security

[Bob]

I have pretty decent antivirus & antispyware software. But I'm concerned
that something might sneak in. Say some "perfectly safe" even commercial
software that the company or even a rogue programmer put a trojan into.

Everything works fine for six months, then the software downloads spyware
or a keystroke logger or something like that, then steals my bank account
passwords, and sends them off to the other side of the world directly or
hitchiking on email or who knows what.

Hey, we're talking about every penny I own here!

What's the best way to protect oneself from such things? Vista? A firewall?
Don't run any software from a company with a market cap less than $1B? Stop
accessing bank accounts from my computer and go back to paper snail mail?

 

[sgopus]

There are some that say a firewall is useless, but My opinion is it's
extremely valuable to monitor in and outgoing traffic, sure you MAY get
something that can bypass it, but doubtful, also get a firewall base router
and change the default password.

 

[Unknown]

If you are really that worried you should not be using your computer for ANY
personal business.
I don't use ANY antivirus, spyware, or other trash and do all my banking
etc. with my computer.
All financial institutions (banks etc) protect your ID and all personal
data.

 

[PA Bear]

Protect Your PC!
http://www.microsoft.com/athome/security/computer/default.mspx

Learn how to protect your PC by taking three simple steps
http://www.microsoft.com/downloads/details.aspx?familyid=3AD23728-4973-4DA5-9836-602954130D38

Security FAQ & Checklist
http://www.dslreports.com/faq/8463

 

[Alias]

I have pretty decent antivirus & antispyware software. But I'm concerned
that something might sneak in. Say some "perfectly safe" even commercial
software that the company or even a rogue programmer put a trojan into.

Everything works fine for six months, then the software downloads spyware
or a keystroke logger or something like that, then steals my bank account
passwords, and sends them off to the other side of the world directly or
hitchiking on email or who knows what.

Hey, we're talking about every penny I own here!

What's the best way to protect oneself from such things? Vista? A firewall?
Don't run any software from a company with a market cap less than $1B? Stop
accessing bank accounts from my computer and go back to paper snail mail?

Move up to Ubuntu, check it out at www.ubuntu.com. It's a form of Linux
that's much more secure than any version of Windows could ever be and
it's free. You do need a router with a hard firewall and you'll be set
to go.

Alias

 

[Jupiter Jones [MVP]]

Bob;
There is an old saying that goes something like this:
"How safe do you want it?
How much money do you have?"
The two are intertwined together.

There is no such thing as perfect security and never will be.
The closest you may get is power off and disconnect the computer.
Then pack it away and never touch it.

"...that the company or even a rogue programmer put a trojan into."
The possibility of this occurring goes down as the respectability of
the manufacturer goes up.
But there will never be any absolute guarantees.

A good 2nd best:
1. An up to date anti virus program.
2. An up to date anti malware program.
There are good free options for both the above.
3. A firewall that allows you to monitor and control in and outgoing
traffic.
For many, the firewall included in Windows is sufficient although it
gives less control.
There are good free software firewalls.
A hardware firewall is also good.
4. Keeping Windows up to date, regularly installing at least the
Critical/Important updates.
Also, many other programs have updates that should be installed to
help keep your computer secure.
Finally, the most important point, without, the rest may fall quickly.
Use safe computing practices when using the computer.
Then you are running your computer as safe as reasonably can be
expected.

 

[Lem]

It must be nice to be so confident in the security efforts of others on
your behalf.

Customer information compromised at bank [Oct 2007]
http://columbiatribune.com/2007/Oct/20071010Busi001.asp

Bank of India site hacked, serves up 22 exploits [August 2007]
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9033999

"CardSystems Solutions was a billion-dollar company before a security
breach compromised 40 million consumer accounts. After the incident, the
company was acquired for a fire sale price of $47 million." [March 2007]
http://www.americanbanker.com/btn_article.html?id=200702265FRVC5HH

Bank of America's security compromised [Feb 2006]
http://news.zdnet.co.uk/security/0,1000000189,39251735,00.htm

If you are really that worried you should not be using your computer for ANY
personal business.
I don't use ANY antivirus, spyware, or other trash and do all my banking
etc. with my computer.
All financial institutions (banks etc) protect your ID and all personal
data.

