Author Topic: Host Intrusion Prevention System  (Read 66190 times)

0 Members and 1 Guest are viewing this topic.

Dieselman

  • Guest
Re: Host Intrusion Prevention System
« Reply #90 on: March 31, 2011, 08:15:44 AM »
Exactltly...................I came in here giving advice and answering questions and next thing everyone is all over me. Whatever.

BTW    Brandonn2010................With Windows 7 Firewall set to Advanced Security you will score a 210/340 on the CLT test. With ZA Free you will score a 210/340. So you are gaining nothing by using ZA Free instead of Windows 7 firewall. Free up some resources and uninstall ZA Free.
« Last Edit: March 31, 2011, 08:23:31 AM by Dieselman »

BRANDONN2008

  • Guest
Re: Host Intrusion Prevention System
« Reply #91 on: March 31, 2011, 08:26:27 AM »
Exactltly...................I came in here giving advice and answering questions and next thing everyone is all over me. Whatever.

BTW    Brandonn2010................With Windows 7 Firewall set to Advanced Security you will score a 210/340 on the CLT test. With ZA Free you will score a 210/340. So you are gaining nothing by using ZA Free instead of Windows 7 firewall. Free up some resources and uninstall ZA Free.

You did convince me to drop Online Armor because I was tired of the HIPS, but I still like ZoneAlarm for its outbound protection, and I notice no system impact, though that could be my 8GB of RAM and quad-core CPU.

Dieselman

  • Guest
Re: Host Intrusion Prevention System
« Reply #92 on: March 31, 2011, 08:31:49 AM »
I even tried the new version of OA which was just released today. It runs 5 processes taking up about 60MB of ram. Even if you select "trust all" you will still get a million pop ups. Windows 7 has outbound control also if you configured it to do so. You can also just use Windows Firewall Control. Download the CLT test and you will see that Windows 7 firewall is just as and if not better then ZA Free. Also ZA Free scores extremely poor in the Matousec tests.

http://www.sphinx-soft.com/Vista/order.html

I posted a guide to configure Windows 7 firewall. So many people have no idea how good it is. Everyone is still think with an XP mind.
« Last Edit: March 31, 2011, 08:35:54 AM by Dieselman »

umbrapolaris

  • Guest
Re: Host Intrusion Prevention System
« Reply #93 on: March 31, 2011, 09:43:20 AM »
i was doing that until now



back to the topic:

i will use a funny analogy for what i think Dieselman tried to explain and was not totally understood is :

will you ask your girlfriend to wear a female condom (the BB) when you alreasdy wear a male condom (HIPS)?  of course you can wear both , but with the friction (both BB and HIPS trying to eradicate the malware) the lubricant goes off and then a hole MAY appear in both! letting the big bad virus to penetrate.

i think if both were fully compatible , both will be implemanted in every security suits.





« Last Edit: March 31, 2011, 09:48:03 AM by umbrapolaris »

Offline DraKuL

  • Sr. Member
  • ****
  • Posts: 392
Re: Host Intrusion Prevention System
« Reply #94 on: March 31, 2011, 11:20:34 AM »

i will use a funny analogy for what i think Dieselman tried to explain and was not totally understood is :

will you ask your girlfriend to wear a female condom (the BB) when you alreasdy wear a male condom (HIPS)?  of course you can wear both , but with the friction (both BB and HIPS trying to eradicate the malware) the lubricant goes off and then a hole MAY appear in both! letting the big bad virus to penetrate.

i think if both were fully compatible , both will be implemanted in every security suits.



+1 !! NICE analogy!!!   :D  :P VERY appropriate.

about the last part - I think some protection suites have started  implementing a hybrid, as I saw in a post made by someone under this thread, a HIPS security that gets its popup questions answered by a smart BB :)

I myself prefer not to get that many popups.. and Avast does an amazing job by keeping it simple and user-friendly :)

I myself am not fully sure about HIPS and BB, but I have a couple of questions, does Windows 7 firewall have a HIPS ? If so, lets say that BB and HIPS cant run together which I think is true, What if we use Avast's BB and windows firewall's HIPS together? will both conflict when a situation arises where a threat gets in ? But some posts confirmed that firewalls dont use a HIPS, so in that case why did dieselman keep going on about windows and zone alarm FWs? How did firewalls get into the topic if it doesnt have anything to do with a HIPS ?   ??? I'm thoroughly confused about that point.. does some part of windows security ( the default set you get when you install windows) use a HIPS ? I did a bit of online research about it and my guess is it doesnt - MSE / Win7 FW neither of them use a HIPS.

and regarding the heavy arguments made earlier this is my honest conclusion - Other people started getting annoyed with dieselman because he refused to respect other people's opinions, he was a bit arrogant and thats the reason this started going downhill..

