.
Reviews and Tests of Security Software
Since this is the General Talk section, I hope it is o.k. to provide some general assistance for the verification of downloaded archives, given the fact that we are often in doubt about the legitimacy of a crack or key generator whose origins or inner workings are unclear. On the other hand, many anti-virus or firewall programs exaggerate their nervousness and some of them would even go so far as to accuse our beloved gray mammal of containing malware. In order to be able to properly separate the wheat from the chaff, it is indispensable to use not just any, but a good and reliable combination of security tools. Selecting the best programs is what the following paragraphs are trying to assist you with.
Further below there is a bunch of links to security related review and test sites. Make sure you read the individual reviews and the explanation of the testing procedure used, not just the global ranking. Why is that important? Because some sites have weird criteria when rating hard- and software.
For instance, some magazines or web sites would give bad marks for «ease of use» when a firewall offers many configuration options because «this confuses the consumer and bears the risk of making bad choices». True, but it also means that if you can't configure anything, the software decides what you download and run, not you. This can become extremely annoying when a manufacturer issues a statement on their website «ABC-KillVir triggers a false positive, but there is definitely no spyware in our product» while ABC-KV simply won't give you any option to allow the software to run. Even «complicated» software comes with default settings for inexperienced users, so the criticism is somewhat pointless, but readers need to be aware of these irks when comparing test results.
Second, there are editors who downgrade a software because of its high price. In my humble opinion, the price should never, ever be calculated into any rating of any product category, because everybody can decide for themselves if the specifications and features are worth the money in their book. Moreover, who in their right mind would risk their system to be compromised just to save a couple bucks? Well, as a AstaTalk member, price should not be your primary concern, so make sure to not miss out on a great software just because a certain magazine uses stupid formulae to calculate average ratings.
The same goes for the balance between features and criteria in general. For instance, if you don't have any little monsters in your house (or if you know how to educate them), Parental Controls are probably not of importance. Consequently, a firewall whose total score is lower because of shortcomings in that area might still be a more adequate choice for you if it did well in tests that are more relevant in your particular situation.
When it comes to firewalls, some manufactures and magazines optimize/test only the «way in», claiming that once the spyware is on your machine, the battle is already lost. This is simply wrong. As long as a spy cannot tell anybody what he saw in that secret underground laboratory, it doesn't really matter what he found out. By the same token, leak tests against crapware calling home on the «way out» are just as important as intrusion protection. If you acquire your software without a financial commitment, a good firewall that prevents programs from calling home is twice as important for AstaTalk members as it is for somebody who purchases software legally. Any test of security software worth that denomination should include leak tests as well, not only intrusion tests.
Finally, don't give two much on the last few percent or viruses detected, i.e. the first three to five products are often changing position between different testers on different dates. How come? Well, since security products are updated daily while computer magazine contributors have a deadline (or a new girlfriend) to meet, one product might have been updated before the editor left the office whereas its competitor might come in a few hours later and therefore run the tests on an «outdated» engine or signature. Add to that the fact that different manufacturers/testers focus on different things and you might think that ABC is «better» than DEF because it caught 99.8% instead of only 99.5% of all pests thrown at it. Taking into account that the vast majority of machines gets infected by crap that has been around for ages, getting the latest variant on the day of the test is a rather theoretical exercise. As long as two products are within the same ballpark, other selection criteria, eg. configuration and fine-tuning options or resource hunger, are usually more relevant.
An example of how it's done right is MatouSec:
http://www.Matousec.com/projects/windows-personal-firewall-analysis/
These guys explain their test setup, explain the reasons why they give importance to wh__TEXT IS TOO BIG. IT WAS TRUNCATED TO 5000 SYMBOLS
General Talks → Software and Hardware Discussion → Security Software - Reviews & Tests11 Jun 2009, 01:53 You have to login or register to post comments. |
Tweet:
 
|
Please login or register to download
or
Download here directly at 100Mbit
When it comes to Security Suites, you want to revisit these sites periodically, because a software that was great in it's heyday may no longer be able to defend the title half a year later. By the same token, former resource hoggers that were improved over the years hardly get a fair chance because of their previous reputation. After a while you know who reflects your own experiences and preferences best and it won't take a lot of time to keep an overview of the market.
