does everyone pay for there online security?

[Brosville]

I think when people refer to linux "boxes" they're talking about internet servers - if you run something like Ubuntu or Mint, it's updated (almost daily), and in my experience is rock-solid, and there is no need for extra "security" at all - just for the hell of it I've tried "opening" dodgy attachments and links, the system shrugs it's shoulders, and pedals on untouched....

My understanding is that many hackers target Windoze because it's truly shockingly badly written layer upon layer of code, and is much loathed because of their "business" tactics down the years (try buying a computer in most high street sellers without it fitted "as standard")

 

[alanf]

yea i was using Kaspersky nad now it has ran out and not sure what to do?there looking 40 odd pounds off me,is there anything out there as good for free or will i have to fork out the cash to keep me disease free.

You run Windows, then. Plenty don't but there are also reasons why some of have to have at least one Windows PC. There's a lot of specialist Windows only software out there and it's often the only option with officially supported drivers by peripheral manufacturers. For the general consumer, however much we complain, it is the default - if a supplier does not say what it works with, it's Windows.. What follows is what I tell anyone who asks, it may not be the perfect or full solution but it's enough to get most people by.

if you have to run Windows, 7 isn't bad and a big improvement on Vista. First advice is to use that and keep it up to date and patched.

Second advice is always to use a wired router at home when you can. Any one PC USB modems out there should be binned. Any router gives some basic protection that hides your PC from the whole internet. Fortunately, most ISPs supply basic routers these days but consider upgrading. If you use wireless, especially outside the home that's a whole additional subject but the minimum is that you've increased your exposure so add more protection.

Beyond the basics there are a lot of cheaper options for security software than Kaspersky (and Symantec and McAfee). Other products also use a lot less system resource. The big brands pay manufacturers to put 'trial' versions on new PCs. A practice that should be banned, but it's a big bad world out there and the generic advice for all the 'free' and 'trial' software (aka crapware) loaded on a new PC is to delete it ASAP.

Of the free options that get mentioned Microsoft do Security Essentials as a free download virus/malware checker and include a basic firewall. Against is that just as Windows has the most PCs out there and so is the biggest target, MS have the default virus checker so that's the one to defeat. Same applies to using MS Internet Explorer as your browser, it's the biggest target so use Chrome, Firefox or Opera instead. The MS firewall is OK as far as it goes but only protects from incoming, not outgoing traffic.

Anti malware options available with free versions for home use are AVG, Avast and Avira. There are others, free and low cost, but these have been going for a while and have reasonable reputations.

I think a personal firewall is useful, Some have ceased development but as a free option Zone Alarm has fans. Advantage over the MS default is it stops outgoing traffic too unless authorised. if you (or someone around you) does click on something and gets you infected (and people do, the scams are getting better) then at least you don't run something to infect everyone else without it popping up.

Only ever run one personal firewall. More than one malware protector if you like but they can confuse each other and slow everything down. Free versions of the software can nag to upgrade to a paid version but you can ignore them. They can also be partially hidden, where the trial paid for version becomes the default on each page, a game we sometimes have to put up with.

 

[RoofTops]

The threat is less with a Mac but it is still there: http://www.guardian.co.uk/technology/askjack/2010/feb/03/apple-data-computer-security

And Apple themselves recommend anti-virus software in some circumstances. See the last paragraph on this page: http://support.apple.com/kb/HT2128

 

[region2]

AVG Free is the best
+
Adaware Free (get rid of Trojans)
+
Smart Defrag to optimise your hard drives
+
http://housecall.trendmicro.com to check all is well from time to time

R2
(used to be a computer programmer - Pick & Unix but is happy with Windows)

 

[rae]

Laptop users roaming between wireless access points, e.g. hotels & coffee shops, should consider a personal firewall as mandatory, regardless of the platform they use.

Why? All a firewall does is block a port based on some rules. If you have nothing running on that port anyway, the firewall adds nothing. Firewalls do not handle encryption, they do not stop malicious payloads.

If you move around between wireless APs, then the thing you need to worry about is sending passwords "in the clear", because on a non-encrypted platform they can be easily sniffed. Unless you are encrypting "end to end" then you always need to be worried about your data.

My understanding is that many hackers target Windoze because it's truly shockingly badly written layer upon layer of code

Most hackers target Windows because there are shed loads of Windows boxes out there, and they are pretty consistent in terms of file location and techniques. If you're going to write a virus, then it makes sense to target the biggest eco system out there. Linux and Mac (which is based on BSD) have just as many security updates as Windows. I like UNIX machines, because they give me far more choice about what to install. However most people don't want to fiddle, they want a box that allows them to send email and play flash games. You can lock down such a box and make it very secure - but also unusable. Given a choice, most users will turn off security.

 

[alanf]

Why? All a firewall does is block a port based on some rules. If you have nothing running on that port anyway, the firewall adds nothing. Firewalls do not handle encryption, they do not stop malicious payloads.

Sort of. A worthwhile firewall on a PC closes all the ports except those you specifically need. Otherwise there are a whole bunch of installations that leave various ports open, databases, peer services etc. Those ports and the unattached ones are all available to other PCs on that network. 'Stealth' those and that's a potential attack route that gives no clues about what's vulnerable.

A firewall does not stop malicious payloads, true, but it should stop the payload calling home or infecting other PCs. It flags that you have a problem when the payload gets past your malware prevention.

Beyond the firewall, yes, assume everything you type is on a postcard unless it's ssl secured or on a vpn. Encryping the traffic is far from the end of threats. One of the first tasks on startup of vpn clients is to close every port apart from the ones used directly by the vpn software, a de facto PC firewall.

 

[premo]

and if not,what do they use and is it any good???
Darren.

If you are using windows 7 you could try Microsoft Security Essentials, it’s received very good reviews which is unusual for Microsoft, plus its free.

 

[victor meldrew]

If you are using windows 7 you could try Microsoft Security Essentials, it’s received very good reviews which is unusual for Microsoft, plus its free.

I do and I have
Thus far I've been spared any nasties
VM

 

[jdee]

Another Mac user here - used to run a computer network when I was in the UK and the amount of crap that is out there for MS systems is mind boggling

JD