I currently have no internet security on my laptop and i also only have 1gb of ram under windows vista. I want to know what the best free internet security is that will cover malware, spyware, phishing and all the other types of viruses i had nortan free trial but it ran out and it also made my pc run very slow so maybe one that doesent hog resources would be best. I just wanted some ideas of a good free internet security that does not hog resources and can cover everything so i dont have to worry about security. Thanks
Kaspersky is pretty good. I don't know what its precise memory footprint is but it runs on my netbook without any issues so I guess its quite small. It's definitely smaller than my old setup anyway (Norton) which ate memory for breakfast, lunch, dinner, elevensies, tea and a few snacks inbetween, although to be fair they have had a marketing push recently saying they've improved this aspect
(1) You need to take a different perspective on computer security. Its NOT a "set and forget" thing. ie: There is NO magical "all-in-one" security application that will protect you 100%. In fact, security suites fail miserably when it comes to system exploits in the real world...The best perspective to take is Prevention is better than cure. (Set up your system such that it becomes an environment where malware doesn't run or is unable to do anything). (2) Signature based anti-malware programs are reactive security band-aids. They are NOT prevention, just the cure. (Why do you need a cure running in the background if you know and implement prevention?)...In fact, instead of being pro-active, you are immediately on the defensive because you have to wait for new virus signatures to counter new threats! (Its too late because it takes time to develop signatures!) (3) The best security solution is combining your brain with the knowledge available on the web; and take the view of prevention. (Cures are popular because they are quick/easy, but you'll be forever downloading signatures! Selling cures is profitable!) Here's how I do it... (a) Install all the applications you regularly use. (Not pirated software or software that comes from untrustworthy sources). (b) Disable unnecessary services or features. If you are unsure which services does what, this site may help... => http://www.blackviper.com/ (If you have time to tweak, then use vlite to customise the Vista install media and trim it down). Turn off Autorun! (This is one of those features that seem initially convenient when Microsoft implemented it, but turns out to be a security issue that is often taken advantage of regularly! I think they disabled this in Windows 7 by default.) (c) Set up a Standard User Account and use this the majority of the time. (Only switch to Administrator mode if you need to install something or make a system-wide change). Make sure a password is set for it. Also make sure your applications run under Standard User Account. If you do NOT believe me, here it is from the horse's mouth. (Microsoft!) What is an administrator account? => http://windowshelp.microsoft.com/Windows/en-US/Help/7dcf289b-5fd3-41fd-a290-936f274def771033.mspx What is a standard user account? => http://windowshelp.microsoft.com/Windows/en-US/help/f49eaa8a-2f17-4668-b4ce-d699a4db90681033.mspx Why use a standard user account instead of an administrator account? => http://windowshelp.microsoft.com/Windows/en-US/help/1f7c4b37-eb7a-47e2-8c94-70e162d14a451033.mspx How to Create a Standard User Account in Windows Vista => http://blogs.technet.com/shawnt/arc...a-standard-user-account-in-windows-vista.aspx While the following is Windows 7 focused, it'll apply to Vista... Configuring Windows 7 for a Limited User Account => http://unixwiz.net/techtips/win7-limited-user.html This simple step is taken from the Unix/Linux culture: its very bad to run as Root or Administrator! (The principle remains the same. It does NOT matter if in Windows, Unix/Linux, or Mac). (d) Disable the built-in anti-malware and firewall features in Vista. (They're inadequate or continue to promote cures over prevention) Install Online Armor (Free)...This is a firewall and Host Intrusion Prevention System (HIPS). What HIPS does is notify you if something tries to run or execute, and provides you an option to stop it. Its a little naggy at first, but quiets down on the notifications. Regardless good or bad, anything that tries to run, write in a system area, or does something suspicious; causes a notice to pop-up. Its up to you to decide if something is safe or not. (e) Stay up to date. This is especially true for any application that is web oriented. (Browsers, email clients, chat clients, P2P clients, media players that have streaming functions, etc). Don't forget about Flash, Java, etc! (f) Check your habits! The most common problem is people tend to click on things or download and execute things without a thought! Take a step back and think before you leap! eg: Where did this file come from? Who sent it to me? Is it legit? Do I know this person? Verify if they really sent it? Check email headers? (Where did it come from? Is the received address consistent with the reply address? Is the address consistent with the origin label?), etc. If you use Firefox; the two most important Extensions to install is NoScript and AdBlock Plus. The above approach is more beneficial to you in the long term because: (1) It doesn't bog your system down. (Online Armor isn't resource hungry to cause a noticeable performance impact on your system). (2) You learn and become aware. (If you know how malware works in Windows and do things to prevent it, you will no longer be afraid of those "fear mongering" press releases that anti-malware companies use to keep people investing in cures!) (3) No more subscriptions and endless signature updates! (Money saved! And if you are in a country where Internet usage is capped; Usage saved!) (4) Prevention. (Always ask yourself: Is it better to waste time cleaning up a mess than prevent one?) Its like anything in life; you invest time now in learning something that benefits you in the long term.
