"Configured as more of a workstation, using an alternative browser, firewalls and av utilities, works suprisingly well."

I agree 110%/wholeheartedly.

I find that keeping up on Microsoft's patches to their Operating System &/or Office Suite (as well as IE) is the smart thing to do here in addition to other methods of 'defense' I utilize which are:

1.) Registry Hacks for security.

2.) Disabling unneeded services.

3.) Port Filtering @ the Tcp/IP tcp packets & udp datagrams levels.

4.) Using a software firewall (native XP/2003 model, OR ZoneAlarm latest PRO model)

5.) Using a LinkSys/Cisco BEFSX41 "NAT" (network address translation + stateful packet inspection VPN 4 port switch/router unit.

:)

* Seems to work here - I have not been infected (well, once I was for going out onto IRC & accepting a DCC uploaded to me by a user who was infected & I opened it, never again) or broken into in years...

Those methods? Seem to work - a "layered-defense" type of approach.

APK

P.S.=> Still, I agree, about all you can do is make it confusing & harder on hacker/cracker types (and malware creators, so you use good AntiVirus Programs like Norton or AntiVir make + AdAware &/or Spybot).

To quote Scott McNealy of SUN Microsystems:

"There is NO privacy: Get used to it!"

AND, like the author of the article states, no impenetrable security either... give it 5 years, I would wager it will STILL be how it is! apk

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/312/31373#31373