Computer Security, Malware and Internet Poker

[NobleTruths]

always run your computer with a limited account, no matter what OS. Running as root/administrator is that begging for trouble. Most malware you get infected with runs in the context of the logged on user, so whatever you can do to fcuk up your puter, that's what the malware can do.

Please read this article on Limited User Accounts and attack vulnerability.

In part, it states:

No, LUA still leaves computers vulnerable from drive-by download attacks that steal password/credentials, copy data records and documents, destroy files, ransom user content, serve as an attack platform inside an enterprise firewall, and serve as one of thousands of other computers as part of a Botnet. LUA just makes it more difficult for attackers to burrow their malware so deep into a computer (i.e., rootkit) that it may never be detected.

[CoccoBill]

Please read this article on Limited User Accounts and attack vulnerability.

In part, it states:

Yes, I'm aware of this. How is this not completely in line with what I said? Btw I might play poker in my cowboy suit at night, but during daytime I fight crime as a security consultant.

[NobleTruths]

CoccoBill,

I wanted the readers to understand that a LUA does not fully protect them from potentially becoming part of a botnet or having other malicious events occurring. Decrease the probability? Maybe. If you go to an attack site, your computer will be targeted. LUA won't prevent that. It will potentially limit the depth of attack on your computer, but compromising your system is still likely.

The bigger picture is the layers of protection you can create for your system.
Safe Surfing-->Firewall-->Antivirus/Antispyware-->Updated System-->Registry Monitor.

I have not addressed the importance of System Backups; this will be for another post. However, if all else fails, and repair is not possible, having a way to recover via Backup is wonderfully preferable to wipe and reinstall OS from new. Just a brief preview on this: creating an image of your existing system, and storing that image on an external Hard Drive, will save you much grief. My tool for this is Acronis True Image. Another choice is Norton's Ghost, but.....I made my preference clear, i think.

[CoccoBill]

CoccoBill,

I wanted the readers to understand that a LUA does not fully protect them from potentially becoming part of a botnet or having other malicious events occurring. Decrease the probability? Maybe. If you go to an attack site, your computer will be targeted. LUA won't prevent that. It will potentially limit the depth of attack on your computer, but compromising your system is still likely.

Please explain how you're going to create a bot if you don't have privileges to install services, modify the HKLM registry or system files. I mean this in the nicest possible way but unlike poker and many other subjects, regarding computer security I really know what I'm talking about. Of course a limited user account won't fully protect you, nothing will. There's no such thing as 100% secure, there's just appropriate controls and effort to balance the risk exposure to your risk appetite. If you have solutions to make something 100% secure against anything, please let me know.

The bigger picture is the layers of protection you can create for your system.
Safe Surfing-->Firewall-->Antivirus/Antispyware-->Updated System-->Registry Monitor.

I'd rather talk about logical layers than software layers. Security aims to ensure the confidentiality, integrity and availability of resources and it consists of equal parts of processes, technology and the human aspect. It doesn't matter what technological controls you have in place if you actively circumvent them, don't understand how they work or have new emerging exploit vectors that aren't covered by your technology. Patch your computer regularly (not just the OS, all apps and middleware also), be aware of the security threats and have a natural distrust of everything and make sure you always use everything with minimum required privileges, and you're as safe as any home user can be expected to be.

I have not addressed the importance of System Backups; this will be for another post. However, if all else fails, and repair is not possible, having a way to recover via Backup is wonderfully preferable to wipe and reinstall OS from new. Just a brief preview on this: creating an image of your existing system, and storing that image on an external Hard Drive, will save you much grief. My tool for this is Acronis True Image. Another choice is Norton's Ghost, but.....I made my preference clear, i think.

Agreed.

[NobleTruths]

If a user has not installed necessary patches, the LUA will not protect as it should. And spyware, keyloggers and other malicious events can occur.

Boy, I wish I had a 100% solution. Thank goodness I never said I did.

Logical layers and software layers sound good together...after all, multi-prong security is essential.