Register    Login    Search    Articles & downloads     Who We Are    Donate    Jaylach Free Sites

Board index » Technical Forums » Security




Post new topic Reply to topic  [ 55 posts ]  Go to page Previous  1, 2, 3  Next
Author Message
 Post Posted: Fri Jan 12, 2018 9:31 pm 
Offline
welcoming committee

Joined: Sun Apr 15, 2012 5:52 pm
Posts: 970
There are a couple I trust. Emsisoft, Blueridge(Appguard), the Loman Bros(Hitman Pro Alert),The Sandboxie folks, and lastly the folks at Excubits. There are a few out there


Top 
 Profile  
Reply with quote  
 Post Posted: Sat Jan 13, 2018 2:26 pm 
Offline
Moderator
User avatar

Joined: Thu Apr 05, 2012 3:25 pm
Posts: 1916
Location: Pembrokeshire, South Wales, UK
Is NOD32 still around, I used to use them a few years ago and they were classed as one of the best.

_________________
Joan Archer
http://crossstitcher.webs.com
Image


Top 
 Profile  
Reply with quote  
 Post Posted: Sat Jan 13, 2018 2:47 pm 
Offline
Resident Geekazoid Administrator
User avatar

Joined: Wed Mar 21, 2012 5:09 am
Posts: 9438
Location: The state of confusion; I just use Wyoming for mail.
JoanA wrote:
Is NOD32 still around, I used to use them a few years ago and they were classed as one of the best.

I haven't used in a long time but it seems to still be there. Here is a link toi their site.
https://www.eset.com

_________________
Image
Free sites from jaylach.com
I NEVER forget... I just remember late.


Top 
 Profile  
Reply with quote  
 Post Posted: Sat Jan 13, 2018 2:58 pm 
Offline
Moderator
User avatar

Joined: Thu Apr 05, 2012 3:25 pm
Posts: 1916
Location: Pembrokeshire, South Wales, UK
Thanks for the link Jay, I'll have a quick look but I'm quite happy with what I have at present so can't see myself going back to paying for it, pension doesn't stretch too far these days.

_________________
Joan Archer
http://crossstitcher.webs.com
Image


Top 
 Profile  
Reply with quote  
 Post Posted: Sat Jan 13, 2018 3:34 pm 
Offline
Resident Geekazoid Administrator
User avatar

Joined: Wed Mar 21, 2012 5:09 am
Posts: 9438
Location: The state of confusion; I just use Wyoming for mail.
I'm not going to run out and buy it either. When I used NOD32 I got it free through being an MS MVP.

_________________
Image
Free sites from jaylach.com
I NEVER forget... I just remember late.


Top 
 Profile  
Reply with quote  
 Post Posted: Sun Jan 14, 2018 5:24 pm 
Offline
welcoming committee
User avatar

Joined: Sun Jan 13, 2013 4:13 pm
Posts: 1723
Location: Dunedin, Alba.
Peter2150 wrote:
There are a couple I trust. Emsisoft, Blueridge(Appguard), the Loman Bros(Hitman Pro Alert),The Sandboxie folks, and lastly the folks at Excubits. There are a few out there


Warning, read on at your peril, a rant follows... i tried to stop but my fingers wouldn't :o

It's interesting in itself that you only list security software... i was thinking more along the lines of software in general, from OS's to anything else in between.

To put it another way, i used to trust the likes of Microsoft implicitly to do their best to keep my data safe, yes their OS's were full of security holes but did anyone really believe back in the days of Win3/95/NT/XP that Linux and latterly Apple were really risk free?, i didn't, i was 100% certain it was only a matter of time before the miscreants turned their attention to them... and lo and behold.

Point being, i never for a minute believed that the likes of Microsoft <enter here any number of names of blue chip companies from the 80's onwards> would sell out their customer security the way they are now.

The advent of Facebook and Twitter, and the predecessors like MySpace etc, with their relentless push for advertising revenue changed the whole marketplace and now everyone has jumped on that bandwagon including the so called blue chip companies with the end result they'd sell their grandmother rather than secure the end user.

It's so sad that we've ended up where we are, not a fibre in my body will ever convince me this is where we should be.

Commercialisation of the internet was foreseen in the 80's and fought against, that battle was clearly lost, what i don't think anyone really foresaw was how widespread the internet would be used against the interests of the people of the world.

