Startup security for "always-on" connection. in Security

Startup security for "always-on" connection. in Security http://www.dslreports.com/forum/r20018271 en Wed, 02 Dec 2009 21:16:03 EDT Wed, 02 Dec 2009 21:16:03 EDT Re: Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20025338 genewitch :

said by schwendrick

:

Actually I wanted to remove attention from the router as I presumed that's the first thing that would be focused on.

At what point during the boot cycle does the PC become vulnerable through the network port, and is it late enough that my security software is enough in place to prevent malware from being installed/executed?

Thanks

Network should come up last, but there's no guarantee. If you are paranoid about it, before you shut down the machine turn off the network card (nethood ->properties ->device ->disable)

Unless something fishy is going on that should stay set until your machine is completely booted, at which point you can go in and enable it at your leisure.

PS this is how my network is run, there's no internet to any computer until i explicitly boot a virtual machine for that purpose. My computer can't even lease an IP until i do that.]]> http://www.dslreports.com/forum/remark,20025338 Tue, 19 Feb 2008 16:29:26 EDT Re: Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20024973 La Luna :

said by schwendrick

:

Actually I wanted to remove attention from the router as I presumed that's the first thing that would be focused on....

The idea is to help others, such as those who may also be using this particular router you speak of.

It would be nice to know what router you believe was compromised, how it was compromised, and what lead you to believe you were "targeted" for online intrusion attempts.
--
10,582 DEADLY TERROR ATTACKS SINCE 9/11~~TEAM DISCOVERY
Can't feel you anymore, don't need you anymore, don't believe you anymore, I don't need you anymore
]]> http://www.dslreports.com/forum/remark,20024973 Tue, 19 Feb 2008 15:33:14 EDT Re: Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20024809 mikenolan7 : Another option would be to use a shutdown script to disable your network connection, then after start-up, enable it manually when you are ready to go online.]]> http://www.dslreports.com/forum/remark,20024809 Tue, 19 Feb 2008 15:11:34 EDT Re: Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20024550 schwendrick : Thanks Mele20. Good tips.]]> http://www.dslreports.com/forum/remark,20024550 Tue, 19 Feb 2008 14:37:17 EDT Re: Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20021780 Mele20 : You can use BootlogXP to show you when your security software loads during the boot process. I have DiamondCS ProcessGuard and it loads extremely early in the boot process before my Antivirus loads even. It is a classic HIPS that runs in kernel mode and would not allow anything that somehow got downloaded before the AV was loaded to execute. It would block it and as soon as Windows finished loading stick a popup in the middle of my screen, where it would be impossible to miss,and demand that I tell it what to do about the new process/program that wants to start.

»www.greatis.com/utilities/bootlogxp/
--
"The same ferocity that our founders devoted to protect the freedom and independence of the press is now appropriate for our defense of the freedom of the internet. The stakes are the same: the survival of our Republic". Al Gore, The Assault on Reason]]> http://www.dslreports.com/forum/remark,20021780 Tue, 19 Feb 2008 01:42:25 EDT Re: Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20020549 schwendrick : Actually I wanted to remove attention from the router as I presumed that's the first thing that would be focused on.

At what point during the boot cycle does the PC become vulnerable through the network port, and is it late enough that my security software is enough in place to prevent malware from being installed/executed?

Thanks]]> http://www.dslreports.com/forum/remark,20020549 Mon, 18 Feb 2008 21:30:53 EDT Re: Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20018462 daveinpoway : Out of curiosity, what make and model router were you previously using, and what makes you think that it was compromised?]]> http://www.dslreports.com/forum/remark,20018462 Mon, 18 Feb 2008 16:07:21 EDT Startup security for "always-on" connection. http://www.dslreports.com/forum/remark,20018271 schwendrick : Hello, I need some good feedback.

I have a PC which gets turned off at the end of the day connected to an "always-on" DSL connection. I do have a NAT router... the prior one was compromised and I have no reson to really trust this one. In the past I've been TARGETED for online intrusion attempts.

I'm concerned about vulnerability for the several seconds during the boot process prior to security software being loaded. I don't know at what point the computer is accessable to the outside world vs. at what point I'm protected.

Security software loading at startup is Online Armor and Avast!

Assuming a compromised router, is the startup software loading soon enough to protect me from startup boogies? Is there more I can be doing to protect myself during these critical few seconds?

Knowledgable feedback appreciated. Thanks.

Win XP SP2]]> http://www.dslreports.com/forum/remark,20018271 Mon, 18 Feb 2008 15:43:40 EDT