- Dec 7, 2004
- 303
- 0
- 0
I use the following 5 layered aproach, and the good news is all the products are freeware, except for the HIPS. I also stopped using IE and Outlook for my browser and email apps and now use FireFox and ThunderBird instead. http://www.mozilla.com/firefox/ http://www.mozilla.com/thunderbird/
I was also going to use a Limited Account Login (restricted privleges) and a Hosts file to filter known bad web sites to compliment my security setup, but after getting confidence in the abilities of my HIPS application I have decided not to use them. I could actually run the HIPS app and Firewall app by themselves with out any other security apps and my PC would be 100% protected (OK, 99.9999%, nothing is 100% but with this app it sure comes close) but i use the other layers/apps as insurance and to remove dead (non-runnning) malware corpse files from my hardrive.
L1. FireWall -
I am now using the free version of ZoneAlarm for this. This Acts like a Inbound stealth FW (hides your TCP/UDP ports from unsolicitated web scanning) and an Outbound Application FW (You set PC apps that can access the web, and can block server mode access to the apps.) http://www.zonelabs.com/store/content/c...al_zaFamily.jsp?lid=home_freedownloads
L2. Anti Virus -
I am now using Avast. It has a freeware version that is almost identicle to the paid version. With the free version you get Auto updates, Real time On-Access monitoring, and the ability to manually run On-Demand scanning (quick or thorough). The only major advantage of the paid version is you can auto schedule your On-Demand scanning (quick or thorough). So i just have to remember to maually run a weekly on-demand thorough scan with the free version, i use windows scheduled task manager to automatically run daily quick scans for me via the quickscan.exe http://free.grisoft.com/doc/2/lng/us/tpl/v5
L3. Anti Trojan -
I am now using the free version of Ewido. The main differance between the free version and the paid version is the free version does not have any real time monitoring or Auto Updates. I manually run weekly On-Demand Scans. http://www.ewido.net/en/
L4. Anti Spyware/IDS -
I am using MicroSoft AntiSpyware for this. It is a free program that is in Beta mode, but seems to be bug free (at least major bugs). It does Auto Updates, Auto On-Demand Scans, and has 59 Real Time Agents that act like an IDS (Intrusion Detection system) which monitor things like changes to startup programs, registry changes, ect... and gives warning pop-ups. http://www.microsoft.com/athome/security/spyware/software/default.mspx
L5. HIPS (Host Intrusion Prevention System) -
I use DefenseWall for this. I consider this the Crown Jeweal of my Suite, and is worth every penny of its reasonable $29 cost (30 day free trial). With DW i can serf the web like a newbie and don't have to worry about being hacked my Malware. If i get hacked the infection is limited to the sandbox and i can flush the sandbox with the press of one button and be back to normal. Any malware corpes that are left behind will be cleaned from my PC during my next scheduled scans. I have not personally used or tried similar type apps like Sandboxie or BufferZone, but from what i have read on forums DW seems to be easier to use and safer then those products. Following is the blurb from their website:
DefenseWall HIPS (Host Intrusion Prevention System) is the simplest and easiest way to protect yourself from malicious software (spyware, adware, keyloggers, rootkits, etc.) when you surf the Internet! Using the next generation proactive protection technologies, sandboxing and virtualization, DefenseWall HIPS helps you achieve a maximum level of protection against malicious software, while not demanding any special knowledge or ongoing online signature updates.
DefenseWall HIPS divides all applications into 'Trusted' and 'Untrusted' groups. Untrusted applications are launched with limited rights to modification of critical system parameters, and only in the virtual zone that is specially allocated for them, thus separating them from trusted applications. In the case of penetration by malicious software via one of the untrusted applications (web browsers etc), it cannot harm your system and may be closed with just one click! With DefenseWall HIPS, Internet surfing has never been so simple, safe and easy. Try it today, and you will be convinced! http://www.softsphere.com/
There is a thread at the Wilders Security Forum that is being used as the unofficial support thread for this product, the applications creator monitors that thread daily and provides quick enhancements and bug fixes (mostly compatability issues with other Hips/IDS software) for the product. The thread is tilted as the beta testing of DefenseWall, but the app has been released since late november 05. http://www.wilderssecurity.com/showthread.php?t=98240&highlight=defensewall
I was also going to use a Limited Account Login (restricted privleges) and a Hosts file to filter known bad web sites to compliment my security setup, but after getting confidence in the abilities of my HIPS application I have decided not to use them. I could actually run the HIPS app and Firewall app by themselves with out any other security apps and my PC would be 100% protected (OK, 99.9999%, nothing is 100% but with this app it sure comes close) but i use the other layers/apps as insurance and to remove dead (non-runnning) malware corpse files from my hardrive.
