Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: So, you think you are secure and don't need precautions

06 Jan 2010   #51
Carbonyl

Windows 7 RTM
 
 

Quote   Quote: Originally Posted by UrbanBounca View Post
]I stand corrected, however, I still don't trust IE. Out of the box, IE may be more secure, but is IE still more secure than a Firefox browser with access to the addon database?
That I can't comment on, due to lack of experience. I certainly respect the hesitation to trust IE, given their track record, but it's important to realize IE8 is a completely different product than IE6 or IE7.


My System SpecsSystem Spec
.
06 Jan 2010   #52
pacinitaly

windows 7 professional & ultimate 64bit laptops
 
 

Quote   Quote: Originally Posted by Tews View Post
Quote   Quote: Originally Posted by pacinitaly View Post

can you please post your lines of defense
I use a Dlink router with WPA2 encryption..Malwarebytes Anti-Malware, NIS2010, UAC on default settings, Sandboxie, Standard User Account... All are updated daily/weekly and run on a daily schedule... I also use Acronis True Image Home 2010 to make incremental backups to an off site drive.... I know that some may think this is overkill, but forewarned is forearmed...
awesome.
what are the programs I highlighted in red?
My System SpecsSystem Spec
06 Jan 2010   #53
jav

Windows 7 Ultimate x86 SP1
 
 

Quote   Quote: Originally Posted by UrbanBounca View Post

I stand corrected, however, I still don't trust IE. Out of the box, IE may be more secure, but is IE still more secure than a Firefox browser with access to the addon database?
It's hard subject,
As Both of them can be hardened and secured with additional things.

As you said firefox with addons.

But Internet Exlorer 8 can be hardened aswell by GPO (Group Policy)

And Internet explorer's advantage out of box are:
cross site scripting protection
good phising philter
Smart filter which checks website or downloads.


But browser comparison difficult topic.
I personally use Google Chrome. Advantages:
Speed
Simplicity
Internal sandbox

And just because I like it
My System SpecsSystem Spec
.

06 Jan 2010   #54
Tews

64-bit Windows 8.1 Pro
 
 

Quote   Quote: Originally Posted by Tews View Post
Quote   Quote: Originally Posted by pacinitaly View Post

can you please post your lines of defense
I use a Dlink router with WPA2 encryption..Malwarebytes Anti-Malware, NIS2010, UAC on default settings, Sandboxie, Standard User Account... All are updated daily/weekly and run on a daily schedule... I also use Acronis True Image Home 2010 to make incremental backups to an off site drive.... I know that some may think this is overkill, but forewarned is forearmed...

Quote   Quote: Originally Posted by pacinitaly View Post
awesome...what are the programs highlighted in red?
Norton Internet Security 2010 ( just testing this one at the present time...it may or may not stay ) Sandboxie runs your browser in an isolated environment separate from your OS/System....
My System SpecsSystem Spec
06 Jan 2010   #55
Carbonyl

Windows 7 RTM
 
 

Quote   Quote: Originally Posted by Tews View Post
Norton Internet Security 2010 ( just testing this one at the present time...it may or may not stay ) Sandboxie runs your browser in an isolated environment separate from your OS/System....
If you're going to browse the web without A/V, Sandboxie is a fantastic line of defense, provided you set it up to empty the sandbox each time you close the browser. Heck, I recommend it even if you do have A/V!
My System SpecsSystem Spec
06 Jan 2010   #56
Tews

64-bit Windows 8.1 Pro
 
 

This is true, if its not set up correctly you may as well not have it at all...
My System SpecsSystem Spec
06 Jan 2010   #57
pacinitaly

windows 7 professional & ultimate 64bit laptops
 
 

Quote   Quote: Originally Posted by pacinitaly View Post
awesome...what are the programs highlighted in red?
Norton Internet Security 2010 ( just testing this one at the present time...it may or may not stay ) Sandboxie runs your browser in an isolated environment separate from your OS/System....[/QUOTE]


thanks so much, I'm reviewing sandboxie!!!!

Sandboxie - Video Reviews
My System SpecsSystem Spec
06 Jan 2010   #58
dmex

 

Quote   Quote: Originally Posted by ultraplanet View Post
Quote   Quote: Originally Posted by Dogz View Post
I read about a report in Maximum PC that out of 10 viruses 8 ran WITH UAC enabled so you do need antivirus.
Can you provide a link to the report?
He was talking about this article: SophosLabs Sets Out to Prove Windows 7 Has Some Vulnerabilities | Maximum PC

I haven't used an AV in three years and still have not been infected, Vista's and 7's additions to the group and local security policy's made it possible for you to null the attack surface of Windows down to your preferences.

Firefox will be my primary browser while they keep nightly-builds as it helps stop drive-by-download exploits, nightly builds help make it near impossible for anyone to find/exploit a flaw and figure out a way to infect your machine before a new build is released all while without you knowing about it.