Rep++ for aussiebear! I agree completely with his statements. There is no easy and convenient way to be secure, security and convenience tend to be mutually exclusive. If you're not willing to invest the time learning to behave in a safe way, I have had very good experiences with NOD32 by Eset and I believe they have an internet security software suite too. All written in assembler so minimal resource usage.
Thank you mm vr and airchie. I should add some more info... Although I suggested Online Armor (Free) as the Firewall/HIPS to install, there are two other alternatives you can use. (a) Outpost Firewall Free. The free version has the necessary features you need: Firewall, HIPS, and "self protection" (The last one is just the ability to resist from malware trying to shut it down. Essentially the same deal as Online Armor (Free).) OR (b) Comodo Internet Security – Free Version Install only the Firewall and Defense+ (HIPS) components. Don't install the AV component or their browser toolbar thing. REMEMBER! Only use ONE of these. I also recommend you take the time to read the help files, play with, and get to know these solutions. There's nothing worse than installing a security solution that you are not familiar with! It doesn't matter if its Windows, Linux, OSX, Solaris, BSD, etc, always get to know the tools in the OS first! You'd be surprised what's in there! (Also be aware of limitations of those tools...Where they work well and where they don't!) One such feature that I should also mention is: certain Windows versions have something called Software Restriction Policy (or SRP). It allows you to interesting things like prevent certain file types from running, or specify which directory is allowed to run executables. This link tells you how to use it with Limited/Standard User Account. => http://www.mechbgon.com/srp/ Its disabled by default. You need to enable it, and change the policy to "Disallowed" (default deny)...Its another feature rarely mentioned among end-users. (Most folks who administer Windows based networks know about it.) Note: * Home Editions of Windows XP, Vista, or Windows 7 DO NOT have SRP. * SRP is available in Windows XP Professional, and Vista Business, Ultimate, Enterprise Editions. * In the upcoming Windows 7; SRP is available in Professional, Ultimate, and Enterprise Editions. * There's also an improved SRP feature/functionality named AppLocker. Its only available in Ultimate and Enterprise versions of Windows 7...Essentially, it makes white listing applications easier. In the end, it is your knowledge of the tools at your disposal, and experience that will keep your systems running reliably. ie: My dad's WinXP Pro SP3 box has been running (in the configuration that I've suggested), for over a year now. He has no issue with security. He has issues with video playback on some media files though! But that's a codec issue, not a security issue. The only way to have near 100% security is to: Have seriously competent developers/programmers; write software in a computer language that is known for mission critical applications (like Ada); test the heck out of it (like you're testing the F-22 Raptor fighter or some other system a life depends on!); and properly in-still the correct computing habits via education/training of users. ...If you achieve all this (ideal world scenario), security companies like Kaspersky, Symantec, etc would be out of business. The web would certainly be a far better place! (Less crap floating around).
I understand everyone above's sentiments, but I do think it is a tad naive that prevention alone can stop any nasties as you are not aware of what nasties may come up (e.g. drive by site hacks from a seemingly innocent link caugght loads of careful people out unawares). After all I probably wouldn't leave my door unlocked on my front house even if I never left my house and had CCTV trained on it every day as who knows what clever things thieves may come up with. Everything you say is true, but to expect everyone to do away with security software completely I feel is a tad unrealistic, especially if you have sensitive information (e.g. personal finance) on your system. Prevention is good, but sometimes you do catch a cold and the key to doing something about it is knowing you've caught one in the first place.
That's because he said "free" software, which kind of rules out paying hundreds of pounds just for some Mac software. Linux would have been a far more reasonable suggestion, especially given the OP's limited amount of RAM.
Even with OSX, if you are looking at donkey porn on a .ru website or downloading CS4 from korea, you're gonna get screwed. Habits, not software, are the answer.
thanks. great detailed description i wont take the time to do it on this pc at the moment but i will do it on my main pc as i would like it to be secure but should i uninstall nortan and use your idea, would it be worth it?
Nobody is aware of what nasties may come up, not even the companies that make a mint in selling you protection from them. This method uses the fact that any malware needs to have admin rights on a machine to do anything nasty. Exactly, people who are running javascripts from any source and any page and running as an admin. Who said do away with all security software? NoScript is security software as is the HIPS software aussie mentions. That even more of a reason not to use that system for random surfing if you can help it. or if you have no choice, use it as a limited user account. Even better, as a different user account from the one you use to do your banking. Interesting analogy but I don't think it works. Most serious malware targets known security software and neutralises it. Most malware has the intention of hiding itself once its in the system so it can sit there in the background making your system partake in DDOS attacks and spam sending etc. If the security software didn't stop it getting in, its not ikely to be able to effectively remove it either. Since its through emails and internet that a lot of viruses are contracted, sandboxing is an effective method for preventing any infections from infecting the whole system. Check out Sandboxie.
