"NoStop" <nospam@nospam.com> wrote in message
news:fj7o6o1nbt@news4.newsguy.com...
> Paul Smith wrote:
>
>> "Steve Thackery" <nobody@nowhere.com> wrote in message
>> news:eAFIU93NIHA.4476@TK2MSFTNGP06.phx.gbl...
>>
>>> With this experience, I'm more convinced than ever that security
>>> products
>>> over and above what comes with Vista "in the box" are, for me,
>>> completely
>>> unnecessary and a waste of money.
>>>
>>> Is anyone else brave enough to reject the current paranoid paradigm?
>>
>> I haven't got around to installing any AV on my Windows Vista machines,
>> the
>> machines are all locked down and only I can install things. Most
>> infections come about my a user executing the virus to start with.
>>
> Not true! Explain drive-by viruses if you would.
>
> Cheers.
>
> --
> Remove Vista Activation Completely ...
> http://tinyurl.com/2w8qqo
>
> Frank - seek help immediately! Visit ...
> http://www.binsa.org/
>
ActiveX was the main culprit for drive-bys. It was previously able to
execute files and install software without user knowledge or permission.
This isn't the case anymore.
That nice little video shows Norton flagging a virus file (yes,
auto-downloaded to the cache and this shouldn't happen, I agree) but did it
execute? All I saw was an indication that access was denied to the file, no
indication that the file was run, just that it was found in the cache and it
was flagged and quarantined.
I'm sure he gets the exact same message if he were to download an infected
file manually, since that's what an AV program is supposed to do. The file
simply has to be created, moved or simply open the folder it's in and the AV
should warn you and if the setting to quarantine is on auto, move the file
to a safe place where it can't be mistakenly executed.
I'm also wondering, did he run auto-update after he installed Internet
Explorer 7? Yes, I agree, all updates should be rolled into the
installation but guess what? They aren't. After you install it you still
have to run auto-update to get it totally up to speed.
Microsoft said they "fixed" the "flaw" he's showing us, perhaps they
actually did, but if he didn't install the update, then the "flaw" will
naturally show up in his test.
I also find it interesting that there are no comments on the page, even
after almost 200 views (at time I viewed the video) so I'm assuming he's
deleting all arguments about his test.
I personally don't advocate running without antivirus software, but these
types of demonstrations simply add to the paranoia of people that don't
understand the way computers work these days.
Are there exploits? Of course, can you avoid them? Yes, you can, you have
to be smart. Run AV software, use a firewall, don't download files from
sites that look anything like the site he visited, keep your software and
your OS up to date, if you don't know where it came from, don't run it.
It's that simple.
In twenty five plus years of using, working on, with, and building computers
I've had one virus, and I infected the virtual machine deliberately just to
see how much damage it would do. (It was the "stoned" virus, a rather
benign little thing that simply slowed everything down)
Mic
Linear Mode