Today we're spied on by governments (cctv and god knows what else) and employers (everything ever said online)... maybe not so much by governments if you haven't done anything wrong but hell mend you if you think applying for (or keeping) a job isn't going to have your (potentially new) employers HR department scouring the web for anything and everything you've ever said online.... there was a time where it was common practice to NEVER EVER use your real name online, indeed it was frowned upon if you did... amusingly my first online name was Canon, i couldn't think of anything unique when i first signed up with an ISP (Dial-up days when telcos didn't have their own servers) so i looked at the make of my printer and went with that! LOL

It has become so ridiculous now that i actually take pride from the fact i can't be found online by whoever my current employer is, 15 years in the same workplace but because of contract transfers I've automatically transferred 5 times to different companies, not once have any of them ever found anything I've ever said online :)
(Likely different this time because my niece convinced me against my better judgement to open a Facebook account, yes, i feel like i sold my soul to the devil! LOL)

That said, I'm not daft enough to say every word i say can't be found, with the right knowledge and skills of course it can... but i refuse to make it easy for them ;)

To close because this is going way beyond a rant and vent... Social Media is not social, it is nothing more than Social Engineering and Monitoring... think about that for a second... why do you think every politician and government is monitoring and taking part in it?... it isn't because it's a fun thing to do, studies prove it's more harmful for well being than if it had never existed.


Top 
 Profile  
Reply with quote  
 Post Posted: Sun Jan 14, 2018 6:00 pm 
Offline
Resident Geekazoid Administrator
User avatar

Joined: Wed Mar 21, 2012 5:09 am
Posts: 9438
Location: The state of confusion; I just use Wyoming for mail.
Just to touch on the Facebook aspect I currently do not have an active account. In the past I have had two but never used my real name. When I had my accounts I used Jay Lacher. Jay is actually a nickname, not my real first name. Actually, if you enter a search for my real name, I am pretty much either a financial advisor or dead.

I was talked in to my first Facebook acount by a friend when in Ohio between Florida and Wyoming. It did not take me long to get fed up and quit. The second time was here in Wyoming. I only created the account to be able to access a local buy/sell system that was based on Facebook. The service proved to be so convoluted that it was pretty much useless; I quit again.

I also do not do Twitter or any of the others. Basically I just have no use for social media.

_________________
Image
Free sites from jaylach.com
I NEVER forget... I just remember late.


Top 
 Profile  
Reply with quote  
 Post Posted: Sun Jan 14, 2018 6:13 pm 
Offline
welcoming committee
User avatar

Joined: Sun Jan 13, 2013 4:13 pm
Posts: 1723
Location: Dunedin, Alba.
jaylach wrote:
Jay is actually a nickname, not my real first name. Actually, if you enter a search for my real name, I am pretty much either a financial advisor or dead.

I can't remember where you told me your real name, PM i think?... good news is you were neither a banker or dead! :D


Top 
 Profile  
Reply with quote  
 Post Posted: Sun Jan 14, 2018 6:21 pm 
Offline
Moderator
User avatar

Joined: Thu Apr 05, 2012 3:25 pm
Posts: 1916
Location: Pembrokeshire, South Wales, UK
OK I've been round all the computers here, 5 of them, 2 desktops Acer, Johns Toshiba Laptop, my Asus Notebook and now my HP laptop.

4 out of the 5 have all got the updates including the Cumulative one people are talking about, the only one that it failed on was my Asus Notebook. All of them are Intel apart from my HP which is the first AMD I've had.

The thing is they all have the same software with regards the security, Windows Defender and MalwareBytes Premium.

I'd not turned the Asus on for a few days as I was busy with this new HP, turned it on and checked Windows Update and it said it was waiting to restart to finish installing updates. I clicked on the restart button and let it do it's thing. After it came back it said it couldn't finish installing one of the updates, or words to that effect. I went to look and see the update history and everything else had installed successfully apart from the one everyone is talking about and it said it had failed.

Not sure what I'm supposed to do now, any advice ? I'm logging out of here for the day but will be back tomorrow.

_________________
Joan Archer
http://crossstitcher.webs.com
Image


Top 
 Profile  
Reply with quote  
 Post Posted: Sun Jan 14, 2018 6:57 pm 
Offline
welcoming committee
User avatar

Joined: Sun Jan 13, 2013 4:13 pm
Posts: 1723
Location: Dunedin, Alba.
JoanA wrote:
I'd not turned the Asus on for a few days as I was busy with this new HP, turned it on and checked Windows Update and it said it was waiting to restart to finish installing updates. I clicked on the restart button and let it do it's thing. After it came back it said it couldn't finish installing one of the updates, or words to that effect. I went to look and see the update history and everything else had installed successfully apart from the one everyone is talking about and it said it had failed.


