On Mon, Sep 17, 2007 at 11:52:01AM -0400, Paul D. Robertson wrote:
> > I don't want to fill my computer of antivirus, anti spyware, and
> > Norton rubbish, I prefer a simple configuration like this.
> > Please, if you have some ideas about this, share it with me, or
> > perhaps to tell me that I'm missing something that makes this
> > situation nonviable.

> All the Windows attacks of late have been in-band, if you're not running
> AV on Windows the only way to save yourself from anything other than DLL
> injections is to be running software restriction policies in default deny
> mode. Without on-access AV scanning and ant-spyware scanning you're
> likely to have a compromise.

Well really? Are zero-day attacks widespread enough? I assume if you
do windows update in time and do not watch pr0n (which increases the
probability to meet zero-day exploit) you are almost safe. I'd also
suggest not using IE.

firewall-wizards mailing list