
... > I didn't trash Norton's antivirus program, which I like and would recommend ... > would recommend NIS because I have read that the Norton firewall is better ... > than the Trend Micro firewall that comes with their security suite. ...
(microsoft.public.windowsxp.general)
Re: Firewall
... just inbound and some control both inbound and outbound. ... heaven help you if you use McAfee antivirus and norton firewall, ... negative things so I can't recommend it - though I do love their anti virus ...
(microsoft.public.windowsxp.security_admin)
Re: OE6 wont open with router and Norton
... then I'd recommend you do so. ... But Norton in its newer versions is really a handful of problems. ... Norton Firewall when I want to go to OE6. ... Vince ...
(microsoft.public.windows.inetexplorer.ie6_outlookexpress)
RE: How to get a license to kill (a virus)?
... I myself don't rely on Norton for firewall or AV. ... I recommend always using software from companies who ONLY specialize in one field. ... Go on the net, after turning on ICF, and search for a trojan hunter instead. ...
(microsoft.public.security)