Re: whats the best virus protection

Art wrote:
> On 31 Oct 2005 15:18:11 -0800, "4Q" <paul_zest@xxxxxxxxxxxx> wrote:
>
> >> >Am new to computers and wondering which is the best virus protection for my
> >> >computer. I use the internet every day. Don't wish to loose my data.
> >>
> >> The best protection is knowledge. Back up your data on removeable
> >> media and keep it away from your PC. Here's some suggestions:
> >
> >Yes backup your data on removeable media, but... Don't have
> >an Internet facing box (PC) based on a harddisk setup. Use one
> >of the many Live-CD distributions, for example Knoppix. Every
> >thing is loaded from a read only CR-ROM disk into memory at
> >runtime. 1.8Gb worth of useful application (compressed into
> >700Mb CD). Even Microsoft have Live-CD now.
> >
> >So once you have your system setup and running anything you
> >download off the Interweb can be later saved onto some (hot
> >plugable) stoarge device. External USB drive, Compact Flash
> >card that kind of thing. Because everything is in memory
> >once you reboot (or off) any malware you may pickup vanishes.
> >But don't leave your external storage device connected whilst
> >you are connected to the nasty Internet
>
> This doesn't addresses the problem ... which is determining whether or
> not your system and your downloads are malware free before backup.

Data
====
Most my documents are text based, HTML, Graphics i.e. Data that
kind of thing. I don't use Microsoft produces much, mostly OSS Linux.

Apps
====
I look at the source code for the obvious malware and compile
into executables myself... I keep up with news on *nix software
for vulnerabilites and patch asap.

Games, Music, Video
===================
Buy it from reputable vendors... don't accept warez.



> Insofar as not leaving your box connected to the internet during
> backup, that's silly. If you can't do that, you might as well say that
> you can't be connected any time.

No the reason for this is incase someone has installed a Trojan
or malware that would own be able to steal your stored data
once you connect to storage device while the PC is Internet
connected. After all the biggest classification of malware damage
as I seem to remember isn't deletion/corruption but ID/Data theft.
Who knows what hidden future damage can be wreaked once a criminal
knows your life inside out and owns your bank account, credit
card, utility info, friends and family... that is what Dr. Solly
used to call "unlimited damage".

Anyways it only takes a few moments to unconnect the Inet connection
boot up the storage device transfer data to device, unplug device
reconnect to the Inet. Infact you could reboot the Live-CD system
between coffee breaks and always know you started up clean.


> Just make sure as best you can
> to not connect your backup drive to a infected machine.

How could you ever guarantee that? You aren't omnipotent are you?
Even the AVers can't keep up with the 0day stuff so what chance
does anyone else have, so the definition of "best you can" is
pretty meaningless.

>
> >otherwise my VX
> >friends with come along and insert their little creations all
> >over your platters.
>
> You and your creepy vx friends can keep your creepy creations
> to yourselves. We don't want them.

They aren't all creepy. I know plenty of VX/Hax0rs that spent
years studying the field in order to become expert of technical
matters. Btw I just bought Kris Kaspersky's latest book
"Hacker Debugging Uncovered", easily as good as his
"Hacker Disassembling Uncovered". Now in order to have that level
of knowledge he must have done some pretty shaded in gray stuff
like our friend Guillermito. Reverse engineering, breaking ciphers,
cracking, cracking copywrite protections, studying virus mechs.

What about Dr. Mark Ludwig, he has several Virus Books out. Some
of his research got into the wild too. Btw two of his books are
available for free in PDF format. Go to Eagle Publishing website
or get them from VX heavens

http://vx.netlux.org

1) The little black book of viruses *excellent basics*
2) The big black book of viruses *more advanced and excellent*

He still sells his other books.


>
> Art
>
> http://home.epix.net/~artnpeg


4Q

.

Relevant Pages

  • Re: What is CHKDSK telling me?
    ... could be doing its mischief while the computer is connected to the internet. ... but only if the internet connection is alive and well. ... The USB 1 external drive may account for the long backup time. ... If you do not have software to detect and remove malware, ...
    (comp.sys.hp.hardware)
  • Re: MSKB 891957, VSS Update for Windows Server 2003
    ... I left the connection sit idle and checked back in an hour. ... server and browsed around for a few minutes. ... it would seem that there is still some issue with the V6 RDP ... I left the server with user Backup logged in when I left the ...
    (microsoft.public.windows.server.general)
  • Re: Backup Question
    ... If it is possible to backup the ... the net connection using a DSL Router ... but by error I altered the connection settings to include DHCP ... connect using a static IP & using the DNS Servers that the ISP ...
    (alt.os.linux.suse)
  • Re: MSKB 891957, VSS Update for Windows Server 2003
    ... Well, it turns out the RDP connection dropping issue won't go away, ... level to the server in the office may have an affect on the issue. ... I just remembered I also re-installed RDP Client V6 last night as ... I left the server with user Backup logged in when I left the ...
    (microsoft.public.windows.server.general)
  • Re: Access DB question
    ... We received an email, to a valid user, from a domain say (example.net ... Was it supposed to be blocked based on envelope sender or sending host? ... So in this case I don't think connection blocking is the issue. ... Since it came through our backup MX connection blocking doesn't ...
    (comp.mail.sendmail)