--
Lem -- MS-MVP - Networking

To the moon and back with 2K words of RAM and 36K words of ROM.
http://en.wikipedia.org/wiki/Apollo_Guidance_Computer
http://history.nasa.gov/afj/compessay.htm

 

[Plato]

What's the best way to protect oneself from such things? Vista? A firewall?

Dont use file sharing programs.

 

[windmap]

I have pretty decent antivirus & antispyware software. But I'm concerned
that something might sneak in. Say some "perfectly safe" even commercial
software that the company or even a rogue programmer put a trojan into.

Everything works fine for six months, then the software downloads spyware
or a keystroke logger or something like that, then steals my bank account
passwords, and sends them off to the other side of the world directly or
hitchiking on email or who knows what.

Hey, we're talking about every penny I own here!

What's the best way to protect oneself from such things? Vista? A firewall?
Don't run any software from a company with a market cap less than $1B? Stop
accessing bank accounts from my computer and go back to paper snail mail?

In a country like united states security has no meaning.windowsxp got no
value.Any one can steal anyones identity to buy nightgowns to their wives .

 

[Unknown]

Yes! I have Microsoft only and they are doing a fantastic job. I have never
had a virus, malware or spy-type problem.
I do use all Microsoft has to offer. I.E. I have defender installed but,
never have a reason to run it.
We use their OS why not their tools?

It must be nice to be so confident in the security efforts of others on
your behalf.

Customer information compromised at bank [Oct 2007]
http://columbiatribune.com/2007/Oct/20071010Busi001.asp

Bank of India site hacked, serves up 22 exploits [August 2007]
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9033999

"CardSystems Solutions was a billion-dollar company before a security
breach compromised 40 million consumer accounts. After the incident, the
company was acquired for a fire sale price of $47 million." [March 2007]
http://www.americanbanker.com/btn_article.html?id=200702265FRVC5HH

Bank of America's security compromised [Feb 2006]
http://news.zdnet.co.uk/security/0,1000000189,39251735,00.htm

If you are really that worried you should not be using your computer for
ANY personal business.
I don't use ANY antivirus, spyware, or other trash and do all my banking
etc. with my computer.
All financial institutions (banks etc) protect your ID and all personal
data.

--
Lem -- MS-MVP - Networking

To the moon and back with 2K words of RAM and 36K words of ROM.
http://en.wikipedia.org/wiki/Apollo_Guidance_Computer
http://history.nasa.gov/afj/compessay.htm

 

[Unknown]

Anyone can steal anyones identity? Try stealing mine.

 

[Ken Blake, MVP]

Yes! I have Microsoft only and they are doing a fantastic job. I have never
had a virus, malware or spy-type problem.

Glad to hear that, but...

I do use all Microsoft has to offer. I.E. I have defender installed but,
never have a reason to run it.

If you've never run Defender (or any similar non-Microsoft program),
how do you know you've never had a malware problem? Some of these
things do their dirty work so silently that you never see any
symptoms.

In fact, none of us can ever really know with complete certainly that
we are absolutely free of malware. By taking appropriate precautions,
we can substantially reduce the risk, but perfection doesn't exist.

We use their OS why not their tools?

Forgive my bluntness, but that's a very naive attitude. Just because
you think a particular Microsoft operating system is the best one to
use doesn't mean that all the rest of Microsoft's tools are also the
best.

It must be nice to be so confident in the security efforts of others on
your behalf.

Customer information compromised at bank [Oct 2007]
http://columbiatribune.com/2007/Oct/20071010Busi001.asp

Bank of India site hacked, serves up 22 exploits [August 2007]
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9033999

"CardSystems Solutions was a billion-dollar company before a security
breach compromised 40 million consumer accounts. After the incident, the
company was acquired for a fire sale price of $47 million." [March 2007]
http://www.americanbanker.com/btn_article.html?id=200702265FRVC5HH

Bank of America's security compromised [Feb 2006]
http://news.zdnet.co.uk/security/0,1000000189,39251735,00.htm

If you are really that worried you should not be using your computer for
ANY personal business.
I don't use ANY antivirus, spyware, or other trash and do all my banking
etc. with my computer.
All financial institutions (banks etc) protect your ID and all personal
data.
I have pretty decent antivirus & antispyware software. But I'm concerned
that something might sneak in. Say some "perfectly safe" even commercial
software that the company or even a rogue programmer put a trojan into.

