[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Click for more| Home]

>not using anti-virus How exactly do you plan to protect

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.

Thread replies: 104
Thread images: 16

>not using anti-virus

How exactly do you plan to protect yourselves from zero-day exploits, and browser security holes, etc?
>>
By not using wangblows.
>>
File: OCscrub.png (515KB, 612x792px) Image search: [iqdb] [SauceNao] [Google]
OCscrub.png
515KB, 612x792px
>>45636181
my favorite /g/ meme
>>
AV isn't going to protect you from zero-day exploits.
>>
>>45636335
this
>>
>>45636335
>>45636704
>wat is an anti-virus heuristic analysis

They can detect shit that hasn't even been recorded before.
>>
>>45636753
>anti-virus heuristic analysis

Literally what
>>
>>45636753

they still drew a blank on your sex life
>>
https://docs.google.com/file/d/0B_YSil_6KDdqdjhpNF9nVkpEVjg/edit?pli=1

Read this, install GNU plus Linux and then fuck off.
>>
>>45636753
>0day in your OS allowing remote code injections
>actually thinking AV matters at this point
>shiggity
The only way you're secure is disconnecting your machine from inbound and outbound connections... if you know you're the only one with physical access to it.

>this thread is bait and I took it
>>
>>45636181
i wear a condom, easy
>>
>>45636181
your premise suggests that AVs can do that when there is no solid proof of such.

>>45636753
lel, except they can't since it doesn't take much effort to make something like your own keylogger and not get it detected.
>>
File: 1386068228088.png (757KB, 1198x1200px) Image search: [iqdb] [SauceNao] [Google]
1386068228088.png
757KB, 1198x1200px
>>45636335
>>45636704
>>45636859
>>45637111
>>45637163
>>
>>45636753
A fucking joke.
>>
>>45637042
lol'd
>>
>>45636335
Yes they will, av programs dont just detect shit from a list, they monitor important system files and any suspicious changes being made. If you don't use an antivirus how can you say you use common sense?!
>>
>>45637211
it doesn't you fucking retard, do you even know what a 0day is?
>>
hi guys just a qq here- can i connect myself w3ith metasploit to someone outside my network knowing just an ip...?
>>
>>45637456
You are a fuck.
>>
By using no-script and not using Java.
>>
>>45637420
im an infosec profession

not taking it
>>
OSX does not have this problem-
>>
>>45637831
see >>45637211
>>
>>45637831
thats because malware authors dont care about stealing your Womens Studies term paper from you
>>
>>45637831

>If I cut my hands and feet off then I'll never get hangnails again!
>>
>>45637691
Whats infosec?
>not bait just retard
>>
File: a33.jpg (82KB, 960x960px) Image search: [iqdb] [SauceNao] [Google]
a33.jpg
82KB, 960x960px
>>45637831
>>
>>45637885
Information Security you dumb nigger
>>
File: Fx24noV.jpg (157KB, 405x412px) Image search: [iqdb] [SauceNao] [Google]
Fx24noV.jpg
157KB, 405x412px
>>45636181
>AV
>protection against zero day exploits
>>
>>45636253
>wangblows
hehe guise you can tell I'm a cool windows hater because I replaced the win with wang, like a penis, and dows with blows because they sound the same and windows blows rite guise?
>>
by not searching for fat booty
>>
>>45637939
>new recaptcha
>now with 150% more shitposting
>>
File: 1370482305632.jpg (373KB, 1280x800px) Image search: [iqdb] [SauceNao] [Google]
1370482305632.jpg
373KB, 1280x800px
>>45637831
see ---> >>45637845
>>
>>45636181
Qubes OS nigger. Lrn2opsec.
>>
>>45637923
>implying signature based detection is the only thing available

As expected of a dumb pedophile
>>
>>45636181
you can use emet and just be smart
>>
File: 1406733526621.gif (14KB, 683x400px) Image search: [iqdb] [SauceNao] [Google]
1406733526621.gif
14KB, 683x400px
>>45636181
>>
>>45637923
Don't feed the troll: >>45638062
>>
>>45637923
see
>>45636753
>>
>>45638050
with that you only get half compromised. I like the project but still...
>>
>>45638083
bullshit
>>
>>45638098
Half compromised? Not at all. Open up untrusted shit in disposable VMs and kill them afterward. No persistent compromise at all. Anti evil maid will alert you to lower level compromises (bios/preboot bytecode).

It's the only OS that can be verifiably secured.
>>
Install an OS that respects your freedom.
>>
>>45638172
>inb4 someone suggests Windows
>>
>>45638076
I'm surprised anyone on /g/ knows what EMET is. It's actually one of the better tools out there for 0day memory protection. And it's free.
>>
>>45637831
Because no one gives a shit about it.
>>
>>45636181
by not using a shit operating system, you retard
/thread
>>
>>45636181
How exactly do you think antivirus programs will protect you against zero-day exploits? People don't use zero-days to upload run-off-the-mill viruses to your machine, you know.
>>
>>45638062
>implying heuristics isn't laughable
>>
>>45637850
>if I dont pay for sex with an AIDS ridden whore I wont get AIDS
ftfy
>>
>>45638083
i love that meme
"Le Linux gets no viruses"

Epic
>>
>>45638324
>>45638109
Prove me wrong
>>
>>45636253

Confirmed for hipster turbo fag
>>
>>45638354
Not him, but google pieces of eight and/or hand of the thief malware strains.
>>
>>45638354
Oh you mean like this?

http://www.computerworld.com/article/2857129/turla-espionage-operation-infects-linux-systems-with-malware.html

>inb4 virus != malware
>>
>>45638124
not really. i've spent the past half a year looking through qubes as a reference for a security research project, and there's a lot of sketchy stuff it does that could potentially be exploited if there were the right bugs in the graphics stack. it does things like direct sharing of memory buffers between inside the vm and outside.
>>
>>45638404
In the gfx stack? Each VM has a separate x instance and it is the only os that does proper GUI isolation so a compromise of an individual appVM won't allow keylogging except for in that appvm. All input events are forwarded by dom0 so a compromised VM can't sniff anything outside its own instance.

It also depends on whether or not your CPU also supports vt-d, which fixes the memory sharing issue. Your hardware needs to support qubes in order to get all the benefits out of it.
>>
>people who think Linux getsrica viruses
>>>/out/
>>
>>45638473
Depends on your threat level and expertise.
>>
>>45638392
>>45638404
Linux does not get viruses. This bit of malware doesn't target Linux. Nice try.
>>
>>45638465
all the X instances are separated from each other, yes, but the main system instance has its windows painted on directly by memory passed from the the VM instances.

i'm not saying it doesn't take care of most things, but it's not a "perfect solution" because they had to make some compromises for speed (and even still its ridiculously slow)
>>
>>45638473
>>45638555

Do I need to write a goddamn Linux worm so faggots on /g/ will shut the fuck up?
>>
>>45638559
not a "perfect solution" meaning that it's still theoretically possible for the outside to be influenced by a compromised inside, given some catastrophic bug.
>>
>>45637080
Ayy lmao
>>
>>45638587
Even if you do write it, your worm won't change the fact that only a handful of viruses target Linux that effectively speaking, Linux does not get viruses.
>>
>>45638559
I'd agree with that. It's not perfect and doesn't tackle all fronts of possible malware but it's the closest thing I've seen or used that is incredibly resistant to *persistent* malware, and the separation and disposable nature of VMs does make it truly extraordinary.

And the drawing happens from dom0, which is extremely difficult to exploit and requires an exploit in Xen to succeed. To date there have only been 3 since its inception, and one required a windows hvm, one was developed by the qubes devs, and the other has been patched for ages.
>>
>>45638559
Also I have not noticed a major speed issue except for things that require hardware acceleration. Once the appvm is loaded, it's snappy enough for the trade off in additional security.
>>
>>45638631
>a handful of viruses target Linux
>effectively speaking, Linux does not get viruses
You contradict yourself within the same sentence.


Linux gets owned, OSX gets owned, Windows gets owned.
>>
>>45638702
Just because it's theoretically possible for chicken flesh to develop salmonella doesn't imply that I'm going to get salmonella poisoning whenever I eat chicken. I don't get salmonella poisoning when eating chicken. This doesn't imply that I'm 100% immune to salmonella, it just means that it doesn't happen in practise.

Just because viruses exist for Linux doesn't imply that the general populace are going to get affected by it. The literal meaning (Linux does not get viruses) is false but in practice, it's practically true.
>>
>>45638785
practically true != true
some viruses != no viruses

And it's not just theoretically possible, its happened, happening and will continue to happen.
>>
>>45638836
Viruses are only a problem if they get into a system and do damage. If the in the history of practice shows that it is extremely rare for anything to happen, the magnitude of maliciousness of any virus is practically of no consequence to us as practically speaking, it doesn't directly affect us and only indirectly affects us by association.
>>
>>45638926
Try telling that to someone who gets owned by a virus targeting the Linux kernel.
>>
Linux has a shit ton of vulnerabilities even recently
>heartbleed was an openSSL vuln that exisited in Linux dating back to the early 90s
>shellshock existed on Linux web servers also dating back to the 90s

while a vuln is not malware at all, these were very easy to exploit which would allow attackers local admin on the host. Moral of the story: linux is not impenatrable
>>
>>45639005
>vuln
do people need to shorten fucking everything?
>>
>>45639019
i do security for a living
everyone in security types vuln instead of vulnerability 10 times

good thing you had something productive to provide to the discussion
>>
>>45639005
Of course it is not entirely impenetrable, but for any reasonable home or even most business use, it is essentially safe. Of course it has an occasional virus, but when it does, it's big news, and probably won't effect the huge majority of people anyway.
>>
>>45639049
It's not even tha har to writ th whol thin
>>
>>45637939
Faggot detected
>>
>>45639070
If everyone started using OSX or ubuntu in an enterprise environment or even home use, you would see the rate of linux infections rise significantly.

