Are you likely to be infected if you have a firewall and don't actively infect yourself by running dubious programs?
How important is antivirus?
- Thread starter CSMR
- Start date
mechBgon
Super Moderator<br>Elite Member
- Oct 31, 1999
- 30,699
- 1
- 0
Are you using a Limited account for daily usage too, CSMR? And would you be the only person using the computer at any time?
Limited accounts can be a very effective boost to system security. I went over to my folks' house to check up on their WinXP SP2 rig, which is very well secured (ZoneAlarm Pro, Norton 2004, software DEP on all processes, Limited accounts, legit software). I found that my use of Limited accounts had staved off an attack by something called RealSpy, evidently something my little sister had dragged in, either accidentally or intentionally, when she visited mom & dad.
The day that I visited was Dec. 2, and Norton's daily definitions only began recognizing RealSpy the day before that. It would've infected the computer if the account that it was being installed from had the power to install software. As it was, there were no Registry entries, no folders, just the installer file. So the use of a Limited account held the fort where SP2, DEP, ZoneAlarm Pro and Norton 2004 had not. Granted, ZA Pro would've asked questions about RealSpy if it tried to send the logged keystrokes anywhere.
FINAL SCORE
Limited account 1
RealSpy 0
[ rant ]
IMHO it's time for Windows users to wake up to the built-in security capabilities of their OS. All the Rube Goldberg workarounds of installing five kinds of antispyware tools, alternate browsers, antivirus software... HELLO, use a Limited acount to enforce the basic security, it's like wearing a seatbelt keeps you from being thrown from the protection of your vehicle's body if it rolls or gets in a collision. I'm not saying you shouldn't run antivirus software, it is good sense, but don't overlook this either.
[ / rant ]
Limited accounts can be a very effective boost to system security. I went over to my folks' house to check up on their WinXP SP2 rig, which is very well secured (ZoneAlarm Pro, Norton 2004, software DEP on all processes, Limited accounts, legit software). I found that my use of Limited accounts had staved off an attack by something called RealSpy, evidently something my little sister had dragged in, either accidentally or intentionally, when she visited mom & dad.
The day that I visited was Dec. 2, and Norton's daily definitions only began recognizing RealSpy the day before that. It would've infected the computer if the account that it was being installed from had the power to install software. As it was, there were no Registry entries, no folders, just the installer file. So the use of a Limited account held the fort where SP2, DEP, ZoneAlarm Pro and Norton 2004 had not. Granted, ZA Pro would've asked questions about RealSpy if it tried to send the logged keystrokes anywhere.
FINAL SCORE
Limited account 1
RealSpy 0
[ rant ]
IMHO it's time for Windows users to wake up to the built-in security capabilities of their OS. All the Rube Goldberg workarounds of installing five kinds of antispyware tools, alternate browsers, antivirus software... HELLO, use a Limited acount to enforce the basic security, it's like wearing a seatbelt keeps you from being thrown from the protection of your vehicle's body if it rolls or gets in a collision. I'm not saying you shouldn't run antivirus software, it is good sense, but don't overlook this either.
[ / rant ]
Thanks mechBgon and everyone else. I'll put on AV software and look into a limited account. I'm not worried about doing anything to get a virus - I don't go to random web sites, or run random programs, and I'm the only user. But I don't understand the internet, and how viruses can be picked up just by being connected, so best to be safe I suppose.
episodic
Lifer
- Feb 7, 2004
- 11,088
- 2
- 81
Originally posted by: mechBgon
Are you using a Limited account for daily usage too, CSMR? And would you be the only person using the computer at any time?
Limited accounts can be a very effective boost to system security. I went over to my folks' house to check up on their WinXP SP2 rig, which is very well secured (ZoneAlarm Pro, Norton 2004, software DEP on all processes, Limited accounts, legit software). I found that my use of Limited accounts had staved off an attack by something called RealSpy, evidently something my little sister had dragged in, either accidentally or intentionally, when she visited mom & dad.
The day that I visited was Dec. 2, and Norton's daily definitions only began recognizing RealSpy the day before that. It would've infected the computer if the account that it was being installed from had the power to install software. As it was, there were no Registry entries, no folders, just the installer file. So the use of a Limited account held the fort where SP2, DEP, ZoneAlarm Pro and Norton 2004 had not. Granted, ZA Pro would've asked questions about RealSpy if it tried to send the logged keystrokes anywhere.
FINAL SCORE
Limited account 1
RealSpy 0
[ rant ]
IMHO it's time for Windows users to wake up to the built-in security capabilities of their OS. All the Rube Goldberg workarounds of installing five kinds of antispyware tools, alternate browsers, antivirus software... HELLO, use a Limited acount to enforce the basic security, it's like wearing a seatbelt keeps you from being thrown from the protection of your vehicle's body if it rolls or gets in a collision. I'm not saying you shouldn't run antivirus software, it is good sense, but don't overlook this either.
[ / rant ]
Rant about your rant.
There are many progams that simply will not funciton under a limited account - even periphials drivers, etc. . ..
mechBgon
Super Moderator<br>Elite Member
- Oct 31, 1999
- 30,699
- 1
- 0
If you have broadband, and don't already have a router, can I suggest getting a Netgear RP614 or similar, and block all the ports you don't actually need open, too Ones you would probably want open:
20 and 21 for FTP
25 for SMTP email
53 for DNS
80 for HTTP
110 for POP3 email if you need
123 for NTP (network time protocol)
443 for HTTPS
possibly 3889 if you want to use Remote Assistance or Remote Desktop
other ports as needed, try Port Triggering first if you have a game or app that will need to use a special port(s)
Just block everything inbetween these ones for TCP and UDP, and you have some damage containment against threats that try to run services off your system (if the system does succumb to something). If nothing else, the router will provide a perimeter firewall to keep worms and hackers from getting to interrogate your computer directly.
Ones you would probably want open:20 and 21 for FTP
25 for SMTP email
53 for DNS
80 for HTTP
110 for POP3 email if you need
123 for NTP (network time protocol)
443 for HTTPS
possibly 3889 if you want to use Remote Assistance or Remote Desktop
other ports as needed, try Port Triggering first if you have a game or app that will need to use a special port(s)
Just block everything inbetween these ones for TCP and UDP, and you have some damage containment against threats that try to run services off your system (if the system does succumb to something). If nothing else, the router will provide a perimeter firewall to keep worms and hackers from getting to interrogate your computer directly.
mechBgon
Super Moderator<br>Elite Member
- Oct 31, 1999
- 30,699
- 1
- 0
BTW, here's a handy tool that will check more stuff than Windows Update does: Microsoft Baseline Security Analyzer. Among other things, it checks for weak/blank passwords that would let your system's administrative shares be exploited easily.
More of my ramblings and suggestions here
More of my ramblings and suggestions here
mechBgon
Super Moderator<br>Elite Member
- Oct 31, 1999
- 30,699
- 1
- 0
This is true. Quickbooks, for example :| (unless they've changed something, I would welcome that). But part of the WinXP Logo certification process, I believe, is for software to function properly under a Limited account, so we may see that getting more rare. For the rest, there's the Shift+right-click > Run As... option
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes + WCL Discussion Threads
- Started by Tigerick
- Replies: 24K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
-
-
Facebook
Twitter