I think you've mis-understood. I'm not saying anything about doing away with security. I'm saying one needs to completely re-think how they see security and their computing habits. For many years now, the default selections that Microsoft has made with Windows is mainly concerned with convenience for the end user. (Remember: MS is a business, they need to maximise profit). As a result, people either have no concept of things like access control, privileges, and accounts in Windows. Only in recent times (Vista and newer) have they bothered to separate Admin and Standard user privileges. (While I don't agree with how they implement UAC from a user's perspective, its better than nothing.) The point is: For so long, people have been taking what is given to them as the norm. The problem is: the norm isn't healthy for their systems or their time in the long term! The approach I suggest is to not keep treating symptoms. We go after problems with solutions. (As in apply something to make sure a particular bad thing doesn't happen)...This is why skilled computer users don't get infected. They know how malware works and have set up their systems such that malware doesn't work on them! Ask yourself: If I study and understand how a cold works, and practice prevention everyday; How can I catch a cold?...Have a think about why some people are immune to things while everyone around them is down and sick. A good 3/4ths of medical issues are caused by our own habits. (My uncle and 3 cousins are doctors of various specific fields)...If we all start paying attention, and act in a way that benefits us in the long term; the whole medical industry will change. Currently, people demand quick fixes. So there is a pill for everything! Instead of changing our habits, we keep buying pills! Pharmaceutical companies are all too happy to provide them...Its the same fundamental concept with computer security: Its profitable for them to keep selling cures and promote fear. Fear is crushed by knowledge and understanding...Once you apply them, those who sell cures will fear you! Look, if you have doubts; grab a spare PC or use virtualisation and test this whole approach yourself. I have no reason to BS you all. I'm not in it for the money. I don't own a Mac. But I know even Apple provides a security guides for their OSX! Mac OS X Security Configuration Guides => http://www.apple.com/support/security/guides/ I'm a Linux user, but I know the key deficiency is Applications. A lot of people rely on applications that simply do NOT run well on Linux. They are Windows only. (Wine isn't 100%, and frankly, it opens a new entry point for malware like the infamous Remote Admin Toolkit...Or RAT. A version of it called Gh0stRAT is used by crackers from China...Primarily for spying reasons as it allows you to control a target machine's webcam!) The 2nd best option is to use VirtualBox (FREE!) and stick Windows in a Guest OS. But you can't play games until the developers have got 3D acceleration working right. (OpenGL part works well, the DirectX part does not). I know upcoming versions of VMware Workstation will have it (Shader 3.0 support and OpenGL => in Windows XP only Guests), as I'm a Beta tester. But this solution is payware. I usually install Linux as bare OS, and then install what I need. I never use default install like in a typical Ubuntu install CD. (Use Alternate CD and press F4 to do a Command Line install...This will give you a base OS that boots into command line.) For me: Linux is always Host OS, while Windows will always be contained in a Guest OS or virtual machine. Anything happens to Windows, it does not affect the whole machine! (I usually knock it down when I write a program and do something stupid). Correct. It is all about habits. (No matter how weird they are...Donkey porn?) What concerns me is the way Apple uses their marketing in regards to security. They mock Windows, while at the same time, they promote security ignorance. Ignorance is BAD. It causes people to believe they are somehow indestructible...So they become careless! (Bad habits!) It doesn't matter if OSX is based on Unix. If you do stupid things, no software can help you. Its kind of hypocritical when you think about it: They provide security guides (see above link) and yet, they portray a view of trouble free security in their marketing? It would better if they spent that advertising money on their own Office suite that competes directly with MS Office. (Focus on great compatibility, etc).
One thing you have to know is the ins and outs of the NT framework and the way outbound/inbound packets affect your system. For example there is a large list of options under your internet protocols in Windows for netbios,Dns, and inbound/outbound port preventions. A problem i've had for some time now is having remote access attempts to my computer on the home network. Unchecking 'Client for Microsoft networks' and 'File sharing' help keep your pc disguised from trojans and port scanning sites etc which try to find a loophole in your defence and then make hell with your computer. A firewall is all well and good, but a stray setting left checked in windows will bring the whole roof down effectively. How I hate NT technology...
Yeah, I generally turn them all off. At home, we use NFS with Kerberos for our network. (Windows needs an NFS client. Linux is supported out of the box)...We don't use MS file/print sharing protocols.
That's why suggested the Firewall with HIPS. ie: Online Armor, Comodo Security, or Outpost...All $0! To be honest: If you want security, you wouldn't be using Windows or OSX. (Mainly because you can't control things in great detail. You accept what they give you, and work around its limitations. If you try to strip things out too aggressively, things start misbehaving badly!) Instead, you would be using Linux or BSD; customized with security enhancements where applicable. ie: In Linux, you can compile in a number of security features into the system. They aren't third-party apps sitting in the background like in Windows; they become the core part of the system! (eg: grsecurity with PaX, SELinux, etc)...The down side is that you need to roll your sleeves up, and get friendly with the command line. (Learn and understand!) If you want an OS that is security focused and free...OpenBSD would be your choice. But that requires command line to install and setup. (Not exactly everyone's cup of tea.)