There is little malware targeting linux because few people use it. I'm not saying Linux is less or equally insecure as Windows because it's definitely not. Linux out of the box is quite secure.

Malware authors are targeting an attack surface they'll have the highest chance of success with.
>>
File: 3054848_o.gif (2MB, 320x240px) Image search: [iqdb] [SauceNao] [Google]
3054848_o.gif
2MB, 320x240px
>>45636181

By using free software
>>
>>45639195

/thread
>>
File: Copy of ynh4bg.png (22KB, 921x617px) Image search: [iqdb] [SauceNao] [Google]
Copy of ynh4bg.png
22KB, 921x617px
i'm a digimon. whenever i encounter a new virus and defeat it, i grow stronger.
>>
>>45639295
GTFO tripfag you have nothing valid to say about any subject anywhere at any point in time.
>>
File: derp.png (58KB, 264x191px) Image search: [iqdb] [SauceNao] [Google]
derp.png
58KB, 264x191px
>>45636253
LOOK MOMMY, I POSTED DA FUNNIES ON THE INTAWET!!!!!
>>
>>45639495
this board values high-quality posts, please refrain from speaking like a child
>>
>>45639161
>>
>>45637831
>if I cut off my foreskin I'll never get dickcheese (or pleasure) ever again! It just werks :^)
>>
r̸̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈͆͌̃̊̊̊͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋ͧ̍̾̎̽r̸̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈͆͌̃̊̊̊͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋ͧ̍̾̎̽r̸̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈͆͌̃̊̊̊͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋ͧ̍̾̎̽r̸̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈͆͌̃̊̊̊͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋ͧ̍̾̎̽r̸̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈͆͌̃̊̊̊͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋ͧ̍̾̎̽r̸̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈͆͌̃̊̊̊͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋ͧ̍̾̎̽r̸̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̥̰͙͈͖͇̹͇͓̮͕̦͍͎̬̭͕̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈̅̎̑̌̏̉̃̌̔͊͑̂ͣ̿̈͆͌̃̊̊̊͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋͋ͧ̍̾̎̽
>>
>>45639140
Linux IS already on most people's smartphones and on most web servers.
>>
File: laughing.png (73KB, 264x191px) Image search: [iqdb] [SauceNao] [Google]
laughing.png
73KB, 264x191px
>>45639505
>this board values high-quality posts
>high-quality posts
You almost had me there......Install gentoo
>>
>>45639584
I'm serious. It's been codified into 4chan's rules.
>>
>>45639596
being this new
>>
>>45637456
Scan the IP address for vulnerable ports and then begin brute-forcing the admin password. If your victim is relatively retarded they should have an austistic password (seriously, try "autism") and will eventually get in to their system remotely.

And then you can drop in lots of CP and tip off the FBI anonymously to get them jailed. Enjoy!
>>
File: 1361496822893.gif (2MB, 615x413px) Image search: [iqdb] [SauceNao] [Google]
1361496822893.gif
2MB, 615x413px
>>45637042
>>
>>45638354
You didn't prove yourself right
>>
>>45638473
>>45638555
Blocked :)
>>
>>45639019
Epic
>>
>>45639571
Yes, and look how many fake av's and malicious software is now being written specifically for android

Infection has nothing to do with security, and all to do with how popular the system is
>>
>>45641610
Nigga I've never heard of someone getting a virus on Android, you would need to intentionally somehow do that shit
>>
>>45641670
There are malicious apps on the play store

Also check out some of the defcon talks, one of them showed how someone could install an undetectable, unerasable trojan on the phone
>>
>>45641610
No Anti Virus is going to stop you from being a dumbass and downloading fake antivirus on any operating system. And also you said nothing about servers.
>>
>>45641703
How many people do you actually know who have had a problem with a virus on Android?

And Google allowing such things to be blatantly on the play store is a Google problem, not a Linux problem.
>>
>>45637080

how do you even got that link,

any specific site for more docs like this, pls
>>
File: lostboy.png (4MB, 696x696px) Image search: [iqdb] [SauceNao] [Google]
lostboy.png
4MB, 696x696px
AV won't protect you from this.
Thread posts: 104
Thread images: 16


[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]
Please support this website by donating Bitcoins to 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
If a post contains copyrighted or illegal content, please click on that post's [Report] button and fill out a post removal request
All trademarks and copyrights on this page are owned by their respective parties. Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site. This means that 4Archive shows an archive of their content. If you need information for a Poster - contact them.