It may just be the way you've worded that Joan but i read it that you pressed 'restart' before it had finished installing the update... on my AMD desktop it took about 3 minutes after the update had apparently installed and then well over 5 minutes sitting at the 'Updating Windows' splash screen before windows finally loaded to the desktop.

Quote:
I went to look and see the update history and everything else had installed successfully apart from the one everyone is talking about and it said it had failed.

The whole sorry story is a mess, my best advice would be to reboot and run Windows Update manually, give it plenty of time to do what it needs to do.

If you're still having issues go to the Asus website and see if there's a BIOS update and/or driver updates... update as required and try Windows Update again... if all else fails contact Asus tech support.

The important thing to remember is none of this is in the wild yet so for the time being there is no urgency to get your systems patched.


Top 
 Profile  
Reply with quote  
 Post Posted: Mon Jan 15, 2018 8:48 am 
Offline
Moderator
User avatar

Joined: Thu Apr 05, 2012 3:25 pm
Posts: 1916
Location: Pembrokeshire, South Wales, UK
Thanks Doddie, not turned it on yet today busy with other things at present so I'll see what happens later or it may be tomorrow before I get the chance to check it out.
I'll be very nervous of doing a BIOS update I know, is it still as risky ?

_________________
Joan Archer
http://crossstitcher.webs.com
Image


Top 
 Profile  
Reply with quote  
 Post Posted: Mon Jan 15, 2018 6:33 pm 
Offline
welcoming committee

Joined: Sun Apr 15, 2012 5:52 pm
Posts: 970
JoanA wrote:
Thanks Doddie, not turned it on yet today busy with other things at present so I'll see what happens later or it may be tomorrow before I get the chance to check it out.
I'll be very nervous of doing a BIOS update I know, is it still as risky ?


Frankly I wouldn't risk it. I don't see the big panic here. If your machine is adequately protected so nothing unwanted can run your good to go. BUT windows defender alone isn't good enough.


Top 
 Profile  
Reply with quote  
 Post Posted: Mon Jan 15, 2018 11:47 pm 
Offline
Resident Geekazoid Administrator
User avatar

Joined: Wed Mar 21, 2012 5:09 am
Posts: 9438
Location: The state of confusion; I just use Wyoming for mail.
Hey Doddie, I fully understand the driver updates but, if you have the time, could you explain why you would look for a BIOS update in Joan's case? If I remember right Joan's Asus should be old enough to be running an older 'standard' BIOS. If it were a UEFI BIOS I could see the thought but an older standard BIOS is pretty much out of the picture once the Windows load starts. I, in no way, would really advise against but just do not see much help in this situation.

Pete, I agree if a system is fully hardened as is yours with Sandbox and such there is no real concern. I don't think that Joan is likely to go in such a direction. I think that I'd rather see the patch applied if possible.

Joan, BIOS updates are not nearly as risky as they once were. Still I'd want the system to be on battery backup if possible. While unlikely the issue is if you would happen to have a power failure while the BIOS update was in progress. This could toast the system. My main system is covered by a large UPS and I don't worry much in this regard. My laptop is also covered just by it's battery. Now my second desktop is different with zero battery backup. I do have a small UPS unit that I use to charge the batteries on my radio control vehicles if I'm out at a park or something. If I were to do a BIOS update on my second desktop I'd connect this small UPS unit first. While the risk is small the possibility of a power failure during a BIOS update is still there. In your case, since the Asus is a laptop, you have the system's battery to cover this.

_________________
Image
Free sites from jaylach.com
I NEVER forget... I just remember late.


Top 
 Profile  
Reply with quote  
 Post Posted: Tue Jan 16, 2018 12:01 pm 
Offline
Moderator
User avatar

Joined: Thu Apr 05, 2012 3:25 pm
Posts: 1916
Location: Pembrokeshire, South Wales, UK
I mainly run that Asus on mains power although the battery is always there if the needs be and I forget to switch the mains on.

I could do without any problems with it if I had to do a BIOS update, I'm having enough trouble trying to get back into my account on the Asus site, they've altered the log in process and it's been a long time since I logged into the site.

I think it was 2013 when I got it and it came with 8, so it's gone through the upgrades to 8.1 then 2 and then onto 10. It's at version 1709 and completely up to date with security updates, oh Peter I also have MalwareBytes Premium and Anti Exploit running all the time and I'm very cautious with whatever emails I get and any links there may be.