L1. FireWall -
I am now using the free version of ZoneAlarm for this. This Acts like a Inbound stealth FW (hides your TCP/UDP ports from unsolicitated web scanning) and an Outbound Application FW (You set PC apps that can access the web, and can block server mode access to the apps.) http://www.zonelabs.com/store/content/c...al_zaFamily.jsp?lid=home_freedownloads
L2. Anti Virus -
I am now using Avast. It has a freeware version that is almost identicle to the paid version. With the free version you get Auto updates, Real time On-Access monitoring, and the ability to manually run On-Demand scanning (quick or thorough). The only major advantage of the paid version is you can auto schedule your On-Demand scanning (quick or thorough). So i just have to remember to maually run a weekly on-demand thorough scan with the free version, i use windows scheduled task manager to automatically run daily quick scans for me via the quickscan.exe http://free.grisoft.com/doc/2/lng/us/tpl/v5
L3. Anti Trojan -
I am now using the free version of Ewido. The main differance between the free version and the paid version is the free version does not have any real time monitoring or Auto Updates. I manually run weekly On-Demand Scans. http://www.ewido.net/en/
L4. Anti Spyware/IDS -
I am using MicroSoft AntiSpyware for this. It is a free program that is in Beta mode, but seems to be bug free (at least major bugs). It does Auto Updates, Auto On-Demand Scans, and has 59 Real Time Agents that act like an IDS (Intrusion Detection system) which monitor things like changes to startup programs, registry changes, ect... and gives warning pop-ups. http://www.microsoft.com/athome/security/spyware/software/default.mspx
L5. HIPS (Host Intrusion Prevention System) -
I use DefenseWall for this. I consider this the Crown Jeweal of my Suite, and is worth every penny of its reasonable $29 cost (30 day free trial). With DW i can serf the web like a newbie and don't have to worry about being hacked my Malware. If i get hacked the infection is limited to the sandbox and i can flush the sandbox with the press of one button and be back to normal. Any malware corpes that are left behind will be cleaned from my PC during my next scheduled scans. I have not personally used or tried similar type apps like Sandboxie or BufferZone, but from what i have read on forums DW seems to be easier to use and safer then those products. Following is the blurb from their website:
DefenseWall HIPS (Host Intrusion Prevention System) is the simplest and easiest way to protect yourself from malicious software (spyware, adware, keyloggers, rootkits, etc.) when you surf the Internet! Using the next generation proactive protection technologies, sandboxing and virtualization, DefenseWall HIPS helps you achieve a maximum level of protection against malicious software, while not demanding any special knowledge or ongoing online signature updates.
DefenseWall HIPS divides all applications into 'Trusted' and 'Untrusted' groups. Untrusted applications are launched with limited rights to modification of critical system parameters, and only in the virtual zone that is specially allocated for them, thus separating them from trusted applications. In the case of penetration by malicious software via one of the untrusted applications (web browsers etc), it cannot harm your system and may be closed with just one click! With DefenseWall HIPS, Internet surfing has never been so simple, safe and easy. Try it today, and you will be convinced! http://www.softsphere.com/
There is a thread at the Wilders Security Forum that is being used as the unofficial support thread for this product, the applications creator monitors that thread daily and provides quick enhancements and bug fixes (mostly compatability issues with other Hips/IDS software) for the product. The thread is tilted as the beta testing of DefenseWall, but the app has been released since late november 05. http://www.wilderssecurity.com/showthread.php?t=98240&highlight=defensewall