8 seconds from connection to infection

[imported_Reck]

http://www.bbcworld.com/content/clickon...ive_14_2005.asp?pageid=665&co_pageid=3

This is why you NEVER allow your conputer to be online without running a decent firewall. I'd assume you all are smart enough to know this already.

 

[tfinch2]

Router + software firewall FTW

 

[dighn]

yeah the last time I installed XP on this computer, it got infected immediately after it booted into the desktop...

 

[dds14u]

Originally posted by: tfinch2
Router + software firewall FTW

 

[spidey07]

I think 8 seconds is the norm for a machine to get infected.

Take a packet capture of "the internet" at the major access points and you'll see a whole lot of "background noise" that is just worms and what not scanning for systems to infect.

 

[ElFenix]

hardware firewall, software firewall, virus scanner, spyware scanner ftw!

 

[Ipno]

I thought this was going to be another thread about Pamela Anderson.

 

[Anubis]

ha

thats why i love having a custom SP2 install CD w/ all updates and fixes, firewall is there on boot, not the greatest FW but it works till i can get my AV and FW progies installed, being behind a router helps also

 

[spidey07]

Originally posted by: tfinch2
Router + software firewall FTW

stateful hardware firewall + software firewall + AV + anti-spyware + autopatching + IDS = pretty darn safe.

 

[ElFenix]

Originally posted by: Anubis
ha

thats why i love having a custom SP2 install CD w/ all updates and fixes, firewall is there on boot, not the greatest FW but it works till i can get my AV and FW progies installed, being behind a router helps also

i wouldn't even bother connecting to the internet until all the stuff is installed.

 

[DivideBYZero]

Originally posted by: ElFenix

Originally posted by: Anubis
ha

thats why i love having a custom SP2 install CD w/ all updates and fixes, firewall is there on boot, not the greatest FW but it works till i can get my AV and FW progies installed, being behind a router helps also

i wouldn't even bother connecting to the internet until all the stuff is installed.

FTW

 

[EyeMWing]

Oh come on people. I'm sitting here on an unsecured (though VPN'd) wireless connection with nothing protecting the computer whatsoever. At home, all I have is a NAT layer. I periodically run scans on all my machines and there's nothing. Ever. Why waste CPU time with senseless redundant layers of security when one layer is enough.

 

[Ipno]

Or just run a *nix variant.

 

[Queasy]

"8 seconds from connection to infection"

That would make a great tag line for a condom company...

 

[ITJunkie]

Originally posted by: ElFenix
hardware firewall, software firewall, virus scanner, spyware scanner ftw!

:thumbsup:

 

[spidey07]

Originally posted by: EyeMWing
Oh come on people. I'm sitting here on an unsecured (though VPN'd) wireless connection with nothing protecting the computer whatsoever. At home, all I have is a NAT layer. I periodically run scans on all my machines and there's nothing. Ever. Why waste CPU time with senseless redundant layers of security when one layer is enough.

because one layer is not enough. your computer can get a virus or worm just by browsing a web page.

 

[brian_riendeau]

Sure, and aliens can suck out your brains while you sleep if you forget to put on your tin foil hat before bed.

 

[spidey07]

Originally posted by: brian_riendeau
Sure, and aliens can suck out your brains while you sleep if you forget to put on your tin foil hat before bed.

Care to elaborate?

I mean its not like I do this for a living or anything.

 

[DaShen]

Originally posted by: Reck
http://www.bbcworld.com/content/clickon...ive_14_2005.asp?pageid=665&co_pageid=3

This is why you NEVER allow your conputer to be online without running a decent firewall. I'd assume you all are smart enough to know this already.

I just infected you. j/k j/k

 

[gsellis]

Originally posted by: Anubis
ha

thats why i love having a custom SP2 install CD w/ all updates and fixes, firewall is there on boot, not the greatest FW but it works till i can get my AV and FW progies installed, being behind a router helps also

QFT - even the PE disc is patched.

Quesy! Great minds.

 

[Amused]

Hardware firewall (router). And since XP, XP firewall allowing exceptions.

That's it. And I've never been infected by viruses or hit by spyware.

Of course, I never download iffy crap and no one else touches my systems.

The only thing I run Adaware for is to remove bad cookies.

 

[myusername]

"Don't get cocky, kid" :Q

Originally posted by: EyeMWing
Oh come on people. I'm sitting here on an unsecured (though VPN'd) wireless connection with nothing protecting the computer whatsoever. At home, all I have is a NAT layer. I periodically run scans on all my machines and there's nothing. Ever. Why waste CPU time with senseless redundant layers of security when one layer is enough.

Originally posted by: Amused
Hardware firewall (router). And since XP, XP firewall allowing exceptions.
That's it. And I've never been infected by viruses or hit by spyware.
Of course, I never download iffy crap and no one else touches my systems.
The only thing I run Adaware for is to remove bad cookies.

Originally posted by: myusername

I thought my system was pretty tight, but I wanted to connect another box (via netgear switch/router), so I just enabled the Server Service and the Computer Browser Service .. File and Printer Sharing is NOT enabled at the adapter. As a result of enabling the Server Service, I end up with Kerio popping up several outgoing connection attempts, which I deny.

outgoing
-Microsoft File and Printer Sharing
-local point 0.0.0.0:1186
-remote point 127.0.0.1:445

outgoing (this repeats 3 times)
-Microsoft File and Printer Sharing
-local point 192.168.0.3:1188
-remote point 128.77.59.140:139

This has happened several times now, each time with a different local port (but always netbios 139 on the receiving side).

-----

...my running processes are all legit, and I have run the following software:

AVG
F-Secure AV
Kapersky AV
avast AV
adaware SE
spybot s&d
zero spyware
pest patrol
spysweeper
hijack this
tds-3

None of which have turned up *anything* suspicious or malicious.

 

[Miramonti]

I miss the good 'ol days when we used adaware for the first time....the excitement generated when the scan would pull off 50-100+ threats.

Its been no fun these last few years tho...waste my time scanning and getting only a bad cookie or two.

 

[TechnoPro]

Originally posted by: spidey07

Originally posted by: tfinch2
Router + software firewall FTW

stateful hardware firewall + software firewall + AV + anti-spyware + autopatching + IDS = pretty darn safe.

IDS?

 

[TechnoPro]

Originally posted by: jjsole
I miss the good 'ol days when we used adaware for the first time....the excitement generated when the scan would pull off 50-100+ threats.

Its been no fun these last few years tho...waste my time scanning and getting only a bad cookie or two.

50-100? Back when it was really bad, I would see 1,000+ on a bogged down machine. I think my all time record that I saw was 1,400 on a clients system. Amazing how it was repairable at that point.