_________________
Joan Archer
http://crossstitcher.webs.com
Image


Top 
 Profile  
Reply with quote  
 Post Posted: Tue Jan 16, 2018 5:57 pm 
Offline
welcoming committee

Joined: Sun Apr 15, 2012 5:52 pm
Posts: 970
Hi Joan

Unless your prone to risky stuff you are probably fine.


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 9:09 am 
Offline
Moderator
User avatar

Joined: Thu Apr 05, 2012 3:25 pm
Posts: 1916
Location: Pembrokeshire, South Wales, UK
Peter2150 wrote:
Hi Joan

Unless your prone to risky stuff you are probably fine.


Thanks Peter, I hope so, I don't take risks when it comes to my computers being housebound means I'm dependent on them for all my shopping etc. and can't afford to have them not work. I try to keep them as up to date as I can with regards security but don't go over the top. :)

_________________
Joan Archer
http://crossstitcher.webs.com
Image


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 9:44 am 
Offline
welcoming committee
User avatar

Joined: Wed Apr 11, 2012 6:45 am
Posts: 1073
JoanA wrote:
... but don't go over the top.

Hey, Peter! You think Joan is talking about us? :338:
Acadia

_________________
The blazing evidence of immortality is our dissatisfaction with any other solution. -- Emerson


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 3:31 pm 
Offline
Moderator
User avatar

Joined: Thu Apr 05, 2012 3:25 pm
Posts: 1916
Location: Pembrokeshire, South Wales, UK
Acadia wrote:
JoanA wrote:
... but don't go over the top.

Hey, Peter! You think Joan is talking about us? :338:
Acadia


Would I dare. :twisted:

_________________
Joan Archer
http://crossstitcher.webs.com
Image


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 5:44 pm 
Offline
welcoming committee
User avatar

Joined: Sun Jan 13, 2013 4:13 pm
Posts: 1723
Location: Dunedin, Alba.
jaylach wrote:
Hey Doddie, I fully understand the driver updates but, if you have the time, could you explain why you would look for a BIOS update in Joan's case? If I remember right Joan's Asus should be old enough to be running an older 'standard' BIOS. If it were a UEFI BIOS I could see the thought but an older standard BIOS is pretty much out of the picture once the Windows load starts. I, in no way, would really advise against but just do not see much help in this situation.

Jay, unless I'm mistaken Joan's 'Asus Notebook' has an Intel processor installed... based on an earlier post in this thread but still difficult to know without the specs.

"Meltdown" only affects Intel processors (afaik), "Spectre" affects Intel, AMD etc .

I think it's moot whether or not the BIOS is UEFI, the flaw/vulnerability is in the CPU and not 'whatever' type of BIOS the OS is running on... where Intel CPU's are involved a software patch alone may not be enough and the BIOS (inc UEFI) may need updated to fully 'patch' the flaw.

I'm not saying that Joan's notebook NEEDS a BIOS update, rather, if she restarts the notebook and tries the Windows Update again, this time allowing plenty of time without hitting restart, and it still fails, then she MAY need a BIOS update for the WU patch to properly apply.
(I've taken a mental note to periodically check the Gigabyte website for any BIOS updates relating to my motherboard even though i fully never expect to ever see one because it's got an AMD CPU installed, but you never know what's going to happen next at the moment!)

It's still an evolving picture but hopefully the following might help...

cf:
List of Links: BIOS Updates for the Meltdown and Spectre Patches
https://www.bleepingcomputer.com/news/s ... e-patches/

ASUS Update on Speculative Execution and Indirect Branch Prediction Side Channel Analysis Method
https://www.asus.com/News/YQ3Cr4OYKdZTwnQK

As an aside and a for what it's worth:

Whilst i agree there is no immediate threat it is likely only a matter of time before it becomes one, i personally would rather pre-empt that threat by being as prepared as i can be.

This isn't your every day software bug hidden in the kernel of whatever operating system happens to be flavour of the day, nor for that matter a flaw that only affects one manufacturer or one small slice of a product line by a manufacturer, this is a hardware flaw in the hardware that which every computer relies on, the CPU, and it spans manufactures of almost every CPU in use today.

Traditional methods for preventing an attack vector on the basis of this flaw simply will not work (i.e, anti-virus, anti-malware etc in their current form cannot work to prevent an attack of this nature), period.

Even the much loved by some on this forum, Sandboxie, doesn't appear to be without issues in this matter.


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 5:49 pm 
Offline
welcoming committee
User avatar

Joined: Sun Jan 13, 2013 4:13 pm
Posts: 1723
Location: Dunedin, Alba.
I forgot to squeeze this quote into my above post, rather than edit the post i'll post it here..

