Author Topic: Real World AV tests  (Read 2413 times)

Offline MrRiplEy[H]

  • Persona Non Grata
  • Plutonium Member
  • *******
  • Posts: 11633
Re: Real World AV tests
« Reply #15 on: July 31, 2014, 02:19:54 PM »
Antiviruses are at worst vulnerabilities themselves which get targeted: http://www.syscan360.org/slides/2014_EN_BreakingAVSoftware_JoxeanKoret.pdf

Quote
Antivirus propaganda:

“We make your computer safer with no performance
penalty!”
“We protect against unknown zero day attacks!”.

Reality:

AV engines makes your computer more vulnerable
with a varying degree of performance penalty.

The AV engine is as vulnerable to zero day attacks
as the applications it tries to protect from.

And can even lower the operating system
exploiting mitigations, by the way...
« Last Edit: July 31, 2014, 02:22:16 PM by MrRiplEy[H] »
Definiteness of purpose is the starting point of all achievement. –W. Clement Stone

Offline Vulcan

  • Plutonium Member
  • *******
  • Posts: 9891
Re: Real World AV tests
« Reply #16 on: August 01, 2014, 01:51:29 AM »
Antiviruses are at worst vulnerabilities themselves which get targeted: http://www.syscan360.org/slides/2014_EN_BreakingAVSoftware_JoxeanKoret.pdf


I had a quick read of that, a lot of it is technically incorrect. They avoided the commercial heavyweights, focussed on some products barely anyones heard of (some AV engine out of Vietnam?). Also some of the exploits are heavily contrived (running Windows AV on Linux to attack memory?) so really world translation is doubtful.

You're still better to have AV.
« Last Edit: August 01, 2014, 01:56:13 AM by Vulcan »

Offline MrRiplEy[H]

  • Persona Non Grata
  • Plutonium Member
  • *******
  • Posts: 11633
Re: Real World AV tests
« Reply #17 on: August 01, 2014, 02:02:11 PM »
I had a quick read of that, a lot of it is technically incorrect. They avoided the commercial heavyweights, focussed on some products barely anyones heard of (some AV engine out of Vietnam?). Also some of the exploits are heavily contrived (running Windows AV on Linux to attack memory?) so really world translation is doubtful.

You're still better to have AV.

Whatever you say lol. His article is more convincing than you though. So you mean Bitdefender, Panda, Avast, Nod32 etc. are not widely used products? From Norton we already know that this threat he describes became a reality.
Definiteness of purpose is the starting point of all achievement. –W. Clement Stone

Offline guncrasher

  • Plutonium Member
  • *******
  • Posts: 17362
Re: Real World AV tests
« Reply #18 on: August 01, 2014, 07:04:21 PM »
so mrripley what you are saying is that we are better off not having an av that having one?


semp
you dont want me to ho, dont point your plane at me.

Offline MrRiplEy[H]

  • Persona Non Grata
  • Plutonium Member
  • *******
  • Posts: 11633
Re: Real World AV tests
« Reply #19 on: August 02, 2014, 04:05:09 PM »
so mrripley what you are saying is that we are better off not having an av that having one?


semp

Yes, ditch Windows for anything but games and you either won't need AV or the one you use will not get attacked against so much.
Definiteness of purpose is the starting point of all achievement. –W. Clement Stone

Offline guncrasher

  • Plutonium Member
  • *******
  • Posts: 17362
Re: Real World AV tests
« Reply #20 on: August 02, 2014, 05:26:00 PM »
Yes, ditch Windows for anything but games and you either won't need AV or the one you use will not get attacked against so much.

yeah tried that.  had way too many problems with linux crashing.  it would work great at the beginning then after a few weeks something or other would stop working and spent way too many hours trying to figure out what the problem was.  I know a couple of things here and there but I could never figure out how to make it work right.  mostly it has to do with the hardware I use.


semp
you dont want me to ho, dont point your plane at me.

Offline save

  • Gold Member
  • *****
  • Posts: 2852
Re: Real World AV tests
« Reply #21 on: August 02, 2014, 05:27:30 PM »
Browsers apart, it's not that easy to protect a complete linux  installation as it looks.

Even with graphic firewall some typical server applications like ftp, samba etc needs tweaking.

My ammo last for 6 Lancasters, or one Yak3.
"And the Yak 3 ,aka the "flying Yamato"..."
-Caldera

Offline Vulcan

  • Plutonium Member
  • *******
  • Posts: 9891
Re: Real World AV tests
« Reply #22 on: August 03, 2014, 12:00:10 AM »
Whatever you say lol. His article is more convincing than you though.

I work in network security. I see a lot of stuff, talk to a lot of people, vendors, developers. There are always people trying to get attention with presentations like his.

FWIW I have never had a virus on Windows since at least Win95,

Offline MrRiplEy[H]

  • Persona Non Grata
  • Plutonium Member
  • *******
  • Posts: 11633
Re: Real World AV tests
« Reply #23 on: August 03, 2014, 01:19:37 AM »
yeah tried that.  had way too many problems with linux crashing.  it would work great at the beginning then after a few weeks something or other would stop working and spent way too many hours trying to figure out what the problem was.  I know a couple of things here and there but I could never figure out how to make it work right.  mostly it has to do with the hardware I use.


semp

If you used linux Mint, that was your problem. It's never been stable. You should try Kubuntu or Subdivision instead.
Definiteness of purpose is the starting point of all achievement. –W. Clement Stone

Offline guncrasher

  • Plutonium Member
  • *******
  • Posts: 17362
Re: Real World AV tests
« Reply #24 on: August 03, 2014, 01:35:40 AM »
If you used linux Mint, that was your problem. It's never been stable. You should try Kubuntu or Subdivision instead.

problem is you never know which one is your problem.


semp


btw once you recommended Linux mint.
you dont want me to ho, dont point your plane at me.

Offline MrRiplEy[H]

  • Persona Non Grata
  • Plutonium Member
  • *******
  • Posts: 11633
Re: Real World AV tests
« Reply #25 on: August 03, 2014, 02:16:22 AM »
problem is you never know which one is your problem.


semp


btw once you recommended Linux mint.

If I did I probably thought at that time that they got over their stability problems. I was wrong.

It's a fact however that most of the linux distros are extremely stable and require nothing more than basic setup to serve as a web-browsing, music listening, image/video viewing etc. computer for most daily uses. The biggest problem with open source is that the developers are fanatic about licensing so you may need to install codecs etc. additions to get everything running. There are a lot of good instructions however how to do that.

For ubuntu for example, there are websites that teach you to make a basic setup '10 things to do after installing ubuntu'.
Definiteness of purpose is the starting point of all achievement. –W. Clement Stone

Offline guncrasher

  • Plutonium Member
  • *******
  • Posts: 17362
Re: Real World AV tests
« Reply #26 on: August 03, 2014, 08:36:44 PM »
I tried ubuntu and did all the recommendations they did.   but just like the other 4 or 5 I tried, it slowly started to crash.  for example on the hd that I have  I am unable to update it.  the "control panel" or whatever you call it wont even come up, it just hangs in there.  I'll give it another try in a few months once some of them get a bit more updated.

linux is not a system like windows where it is "install and forget".  it's a bit more complicated and for people who like to tinker with stuff.  I like to mess around with stuff but in this one I got "way over my head"  trying to fix whichever problem came at me.



semp
you dont want me to ho, dont point your plane at me.

Offline MrRiplEy[H]

  • Persona Non Grata
  • Plutonium Member
  • *******
  • Posts: 11633
Re: Real World AV tests
« Reply #27 on: August 04, 2014, 12:07:57 AM »
I tried ubuntu and did all the recommendations they did.   but just like the other 4 or 5 I tried, it slowly started to crash.  for example on the hd that I have  I am unable to update it.  the "control panel" or whatever you call it wont even come up, it just hangs in there.  I'll give it another try in a few months once some of them get a bit more updated.

linux is not a system like windows where it is "install and forget".  it's a bit more complicated and for people who like to tinker with stuff.  I like to mess around with stuff but in this one I got "way over my head"  trying to fix whichever problem came at me.



semp

No actually linux is exactly 'install and forget'. You must have done something wrong in the setup. For example my parents use a Kubuntu setup I installed to them 4 years ago. They haven't called me even once to fix it as opposed to windows needing fixing every few months.

Next time when you install linux make sure that your install DVD is burned at maximum 4x speed and that you follow instructions meant only for that specific distribution and version. If you try to follow instructions which are meant for other versions most likely you'll end up messing something up. Also the install media can be very tricky, if the cd/dvd has burn errors the setup may finish seemingly ok but stuff is broken in reality.

The last linux setup DVD I tried to burn with the built in burn tool in W7 using standard settings was faulty, IIRC you can't define burn speed in the built in tool.
Definiteness of purpose is the starting point of all achievement. –W. Clement Stone

Offline Bizman

  • Plutonium Member
  • *******
  • Posts: 9606
Re: Real World AV tests
« Reply #28 on: August 04, 2014, 04:00:56 AM »
The last linux setup DVD I tried to burn with the built in burn tool in W7 using standard settings was faulty, IIRC you can't define burn speed in the built in tool.
Did you check "Verify disc after burning"?
Quote from: BaldEagl, applies to myself, too
I've got an older system by today's standards that still runs the game well by my standards.

Kotisivuni

Offline MrRiplEy[H]

  • Persona Non Grata
  • Plutonium Member
  • *******
  • Posts: 11633
Re: Real World AV tests
« Reply #29 on: August 04, 2014, 04:39:21 AM »
Did you check "Verify disc after burning"?

Not in that case, wouldn't make any difference though if/when the default speed produced errors.
Definiteness of purpose is the starting point of all achievement. –W. Clement Stone