Now all that remains to do is congratulate you for your initiative and interest -- more people should worry about these topics before installing anything else -- thank you for your patience with the long sermon and wish you a great day.
Yours faithfully,
Qui Peccavit
... le Maître du Désastre
.
Please use astacut for all outside links - edit by ladycandy
Separating the Wheat from the Chaff ...
While we are at it ...
It appears s as if some people around here were using AVs without any selective options (ignore button, etc.). For instance, if I am not mistaken, certain versions of Nod32 usually block the entire .rar file already during the download or in IDM's temporary folder before re-assembly, without a chance for the user to say «Don't worry, I know what I am doing». At least a lot of other Security Suites do.
There are some Arabic and Chinese sites that include an infected file in the package, which is independent of the rest, i.e. doesn't affect the actual contents. It is often called «Setup.exe» or something similar to fool newbies, but can be safely deleted without diminishing the functionality of the crack, key generator or whatever the contents of the archive was. Of course, some fixes do contain malware, which is the reason why more than one key generator or crack exists for the same software/version. Last but not least, when heuristics are set above a certain level, some Security Suites tend to become a little nervous, it seems ...
There are sometimes four or five cracks and key generators for a program in a compressed archive, most of which work just fine -- the fact that one element in an archive is bad does not always mean that the whole thing wouldn't work without endangering the system. Sure, one has to be careful and know what one is doing, but in many of these cases, one could, with all due respect, tend to call the premature panic reactions a (partially) false positive. In other words, «keep the best, delete the rest» -- and get a combination of security programs that permit to do just that.
That said ... hm ... I should probably not assume that everybody is aware of these things. Since most of the time it's «professionals» like Chipz, Max, RT & Co. whom one sees around the insider boards, i.e. the same couple dozen guys running the show, it appears as if everybody knew the tricks of the trade. I should probably not take that for granted.
Consequently, please allow me to express my gratitude for giving me an opportunity to point out possible risks in more detail and, if I may, to refer to a few related facettes of the topic discussed in a post about protection against malware -- one can never be careful enough, especially those who may not know how to deal with those pests.
.
Protection against Malware
With regard to the risks of Trojans, Virii and Spies in general ...
Whenever somebody uses stolen software from unknown sources, make sure to use a good security software and its latest updates. It is not always possible to test everything found on the web, because everybody who uses pirated software knows the aforementioned fundamental rule of precaution and takes care of themselves.
Sometimes one would provide downloaded links for a software without using it oneself, for instance when preferring a different AV, firewall, video converter or CD burner than the one posted, or because the file is simply too big to get it with a slow connection. A second aspect to take into consideration are the laws of large numbers: the more software links or tutorials someone posts, the higher the probability to have a foul apple in the basket. The practical solution: ask yourself «would it ruin my day if I found out that this contained a virus?» and if it does, simply do not download the software, thereby keeping anger and stress levels in check. Heck, you might even decide to search for a clean alternative and post it for your fellow members.
As long as there is no «uploaded by me» or «tested and working» statement beneath a particular bunch of links, the latter should be regarded as a service on a «take it or leave it» basis, as a free piece of information to those who might be interested, not as a manufacturer warranty.
I cannot even count how often I found crap in posts from other members of any forum I frequent, from absolutely everyone, including the VIPs and powers that be -- from everybody, no exception. During the course of time it happens, we are all human and a warning message in the respective thread is appreciated, because an alert saves others the waste of time.
It is not necessary, though, to send Private Messages in reaction to such a triviality, because they don't help others to avoid the trap. A warning is welcome and useful, complaints in PMs, as understandable as they might be, are not. Warn others, provide an alternative if you can, but then move on. After all, it's just a couple of bytes, not a matter of life or death.
Let's hope nobody gets this the wrong way, but people who cannot deal with the risks of theft might be better advised to purchase their software legally, and I honestly mean no offense with this. It is in your own best interest to accept responsibility for your downloads -- for your own safety, please do not rely on others to always check, verify and clean everything beforehand. After all, by the time you are complaining it's already to late ...
Rendering a sincere apology to those who wasted a few minutes on a download that didn't meet their expectations, let us thank those among us who are smart enough to look into the gift horse's mouth ... but scan for yourself next time.
Thank you for your attention, have a great day and take care.
Kind regards,
Qui Peccavit
... le Maître du Désastre
.