Everything works fine for six months, then the software downloads
spyware
or a keystroke logger or something like that, then steals my bank
account
passwords, and sends them off to the other side of the world directly or
hitchiking on email or who knows what.

Hey, we're talking about every penny I own here!

What's the best way to protect oneself from such things? Vista? A
firewall?
Don't run any software from a company with a market cap less than $1B?
Stop
accessing bank accounts from my computer and go back to paper snail
mail?

--
Lem -- MS-MVP - Networking

To the moon and back with 2K words of RAM and 36K words of ROM.
http://en.wikipedia.org/wiki/Apollo_Guidance_Computer
http://history.nasa.gov/afj/compessay.htm

 

[Unknown]

I understand what you are saying. It is just that I haven't had any problems
at all.
The conclusions I draw from reading these newsgroups is that virus programs
are causing
more problems than they solve.
If I have no symptoms, slowness, problems, etc. I doubt if I have malware.
Isn't it possible taking precautions (because of what must be done) can
actually cause problems.

The tools I referred to are Windows firewall (as opposed to others) and
other security updates.
PLEASE__PLEASE__PLEASE don't tell me about outgoing messages with the
firewall.
If they don't get in there are none to get out.

I do not consider all Microsoft's tools to be superior. However they are
adequate and should a
problem develop they will be the first to fix it for business and reputation
sakes.
Security updates for example.----------Very unlike Norton and the like.

Yes! I have Microsoft only and they are doing a fantastic job. I have
never
had a virus, malware or spy-type problem.

Glad to hear that, but...

I do use all Microsoft has to offer. I.E. I have defender installed but,
never have a reason to run it.

If you've never run Defender (or any similar non-Microsoft program),
how do you know you've never had a malware problem? Some of these
things do their dirty work so silently that you never see any
symptoms.

In fact, none of us can ever really know with complete certainly that
we are absolutely free of malware. By taking appropriate precautions,
we can substantially reduce the risk, but perfection doesn't exist.

We use their OS why not their tools?

Forgive my bluntness, but that's a very naive attitude. Just because
you think a particular Microsoft operating system is the best one to
use doesn't mean that all the rest of Microsoft's tools are also the
best.

It must be nice to be so confident in the security efforts of others on
your behalf.

Customer information compromised at bank [Oct 2007]
http://columbiatribune.com/2007/Oct/20071010Busi001.asp

Bank of India site hacked, serves up 22 exploits [August 2007]
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9033999

"CardSystems Solutions was a billion-dollar company before a security
breach compromised 40 million consumer accounts. After the incident,
the
company was acquired for a fire sale price of $47 million." [March
2007]
http://www.americanbanker.com/btn_article.html?id=200702265FRVC5HH

Bank of America's security compromised [Feb 2006]
http://news.zdnet.co.uk/security/0,1000000189,39251735,00.htm


Unknown wrote:
If you are really that worried you should not be using your computer
for
ANY personal business.
I don't use ANY antivirus, spyware, or other trash and do all my
banking
etc. with my computer.
All financial institutions (banks etc) protect your ID and all
personal
data.
I have pretty decent antivirus & antispyware software. But I'm
concerned
that something might sneak in. Say some "perfectly safe" even
commercial
software that the company or even a rogue programmer put a trojan
into.

Everything works fine for six months, then the software downloads
spyware
or a keystroke logger or something like that, then steals my bank
account
passwords, and sends them off to the other side of the world directly
or
hitchiking on email or who knows what.

Hey, we're talking about every penny I own here!

What's the best way to protect oneself from such things? Vista? A
firewall?
Don't run any software from a company with a market cap less than
$1B?
Stop
accessing bank accounts from my computer and go back to paper snail
mail?





--
Lem -- MS-MVP - Networking

To the moon and back with 2K words of RAM and 36K words of ROM.
http://en.wikipedia.org/wiki/Apollo_Guidance_Computer
http://history.nasa.gov/afj/compessay.htm

 

[Ken Blake, MVP]

I understand what you are saying. It is just that I haven't had any problems
at all.

I have a friend who never puts his seat belt on when he drives his
car. He's never had any problems either.

Does that mean that he's doing the safe, prudent thing?

The conclusions I draw from reading these newsgroups is that virus programs
are causing
more problems than they solve.

That's a false conclusion, for at least two reasons.