It's from the ASUS website and backs up my claim that a software patch such as that from Windows Update may on it's own not be enough:
Quote:
ASUS Solutions

To enhance resiliency to the side channel analysis method, ASUS will provide a solution in a forthcoming BIOS update. Together with the latest Windows OS Hot Fix update, your computer will be well protected.
Although applying the BIOS update and OS Hot Fix will mitigate the risk of the side channel analysis method, computer performance might be impacted. However, any performance impacts are workload-dependent and may vary by hardware generation and implementation by the chip manufacturer. For most users, the performance impact should not be significant.
Source: https://www.asus.com/News/YQ3Cr4OYKdZTwnQK


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 5:56 pm 
Offline
Resident Geekazoid Administrator
User avatar

Joined: Wed Mar 21, 2012 5:09 am
Posts: 9438
Location: The state of confusion; I just use Wyoming for mail.
Thanks for the info Doddie. :) I appreciate your clarifying your views. I must admit that I also check for UEFI updates about once a month as there were initially motherboard and CPU fixes on a fairly regular basis but none for the last two months. As to the, initially, frequent updates it must be remember that a year ago my CPU and mother board were not even on the market.

I agree with you that I'd want the patch applied if at all possible. If I read some things as it seems the failure of this update will cause future updates to also fail or not be presented. Everyone is probably tired of hearing this but I would, again, remove all power including the battery with the system shut down. I'd then try the update again.

_________________
Image
Free sites from jaylach.com
I NEVER forget... I just remember late.


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 6:09 pm 
Offline
welcoming committee
User avatar

Joined: Sun Jan 13, 2013 4:13 pm
Posts: 1723
Location: Dunedin, Alba.
My motherboard hasn't had a BIOS update since March 2016, I'd all but given up on any future BIOS updates until this flaw surfaced... even though both my motherboard and CPU are AMD it wouldn't surprise me in the slightest if someone came up with a method to restore any performance loss from the OS update with either a CPU firmware update and/or a BIOS update in the future so for the next few months i'll check anyway.


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 6:17 pm 
Offline
welcoming committee

Joined: Sun Apr 15, 2012 5:52 pm
Posts: 970
Hi Guys

Remember one thing. The only way these exploits can affect you is they get on your system. I know with Sandboxie, their guys are looking to see what else they can do.

Frankly the patches scare the heck out of me. Things you can do are tighten up your security beyond anything Anti virus. Also Firefox has taken some mitigating steps and a big thing you can do is add No Script to Firefox. It's the most effective script blocker and that includes Javascript, which is your biggest vulnerability. I would note No Script, can be a pain in the neck, but it is effective


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 6:30 pm 
Offline
Resident Geekazoid Administrator
User avatar

Joined: Wed Mar 21, 2012 5:09 am
Posts: 9438
Location: The state of confusion; I just use Wyoming for mail.
Peter2150 wrote:
Hi Guys
Also Firefox has taken some mitigating steps and a big thing you can do is add No Script to Firefox. It's the most effective script blocker and that includes Javascript, which is your biggest vulnerability. I would note No Script, can be a pain in the neck, but it is effective

Just to clarify you cannot be using something that blocks JavaScript and still use this site. While written in PHP these forums are largely driven by JavaScript. Are you sure that you do not mean that it Blocks Java which is a totally different language? Or is it possible that it blocks JavaScript that does not originate directly from the site; no third party JavaScript? Or is it a case where you have to exclude a site that you want that requires JavaScript?

_________________
Image
Free sites from jaylach.com
I NEVER forget... I just remember late.


Top 
 Profile  
Reply with quote  
 Post Posted: Wed Jan 17, 2018 6:47 pm 
Offline
welcoming committee
User avatar

Joined: Sun Jan 13, 2013 4:13 pm
Posts: 1723
Location: Dunedin, Alba.
Peter2150 wrote:
Frankly the patches scare the heck out of me.

You're not alone there, but the only alternative to the Microsoft ones is apply them or you get no future security updates... imho that is wrong on so many levels!

Fyi, since installing KB4056894 on 6th January I've had two BSOD, that's two more than I've had since i re-installed Windows 7 on 14th July.

At the moment i can't of course prove anything but a picture is beginning to build...


Top 
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
 
Post new topic Reply to topic  [ 55 posts ]  Go to page Previous  1, 2, 3  Next

Board index » Technical Forums » Security


Who is online

Registered users: No registered users

 
 

 
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:

Similar topics


Jump to: