 CabalPremium
join:2007-01-21
Austin, TX
 ·Suddenlink
| reply to Daniel
Re: A Letter to DSLR Security Enthusiasts Excellent post. Security is a process, not a product.
said by Mele20:I read stuff like this with a jaded, skeptical eye. I run as admin and will never do otherwise. I CHOOSE to do so. People drive without their seatbelts, too. Doesn't make it a good idea.
--
Interested in open source engine management for your Subaru? |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | said by Cabal:Excellent post. Security is a process, not a product. said by Mele20:I read stuff like this with a jaded, skeptical eye. I run as admin and will never do otherwise. I CHOOSE to do so. People drive without their seatbelts, too. Doesn't make it a good idea. I've run as Admin with NO security products installed except the Proxomitron. I have run without a software or hardware firewall for several years. Gee, did I get screamed at here for doing that. I got Zone Alarm when it was in BETA many years ago long before I found this site and long before almost everyone else had even heard of a software firewall. I used it for several years and then I began to get tired of it. So, I got rid of it and did not have a router. Everyone here said I'd have horrible things happen if I didn't either get a router or another software firewall. Well, nothing bad happened. You see, I had learned well from Steve Gibson. I had my 98SE box tied down very tight using his bindings tutorial.
I've run for over a year about two years ago on XP Pro as Admin with only an on demand AV and the Proxomitron. I have only had a virus/spyware two times...once when I was a newbie and there was a stealth boot virus on a new plastic wrapped blank floppy I had just bought in a store. I had no idea there could be a virus on a new, blank floppy just bought so I didn't I scan it.
The other time was about four years ago when I got an XP machine and a router and I had to undo all the bindings on my 98SE machine to network and share files between the XP Pro host, the VMWare machines and the 98SE machine. My broadband ISP went down one day not long after I did that and I didn't have the software for RR backup dialup yet on the XP machine. I had it on the 98SE one so I fired it up and got on the internet via dialup. I was on no more than 5 minutes when Opaserv came calling. DUH. I felt so stupid. I just completely forgotten that I had undone those bindings to netbeui making that computer vulnerable when not behind the router. Luckily, I had NOD32 on it and it caught the virus. I was shook up though and I uninstalled the dialup software so I couldn't ever again forget and use dialup on that computer as usually it doesn't have an antivirus on it. I installed the dialup software on XP and I keep Windows Firewall on at all times just in case I need to go on dialup as I might not remember to put the Firewall on in a situation like that.
So, twice in almost nine years of having a computer I have gotten malware. So, why are all of you telling me I need to run as a limited user? I believe I know what I am doing.
--
"The same ferocity that our founders devoted to protect the freedom and independence of the press is now appropriate for our defense of the freedom of the internet. The stakes are the same: the survival of our Republic". Al Gore, The Assault on Reason |
|
 SteveI know your IP addressConsultant
join:2001-03-10
Yorba Linda, CA
kudos:5 | said by Mele20: So, twice in almost nine years of having a computer I have gotten malware. said by Mele20  , what she really means :I still get infected even though I claim to know what I'm doing Steve — no Windows infections, ever
--
Stephen J. Friedl | Unix Wizard | Microsoft Security MVP | Tustin, California USA | my web site |
|
 dadkinsCan you do Blu?Premium,MVM
join:2003-09-26
Hercules, CA
kudos:18 | said by Steve:said by Mele20: So, twice in almost nine years of having a computer I have gotten malware. said by Mele20 , what she really means :I still get infected even though I claim to know what I'm doing Steve — no Windows infections, ever neither have I Steve
FULL ON Administrator. Always!
I run Avast and Windows Firewall on my machines behind a D-Link router.
Not one infection - ever!
The weekly scans I do, I do for entertainment and all that is ever found is "bad" cookies. Meh!
Never professed to be a Security Guru or God.
Don't consider myself one either.
Yet here we are and I don't get hit. Go figure.
Never cower from attachments, I click links, I go to all kinds of porn sites - nada.
So far, *I* am more of a threat to these machines than anything out there.
*TO ME* these things are just complex toys. 
--
Think outside the Fox... Opera |
|
| reply to Steve
I saw under your Avatar you are a consultant, what do consult about? |
|
 EGeezerSummertimePremium
join:2002-08-04
Midwest
kudos:7
 ·Callcentric
| said by The Rabbit :
I saw under your Avatar you are a consultant, what do consult about?
See »www.unixwiz.net/
--
BBR's Shooting for a Cause! |
|
 LanikLab-nikPremium,ExMod 2002-03
join:2001-06-25
Bay Area | reply to Mele20
said by Mele20:I believe I know what I am doing. Yes by all means we all know that by now: »[XP Pro] Silverlight and Microsoft new Download Center?
