Removing Symantec/Norton Antivirus

[David Brown]

Jim Thompson wrote:

I'm biting the bullet and removing Symantec/Norton Antivirus.

What's the recommended replacement?

...Jim Thompson

First ask yourself *why* you think you need an antivirus program of any
sort, and then think if there are better ways to attack the root of the
problem. Rather than running your PC in a straight jacket re-checking
every file that is every opened, consider first if there are ways to
stop malware getting on to your PC in the first place.

Never use MS email software (OE or O), use IE as little as possible (and
lock it down to "high" security), make sure your incoming email is
scanned (preferably at your ISP, or your own email gateway) and all
executable attachments are removed, use a real firewall between your PC
and untrusted computers (that may well include other family members, not
just the Internet), check any dodgy downloads carefully, and most
importantly of all - use your head!

For on-demand scanning of downloads (and scanning of emails if your ISP
does not do it, or you don't trust them), try clam (www.clamav.net,
www.clamwin.com).

On-demand virus scanners and complicated windows firewalls are an
amazing waste of time, money, and PC resources, and they are always
playing catch-up. A few proper precautions gives you better security
for nothing.

(Of course, you could always switch to Linux...)

 

[TheM]

"David Brown" <david@westcontrol.removethisbit.com> wrote in message news:48f33dcc$0$25383$8404b019@news.wineasy.se...

First ask yourself *why* you think you need an antivirus program of any sort, and then think if there are better ways to attack
the root of the problem. Rather than running your PC in a straight jacket re-checking every file that is every opened, consider
first if there are ways to stop malware getting on to your PC in the first place.

Agreed, been running without AV for years. I was sick of my Norton AV
and just uninstalled it at some point.

Never use MS email software (OE or O), use IE as little as possible (and lock it down to "high" security), make

I've been using OE for years without any problem. It is only a problem if you're
an idiot and open attachments you don't know (especially exe files).
No problem after years of use without AV. If attachment looks suspicious, I save
it and open in hex editor.

Firefox and enabled cookies here, no problems either.

sure your incoming email is scanned (preferably at your ISP, or your own email gateway) and all executable attachments are
removed, use a real firewall between your PC and untrusted computers (that may well include other family members, not just the
Internet), check any dodgy downloads carefully, and most importantly of all - use your head!

Nothing beats a "helpfull" ISP that blocks spam for you on their own initiative,
including 1% of "collateral damage". Preferably using ORBL or similar
unreliable database, which should be used only for consultation and not just
flatly blocking emails. And of course, if asked, they will claim to not perform
any kind of filtering. Comcast comes to mind.

But AV on the mail server is indeed nice to have.

For on-demand scanning of downloads (and scanning of emails if your ISP does not do it, or you don't trust them), try clam
(www.clamav.net, www.clamwin.com).

Neat, per file scanning on demand, comes handy sometimes.

M

 

[David Brown]

TheM wrote:

"David Brown" <david@westcontrol.removethisbit.com> wrote in message
news:48f33dcc$0$25383$8404b019@news.wineasy.se...
First ask yourself *why* you think you need an antivirus program of
any sort, and then think if there are better ways to attack the
root of the problem. Rather than running your PC in a straight
jacket re-checking every file that is every opened, consider first
if there are ways to stop malware getting on to your PC in the
first place.

Agreed, been running without AV for years. I was sick of my Norton AV
and just uninstalled it at some point.

Never use MS email software (OE or O), use IE as little as possible
(and lock it down to "high" security), make

I've been using OE for years without any problem. It is only a
problem if you're an idiot and open attachments you don't know
(especially exe files). No problem after years of use without AV. If
attachment looks suspicious, I save it and open in hex editor.

The problem is when malicious email coding tells OE to execute the
attachment (or other unpleasant code) automatically when you simply view
the email. Since OE6 this has been less of a problem, as the security
setting is "high" by default, but I simply would not trust OE (or
Outlook) - there have been too many instances of exploitable bugs and
major design flaws (such as ActiveX, and in particular the concept of
"ActiveX controls marked safe for scripting"). Even with "high"
security, you are open to web bugs (which tell potential attackers your
IP address and that you are online) and other such nasties.

And why would you bother looking at suspicious attachments in a hex
editor? I would think the "shift delete" treatment is more appropriate.

Firefox and enabled cookies here, no problems either.

The same here. At my office, IE is banned for all but a couple of
specific sites - people use Firefox or Opera (by personal preference).

sure your incoming email is scanned (preferably at your ISP, or
your own email gateway) and all executable attachments are removed,
use a real firewall between your PC and untrusted computers (that
may well include other family members, not just the Internet),
check any dodgy downloads carefully, and most importantly of all -
use your head!

Nothing beats a "helpfull" ISP that blocks spam for you on their own
initiative, including 1% of "collateral damage". Preferably using
ORBL or similar unreliable database, which should be used only for
consultation and not just flatly blocking emails. And of course, if
asked, they will claim to not perform any kind of filtering. Comcast
comes to mind.

But AV on the mail server is indeed nice to have.

For on-demand scanning of downloads (and scanning of emails if your
ISP does not do it, or you don't trust them), try clam
(www.clamav.net, www.clamwin.com).

Neat, per file scanning on demand, comes handy sometimes.

I forgot to add one other important security setting - turn off the
"hide extension for known file types" setting in explorer. Then you
won't fall for the old "joke.txt.exe" ploy.

 

[TheM]

"David Brown" <david@westcontrol.removethisbit.com> wrote in message news:48f35de9$0$25383$8404b019@news.wineasy.se...

TheM wrote:
The problem is when malicious email coding tells OE to execute the attachment (or other unpleasant code) automatically when you
simply view the email. Since OE6 this has been less of a problem, as the security setting is "high" by default, but I simply
would not trust OE (or Outlook) - there have been too many instances of exploitable bugs and major design flaws (such as ActiveX,
and in particular the concept of "ActiveX controls marked safe for scripting"). Even with "high" security, you are open to web
bugs (which tell potential attackers your IP address and that you are online) and other such nasties.

And why would you bother looking at suspicious attachments in a hex editor? I would think the "shift delete" treatment is more
appropriate.

1-2 times I suspected what appeared to be a normal attachment so I checked
it out first just in case.

I forgot to add one other important security setting - turn off the "hide extension for known file types" setting in explorer.
Then you won't fall for the old "joke.txt.exe" ploy.

There's probably nobody in this NG that doesn't do this first time after
installing a fresh copy of Windows. But yes, it happens.

M