TheM wrote:
> "David Brown" <david@[EMAIL PROTECTED]
> wrote in message
> news:48f33dcc$0$25383$8404b019@[EMAIL PROTECTED]
>> First ask yourself *why* you think you need an antivirus program of
>> any sort, and then think if there are better ways to attack the
>> root of the problem. Rather than running your PC in a straight
>> jacket re-checking every file that is every opened, consider first
>> if there are ways to stop malware getting on to your PC in the
>> first place.
>
> Agreed, been running without AV for years. I was sick of my Norton AV
> and just uninstalled it at some point.
>
>> Never use MS email software (OE or O), use IE as little as possible
>> (and lock it down to "high" security), make
>
> I've been using OE for years without any problem. It is only a
> problem if you're an idiot and open attachments you don't know
> (especially exe files). No problem after years of use without AV. If
> attachment looks suspicious, I save it and open in hex editor.
>
The problem is when malicious email coding tells OE to execute the
attachment (or other unpleasant code) automatically when you simply view
the email. Since OE6 this has been less of a problem, as the security
setting is "high" by default, but I simply would not trust OE (or
Outlook) - there have been too many instances of exploitable bugs and
major design flaws (such as ActiveX, and in particular the concept of
"ActiveX controls marked safe for scripting"). Even with "high"
security, you are open to web bugs (which tell potential attackers your
IP address and that you are online) and other such nasties.
And why would you bother looking at suspicious attachments in a hex
editor? I would think the "****ft delete" treatment is more appropriate.
> Firefox and enabled cookies here, no problems either.
>
The same here. At my office, IE is banned for all but a couple of
specific sites - people use Firefox or Opera (by personal preference).
>> sure your incoming email is scanned (preferably at your ISP, or
>> your own email gateway) and all executable attachments are removed,
>> use a real firewall between your PC and untrusted computers (that
>> may well include other family members, not just the Internet),
>> check any dodgy downloads carefully, and most im****tantly of all -
>> use your head!
>
> Nothing beats a "helpfull" ISP that blocks spam for you on their own
> initiative, including 1% of "collateral damage". Preferably using
> ORBL or similar unreliable database, which should be used only for
> consultation and not just flatly blocking emails. And of course, if
> asked, they will claim to not perform any kind of filtering. Comcast
> comes to mind.
>
> But AV on the mail server is indeed nice to have.
>
>> For on-demand scanning of downloads (and scanning of emails if your
>> ISP does not do it, or you don't trust them), try clam
>> (www.clamav.net, www.clamwin.com).
>
> Neat, per file scanning on demand, comes handy sometimes.
>
I forgot to add one other im****tant security setting - turn off the
"hide extension for known file types" setting in explorer. Then you
won't fall for the old "joke.txt.exe" ploy.
|
