Talk about anything: Page 25 - Godot Community Forums

Talk about anything

some_lame_kid

@cybereality said: I use BitDefender on Windows for security. Everyone says Windows Defender is enough, but they don't know what they're are talking about. I've tried a bunch, I'm sure BitDefender is the best. It's paid, but you can download the free trial and use it just to check on your computer if you want. https://www.bitdefender.com/solutions/free.html

I remember bitdefender from my windows days. I have to agree it's pretty good for malware protection.

jbskaggs

@cybereality said: I use BitDefender on Windows for security. Everyone says Windows Defender is enough, but they don't know what they're are talking about. I've tried a bunch, I'm sure BitDefender is the best. It's paid, but you can download the free trial and use it just to check on your computer if you want. https://www.bitdefender.com/solutions/free.html

Does bitdefender offer system performance testing? Or are you just encouraging better security?

Bimbam

Windows Free AVs are usually fine until they get bloat/ad spammy.

I've worked my way through most of them because of this, eventually they all get annoying unless you start paying. Something like:

AVG -> Avira -> Trend -> McAffee -> Avast -> ClamAV -> BitDefender and now Panda.

I've also used Sophos/Norton etc in a professional capacity but this is a very different use case.

Windows defender is fine for the most part these days, I'd go so far as to say quite good even, unless you're actively trawling the dark web looking for cracks and such. But for zero cost, there's also no reason not to go for something else if it's better. The main value add from paid AV packages is usually the extra stuff they bundle in like family controls/VPN/peace of mind etc. and for this mileage varies.

Almost all firewall apps in windows are unspectacular, bordering on snakeoil and essentially just front ends for windows firewall. Also on a home network you're behind an SPI firewall on your router and probably some degree of protection from your ISP anyway. Essentially, if your machine got 'hacked', there's a high chance you clicked something that allowed it in to begin with (which no packet filter will prevent as it just appears to be regular traffic). People's opinions differ on this from a 'is it fair' perspective, but seriously why everyone should employ some form of ad-blocker extension in their browser of choice, and if you can tolerate it NoScript.

Again different when you look at it professionally, but at that point your firewall is a physical device and you're probably running an IDS.

I still use TinyWall on my personal devices because old habits die hard, but means I have to enable any new service to access the internet which is always manual (as it should be)

At the end of the day, spend money on a ransomware-aware backup solution (i.e not a second/external HDD, something on a physically separate device) before an AV solution. They're called 'zero day exploits' for a reason.

Bimbam

Sorry post got fat, never guess what my old job used to be.

cybereality

Yeah Windows Defender is okay, however it doesn't have the best real-time protection. For example BitDefender and others will proxy your traffic, so even if you click a suspect link, it can block it before the page opens. Windows Defender doesn't even attempt to do that and can't protect you. However, of course the security software is always playing catch up, so it's good just not to visit shady websites or click emails with suspicious origins.

Bimbam

@cybereality said: ... it's good just not to visit shady websites or click emails with suspicious origins.

Honestly this is ~90%.

There was a time (before ~XP SP2) when a windows box on the internet would get a virus in seconds. Legit experienced this where I got multiple viruses in the time it took to download antivirus software from a fresh install.

Nowadays Windows is surprisingly secure with the vast majority of events down to some form of operator error (albeit often unintentional). Unfortunately human error is still surprisingly common.

I've litmuss tested this some years ago when I mained Windows 7 for about 6 months with no third party AV/Firewall at all just to prove a point. Simply because I know what I'm looking for/had generally good practices ingrained into me through work, no viruses when I eventually installed and scanned.

To be clear I'm not recommending this to anyone. Best practice is and always will be to maximize security wherever available. But the stigma of being inherently insecure is vastly reduced these days.

Erich_L

@Bimbam said: Sorry post got fat, never guess what my old job used to be.

Forest ranger’s assistant?

cybereality

Yeah, I haven't got a single virus in like 10 years. The operating systems have much more security, and if you're smart when you browse it is very hard to get a virus. Granted, I see attempts all the time, but I never click them.

The last time I got a virus, was in 2012 I believe, when I visited the Pirate Bay to download a font pack. I just opened the website to a search result, I did not even click anything, and this Java popup came up quickly and disappeared. It seemed suspicious, but I didn't think much of it.

Then for the next week I noticed my internet was slow. It started getting really slow, so I figured I'd been hacked. Turns out, the hackers set a proxy redirect on my internet, so everything was going to some proxy server in China. They would still show me the website I typed in, but it would dynamically replace all the ads on the page with their ads. Kind of a nice trick, and I imagine a lot of people wouldn't even notice this or just think their internet was crappy and not even know about proxy servers or how to fix it.

Megalomaniak

@Bimbam said: and if you can tolerate it NoScript.

Guess I've just been using it for too long, cause the statement of having to tolerate it flies right past me...

Talking about the OG and not the web-extension.