--
"If it ain't broke don't fix it." |
|
| reply to dadkins
said by dadkins:neither have I SteveFULL ON Administrator. Always! I run Avast and Windows Firewall on my machines behind a D-Link router. Not one infection - ever! The weekly scans I do, I do for entertainment and all that is ever found is "bad" cookies. Meh! Never professed to be a Security Guru or God. Don't consider myself one either. Yet here we are and I don't get hit. Go figure. Never cower from attachments, I click links, I go to all kinds of porn sites - nada. So far, *I* am more of a threat to these machines than anything out there. *TO ME* these things are just complex toys. I run EXACTLY the same way, except for clicking attachments.
But, I'll go to ANY site with ANY browser (EXCEPT Firefox, POS) and NOT get infected.
--
The Firefox alternative.
»www.mozilla.org/projects/seamonkey/ |
|
|
|
davePremium,MVM
join:2000-05-04
not in ohio
kudos:7 Reviews:
 ·Verizon FiOS
 ·Verizon Online DSL
| reply to Mele20
said by Mele20:So, twice in almost nine years of having a computer I have gotten malware. So, why are all of you telling me I need to run as a limited user? Because you've been infected twice? |
|
Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | said by dave:said by Mele20:So, twice in almost nine years of having a computer I have gotten malware. So, why are all of you telling me I need to run as a limited user? Because you've been infected twice? I'm disappointed in you Dave. I had thought better of you. I have pointed out that I was NOT infected the second time. NOD32 caught it. (Besides, how does one run as limited user on 98SE)? Plus, I have a folder of 693 viruses that I keep for testing AV programs and other viruses I keep on the computer for testing purposes...so according to your reasoning I guess I have been "infected" more than 693 times??? Ahhh...Randy Bell we need you! (All of you old timers here will know what I mean by that).
As for the one time I actually was infected, well I suspect the majority of folks here (not all) but a majority have had one infection when they were newbies before they knew anything about security. Besides, I've been told by some here that it isn't possible to get a new blank floppy store bought that is infected...so maybe that was not what happened. Dell spent four days trying to figure out my two problems that occured together. One was caused by my beta testing for AOL (there was a class action suit against them when they released as Gold Master the very build of AOL that we beta testers had wreck our computers and told them not to release) and after deep clean and reformat, I could install W98 but not 98SE Updates and it was at that point after another day of research that Dell said I had a stealth boot virus that had survived the deep clean and reformat and told me to call McAfee. What a ridiculous experience that was. They were of no help after 5 hours on hold. So, I used the OLD McAfee rescue disk I had with old definitions and it found nothing. But afterwards I was able to continue with the install of 98SE Updates. So, I never was sure whether I had a virus or not as McAfee said I didn't have one but only after running a scan with an old Rescue disk was I able to get 98SE Updates to install.
At any rate, I have lost a lot of respect I had for you. I'm sure you could care less but I think it a shame that you would be acting in such a silly manner as you generally have made thoughtful, useful posts here.
--
"The same ferocity that our founders devoted to protect the freedom and independence of the press is now appropriate for our defense of the freedom of the internet. The stakes are the same: the survival of our Republic". Al Gore, The Assault on Reason |
|
 linicxCaveat EmptorPremium
join:2002-12-03
United State
·Cass Communicati..
·CenturyLink
| reply to EGeezer
I became very interested in security from the start because the first computer I ever bought came pre-loaded with two instances of Michael Angel virus. I met Albert Warez when he was a kid, and the Unix Clown Princess. I was a GRC devotee, SANS fan before it took the new name, BBR player when Justin first started, and I hung out with a security group in Europe because if "it" was in the wild I heard about it 24-hours before it came to the US.
Two of the dumbest individuals I ever met were ISPs. I was in one server remotely while I was talking to the owner. It took two hours to convince him I was in his system looking at his files. I didn't hack it. I FTP'd into my webpage; it was redirected into the main server where all the action was. I could see every one of his customers that was on line. Instead of thanking me, he accused me of hacking. This is the same guy that said it was dangerous to look at Mae East and Mae West activity. Then there was the third-party "turn key" Missouri operation that had their service run by some outfit in Georgia. The local boys sent me a virus a couple of times one day and I said so. They denied it. The operator in Georgia didn't believe it. I sent the viruses back to the locals and to Georgia -- with a warning in the subject line. Georgia boy thanked me. Local boy opened it. A week later they were finally back on line. By then I was with a different provider.
The point is I had massive exposure to many kinds of security problems and solutions from very smart individuals located around the word.
Nothing, however, prepared me for the keystroke logger that was deliberately planted in genealogy software. The only way to disable it was a line by line edit in Registry. When I did, it ceased to work. I had a similar experience with telephone software that not only took over the desktop it upgraded free programs to paid pro versions! I had to line edit it to reclaim my computer.
When dealing with a computer connected to the web, no one can ever know enough, or have their computer protected enough, to defend an attack from an educated and dedicated hacker who wants your data. Of course it is impossible to protect against an well meaning but uneducated software manufacturer. The only absolute protection is to disconnect and stay off line. The caveat is if we do, we miss out on conversations like this one.
--
Mac: No windows, No gates, Apple inside |
|