1. Any generalization based on how many problems you see reported in
newsgroups is false. These newsgroups are where people come for help
with their problems, not to boast about their successes. As someone
else once said, hang around a transmission shop, and you'll think all
cars have transmission problems.

2. There *are* a lot of problems caused by anti-virus programs, and
almost all by the two most popular anti-virus programs--Norton and
McAfee. These are both very poor pieces of software that cause many
people problems, and I strongly recommend against their use.

But don't paint all anti-virus programs with the same brush. I've seen
very few problems reported here (or elsewhere) for the others.

Your saying that because you see many problems with anti-virus
programs reported here, that they are all no good, is like saying that
because Yugos frequently have problems, all cars are no good.

If I have no symptoms, slowness, problems, etc. I doubt if I have malware.

I doubt that you do too. I also have no "symptoms, slowness, problems,
etc.," and I too doubt that I have any malware infection. My point had
nothing to do with doubting. It had to do with being certain, which is
another thing entirely, and is not possible.

Isn't it possible taking precautions (because of what must be done) can
actually cause problems.

I am the first one to agree that any piece of security software can
cause a problem. Software, except for the trivial, is never perfect.
But the point is that any other kind of software can also cause a
problem. Security software isn't any more susceptible to problems than
other kinds of software.

The logical conclusion here is that if you want to completely avoid
software-created problems, don't run *any* software, not don't run
security software.

In practice, most of us *are* willing to run a certain amount of risk,
and we do run software. That's as true of security software as it is
any other kind.

In my view you are living in a fool's paradise. You are probably very
careful in your computing habits; with a combination of that and some
good luck, you haven't had a problem so far. But one day, you will be
tired, in a hurry, had too much to drink, or run into some piece of
malware that behaves differently from anything you've ever heard of
before. On that day, you will get infected.

It's like hard drive failure. The question isn't "whether," it's
"when."

 

[Unknown]

Answered inline

I have a friend who never puts his seat belt on when he drives his
car. He's never had any problems either.

Does that mean that he's doing the safe, prudent thing?

It is ridiculous to equate human safety with computer infections.

That's a false conclusion, for at least two reasons.

1. Any generalization based on how many problems you see reported in
newsgroups is false. These newsgroups are where people come for help
with their problems, not to boast about their successes. As someone
else once said, hang around a transmission shop, and you'll think all
cars have transmission problems.

How many wouldn't be posting on these newsgroups if the HAD'NT installed the
trash?

2. There *are* a lot of problems caused by anti-virus programs, and
almost all by the two most popular anti-virus programs--Norton and
McAfee. These are both very poor pieces of software that cause many
people problems, and I strongly recommend against their use.

Unfortunately there are many others.

But don't paint all anti-virus programs with the same brush. I've seen
very few problems reported here (or elsewhere) for the others.

But, who needs them? Think carefully on this one.

Your saying that because you see many problems with anti-virus
programs reported here, that they are all no good, is like saying that
because Yugos frequently have problems, all cars are no good.



I doubt that you do too. I also have no "symptoms, slowness, problems,
etc.," and I too doubt that I have any malware infection. My point had
nothing to do with doubting. It had to do with being certain, which is
another thing entirely, and is not possible.

Exactly. You cannot be certain so why foul up your computer with unneeded
trash?

I am the first one to agree that any piece of security software can
cause a problem. Software, except for the trivial, is never perfect.
But the point is that any other kind of software can also cause a
problem. Security software isn't any more susceptible to problems than
other kinds of software.

Did you mean LESS susceptible?

The logical conclusion here is that if you want to completely avoid
software-created problems, don't run *any* software, not don't run
security software.

That is a foolish statement. I want to run my computer and have been doing
so
for many years. I want to avoid software created problems hence, I do not
download and/or install trash. Like I said I don't have problems.

In practice, most of us *are* willing to run a certain amount of risk,
and we do run software. That's as true of security software as it is
any other kind.

Precisely what I'm doing.

In my view you are living in a fool's paradise. You are probably very
careful in your computing habits; with a combination of that and some
good luck, you haven't had a problem so far. But one day, you will be
tired, in a hurry, had too much to drink, or run into some piece of
malware that behaves differently from anything you've ever heard of
before. On that day, you will get infected.

It's like hard drive failure. The question isn't "whether," it's
"when."

I'm fully prepared for that.