Bimbam

Yeh it's more about general user adoption. Most people don't want to think about or be interrupted by security and want something they can just install and forget about.

Unfortunately that's far from how security really works, so you've gotta draw the line somewhere between usefulness and process invasiveness. Out of AV/Backups/AdBlock/NoScript I'd say NoScript is the most invasive in that it will require semi-regular input from the user to do something about something (depending on their habits). I mean I wouldn't be able to edit this forum post without actively clicking something to say I trust this site.

Basically, 3 out of 4 of the above I would recommend to my Dad. Putting NoScript on my Dad's computer is likely to result in a phone-call every few days to ask wtf is going on lol

As a side note if anyone is interested Windows 11 supports enforced HTTPS DNS if you enable it and are privacy conscious/have an annoyingly restrictive ISP DNS.

cybereality

I got sick of NoScript. I used it for a long time, but it's too much of a hassle. Especially if you sync your browsers (and I get new computers all the time) whenever you add a new PC/browser it resets all your setting to default and you have to go through the whole rigmarole again. I'm done with it.

But I do have a hardware firewall and anti-virus on the router level, so I think that is enough. And the chance of getting a virus on Linux is pretty low anyhow. I do run BitDefender on my Windows machines, and I don't do anything on macOS cause it's almost impossible to get a virus.

jbskaggs

Sometimes I feel like the guys who write the viruses also write the antivirus software to keep themselves in business.

Sometimes I feel like guys who write harmful spyware deserve to a metholatum / ground glass enema. Do they still actively prosecute these guys, or are they recruited into cyber warfare armies?

cybereality

No not really. If you are a wizard level hacker and get caught they just hire you.

jbskaggs

@cybereality said: No not really. If you are a wizard level hacker and get caught they just hire you.

There's not a sad button I could click. But fear your right.

Megalomaniak

@Bimbam said:

Basically, 3 out of 4 of the above I would recommend to my Dad. Putting NoScript on my Dad's computer is likely to result in a phone-call every few days to ask wtf is going on lol

I did that one, and I removed it within a day from his computer. 1 call a day? I wish!

OpinionatedGamer

I haven't been here for a long time. I have 164 notifications. XD clearly i've missed a lot =)

OpinionatedGamer

Interesting fact, the majority of hacking isn't actually doing computer stuff, you get inside the network and find someone gullible and trick them into giving you the information. One of the worlds best hackers wrote a book on it. (He was actually punished when he was caught, jailed for a while and then denied internet access for a long time)

fire7side

Yeah, you can save a lot of trouble by never clicking a link included in an email, even if it's a site you always go to. I don't use anything other than windows defender. Those antivirus programs just slow everything down. I'd rather just do a reset once in a while. I don't know if it helps or not but I put my passwords in a 7zip archive with another password to open it up. I don't save them on my browser unless it's a site that doesn't contain sensitive information. The only one on Bimbam's list I use is adblock and not for security.

OpinionatedGamer

@fire7side said: Yeah, you can save a lot of trouble by never clicking a link included in an email, even if it's a site you always go to. I don't use anything other than windows defender. Those antivirus programs just slow everything down. I'd rather just do a reset once in a while. I don't know if it helps or not but I put my passwords in a 7zip archive with another password to open it up. I don't save them on my browser unless it's a site that doesn't contain sensitive information. The only one on Bimbam's list I use is adblock and not for security.

I know someone who knows quite a bit about stuff like this, and he says that a password on your computer is to stop ordinary people, and hackers working remotely. He says if someone who knows what they are doing and have physical access to your computer they will be able to get in.

Just thought it was interesting, not knocking your security, it actually sounds pretty good.

Yeah, it only takes one misclicked link to get a virus on your computer. good call.

jbskaggs

@OpinionatedGamer said:

@fire7side said: Yeah, you can save a lot of trouble by never clicking a link included in an email, even if it's a site you always go to. I don't use anything other than windows defender. Those antivirus programs just slow everything down. I'd rather just do a reset once in a while. I don't know if it helps or not but I put my passwords in a 7zip archive with another password to open it up. I don't save them on my browser unless it's a site that doesn't contain sensitive information. The only one on Bimbam's list I use is adblock and not for security.

I know someone who knows quite a bit about stuff like this, and he says that a password on your computer is to stop ordinary people, and hackers working remotely. He says if someone who knows what they are doing and have physical access to your computer they will be able to get in.

Just thought it was interesting, not knocking your security, it actually sounds pretty good.

Yeah, it only takes one misclicked link to get a virus on your computer. good call.

Or messenger. Last week I by chance saw my wife about to fillout a login form for facebook on facebook messenger and luckily stopped her. She had no idea that someone could impersonate a friend on facebook and send her a fake phishing link. So I brought in my motherinlaw and my wife and gave a quick lesson on never click links in emails or messages.

« Previous Page Next Page »