Re: What is the best affordable protection?

From: E. (bellyup_at_thebar.now)
Date: 05/22/04

  • Next message: Big Will: "Re: What is the difference between a worm and a trojan ?" 
    Date: Sat, 22 May 2004 03:28:40 GMT

    andy smart wrote:
    > E. wrote:
    >
    >> Melanie C. wrote:
    >>
    >>> Can someone please help.
    >>>
    >>> I have a cable modem, I had to reinstall windows and I did not install
    >>> any virus software before I went to do a Google search, ugggghhh!!!
    >>>
    >>> I guess I have a Hijacker or something. I ran Norton virus scan but
    >>> they remain there. I also now have Mcafee's firewall...
    >>>
    >>> Does anyone know of a combonation package or program that will keep
    >>> everything safe, take all this crap and bots away, maybe a pop up
    >>> blocker, spam blocker and something to make Only the programs that
    >>> SHOULD be running, run?? Hmmm, maybe I am asking for to much.
    >>>
    >>>
    >>> Thanks....
    >>>
    >>> melanie gaglio
    >>
    >>
    >>
    >> Use a layered approach.
    >>
    >> 1. Use a *decent* software firewall such as outpost or kerio. I
    >> personally prefer Outpost for it's ad-blocking, activeX and pop-up
    >> blocking abilities.
    >> 2. Use a decent browser, such as Mozilla. You can use Internet
    >> Exploder for controlling the web interface of your linux-based
    >> firewall (IPCop, Smoothwall, coyote etc) or NAT/SPI based router.
    >> 3. Run windows update. Many browser hijackers install via unpatched
    >> exploits.
    >> 4. Keep antivirus up to date.
    >> 5. Don't install shitware such as webshots or kazaa. People who
    >> release 'free' programs do it to make money off your stupid uneducated
    >> ass. Simple test is to google on <program name> +spyware.
    >> 6. You don't need activeX or Java. Kill it.
    >> 7. Run a program such as spybot s+d, spywareblaster or spysweeper.
    >> 8. Think.
    >>
    >> Or a true security approach.
    >> 1. Air Gap.
    >>
    >> For what you say about a hijacker, I'd recommend you have a poke with
    >> Spybot www.safer-networking.org HijackThis and cwshredder
    >> www.merjin.org and spysweeper www.webroot.com
    >>
    >> Cheers,
    >> E.
    >>
    > I'm with the layered approach on this one. Rather than look for a single
    > solution use a variety of them. Being cautious is also a great aid to
    > the effective use of your material defences (such as
    > firewall/antivirus/anti-spyware software).
    >
    > Interesting idea about 'not needing java' at all, ever - I don't think
    > Sun would put so much time and effort into it if it had no useful uses.
    > If a site you visit often stops working after you disable java, and it's
    > a good and useful site, you'll have to make the 'risk against need'
    > judgement call. As indeed you will have to with all your security measures.

    Agreed. With Outpost (and other products) you can disable activex/Java
    globally and re-enable them on a per-site/as-needed basis.
    This also forces you to think a bit more.
    >
    > But in general not having plug-ins you don't need is a good move.
    >
    > andy

    I forgot to add 'harden the OS' as well.
    E.

  • Next message: Big Will: "Re: What is the difference between a worm and a trojan ?"