If UAC had a configuration wizard (like everything else ) that allowed us to specify our own execution level for an application and instead hash checked the program and the dll's it loaded against the preferences we set if indeed we set one for that program, it would then have some real teeth against a huge range of infections or attacks. Vista and Windows 7 include CardSpace in Control Panel and its a secure digitial 'wallet' thats more than capable of acting like a while-list for UAC but has yet been utilized

The current implementation of only checking the executable for a requestedExecutionLevel flag set by the developer and willy-nilly allowing dlls to load into an elevated application and execute code is unacceptable, this is a known limitation since Vista RC1 and I have yet to hear a reason why it hasn't been fixed in two OS releases.
My System SpecsSystem Spec
06 Jan 2010   #59
Zidane24

Windows 7 Home Premium x64 - Mac OS X 10.6.4 x64
 
 

I have read the entire thread and I agree with posts from both sides...

Urbanbounca I agree with you on the need for common sense on the internet. It does wonders for protection against viruses and other malicious software.

...BUT pparks and our resident MVPs on Consumer Security (Jacee and Corrine) are also correct. I was sitting here trying to remember this good quote I found but I couldn't so I will blankly put it out there: No one is perfect...if we were, tech sites like SF, tech support in general, hell nothing in the world would go wrong or need to be fixed. I understand that your common sense has fared you well...mine has just the same BUT I also realize that my abilities are not perfect and at any time something might "sneak in"

With this in mind I always run a low resource, very low maintenance anti-virus such as avast or MSE. They are non obtrusive, extremely low resources (especially Avast), and I always forget about them in the end. With that in mind...I have no reason NOT to run them as they are my fall back guys...

Anti-virus doesn't have to be your shields: for me Common Sense 99%...anti-virus 1%
My System SpecsSystem Spec
06 Jan 2010   #60
jav

Windows 7 Ultimate x86 SP1
 
 

Quote   Quote: Originally Posted by dmex View Post

I haven't used an AV in three years and still have not been infected, Vista's and 7's additions to the group and local security policy's made it possible for you to null the attack surface of Windows down to your preferences.

Firefox will be my primary browser while they keep nightly-builds as it helps stop drive-by-download exploits, nightly builds help make it near impossible for anyone to find/exploit a flaw and figure out a way to infect your machine before a new build is released all while without you knowing about it.

If UAC had a configuration wizard (like everything else ) that allowed us to specify our own execution level for an application and instead hash checked the program and the dll's it loaded against the preferences we set if indeed we set one for that program, it would then have some real teeth against a huge range of infections or attacks. Vista and Windows 7 include CardSpace in Control Panel and its a secure digitial 'wallet' thats more than capable of acting like a while-list for UAC but has yet been utilized

The current implementation of only checking the executable for a requestedExecutionLevel flag set by the developer and willy-nilly allowing dlls to load into an elevated application and execute code is unacceptable, this is a known limitation since Vista RC1 and I have yet to hear a reason why it hasn't been fixed in two OS releases.
Why you are worried about Drive-by-download exploits if you use group and local security policies.
They can be configured to deal with Drive-by-downloads. And with the help of SRP it can be denied to execute even if downloaded somehow.

About your next statement.

Maybe AppLocker?
Enforcing rules too all files including DLLs.

I do agree with you that with AppLocker or SRP added with group and local security policies, there is not much need for resident real-time AV.
Just on demand scanner to scan downloads.
My System SpecsSystem Spec
Reply

 So, you think you are secure and don't need precautions




Thread Tools




Similar help and support threads
Thread Forum
What precautions should I take when using a public network?
Besides using a VPN connection when using a public WIFI, what other precautions should I take? Let's say I'm connected to the WLAN but not surfing the net, is Windows firewall enough to protect me?
Network & Sharing
New CPU Any Precautions?
As the title states i'm currently running an AMD Phenom II x6 1090t AM3 and i'm purchasing an AMD FX-8350 Vishera AM3+ is there anything i should do while installing the CPU have just done straight swaps in the past but want to lower possibility of problems. I'm hoping i don't have to re install...
Hardware & Devices
Precautions before buying on line
I have had many good experiences buying from internet companies. Recently I ordered a camera from such a company. Alongside the picture of the camera was a delivery promise of 1-2 days, but when the e mailed acknowledgement came the delivery was quoted as 1-7 days. After 3 days I sent an e mail...
Chillout Room
ESD precautions advice being sought.
I know it is important to protect your PC from ESD when ever you either upgrade or do anything inside the PC, the thing is though I am not sure what best practise is or am I doing it correct. I currently only have a wrist strap but was looking at buying a ESD floor mat as well as a mat for the...
Hardware & Devices
Upgrading Hard Drive and RAM, precautions?
I am upgrading my MacBook's RAM and hard drive (from 2GB to 4GB and from 250GB to 500GB respectively), what is the easiest (and preferably most reliable) way to reinstall Windows and to restore programs, settings etc. to my new hard drive? I have backed my Windows partition up to Time Machine...
Hardware & Devices


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 09:26.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App