@ dieselman - true enough you helped others ( atleast thats what you thought you did) but be a bit more considerate about others when you post a reply, you come out a bit too strong and a bit too self-righteous which can annoy others.. So here after when you reply be a bit more "friendly".. Go through other posts and see how the other forum members help people. You can now take a cheap shot at me or read and understand what I said. Upto you my friend. :)
« Last Edit: March 31, 2011, 11:25:12 AM by DraKuL »
ASUS ROG Mobo - AMD Ryzen 7 3700X| RAM 32.00GB | 4TB HDD +1TB SSD | ATI Radeon RX 5700 XT 8GB
Windows 10 Pro 64bit |Avast One Individual | MBAM PRO - RealTime | SUPERAntiSpyware PRO |CC Cleaner | Chrome | Firefox |(The Latest Release of all the Software)

umbrapolaris

  • Guest
Re: Host Intrusion Prevention System
« Reply #95 on: March 31, 2011, 11:46:56 AM »
@drakul: windows FW dont have HIPS nor BB, only Comodo FW and few others have HIPS (as dieselman said earlier). i personaly use Comodo FW with avast(without BB) and immunet as cloud.

Offline DraKuL

  • Sr. Member
  • ****
  • Posts: 392
Re: Host Intrusion Prevention System
« Reply #96 on: March 31, 2011, 11:51:56 AM »
@drakul: windows FW dont have HIPS nor BB, only Comodo FW and few others have HIPS (as dieselman said earlier). i personaly use Comodo FW with avast(without BB) and immunet as cloud.

oh ok thanks! I thought HIPS/ BB has nothing to do with a FW ( as in a FW doesnt use HIPS) - after reading some posts made by certain members.. But then they kept going on about Windows7 FW/ ZA FW / comodo D+ FW which got me confused, because IF a FW doesnt have a HIPS why discuss about win7 fw / ZA fw ?? Not only is it off topic ( there are way more off topic posts in under this topic :P) but in misleads / confuses others...
ASUS ROG Mobo - AMD Ryzen 7 3700X| RAM 32.00GB | 4TB HDD +1TB SSD | ATI Radeon RX 5700 XT 8GB
Windows 10 Pro 64bit |Avast One Individual | MBAM PRO - RealTime | SUPERAntiSpyware PRO |CC Cleaner | Chrome | Firefox |(The Latest Release of all the Software)

umbrapolaris

  • Guest
Re: Host Intrusion Prevention System
« Reply #97 on: March 31, 2011, 12:00:44 PM »
oh ok thanks! I thought HIPS/ BB has nothing to do with a FW ( as in a FW doesnt use HIPS) - after reading some posts made by certain members.. But then they kept going on about Windows7 FW/ ZA FW / comodo D+ FW which got me confused, because IF a FW doesnt have a HIPS why discuss about win7 fw / ZA fw ?? Not only is it off topic ( there are way more off topic posts in under this topic :P) but in misleads / confuses others...

a firewall with HIPS or BB is better but not absolutly necessary (like comparing a car with airbags with one without), they talked about non-HIPS/BB FW coz someone said comodo FW without Defense+ (the HIPS of Ccomodo FW) is good ( it is possible, i never and dont want to try) but i think it is useless (like dieselman said) so better to use Windows7 FW/ ZA FW.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76014
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Host Intrusion Prevention System
« Reply #98 on: March 31, 2011, 12:04:32 PM »
Wow, what happend to this thread over night...??? :o
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

umbrapolaris

  • Guest
Re: Host Intrusion Prevention System
« Reply #99 on: March 31, 2011, 12:07:00 PM »
Wow, what happend to this thread over night...??? :o


u made dieselman a bit "upset" so others "attacked" him  for the way he reply to u ^^


by the way, this article make me thinking using both avast BB and comodo Defense + at same time...

http://antivirus.about.com/od/antivirussoftwarereviews/a/hips_behavior.htm
« Last Edit: March 31, 2011, 12:17:42 PM by umbrapolaris »

Offline DraKuL

  • Sr. Member
  • ****
  • Posts: 392
Re: Host Intrusion Prevention System
« Reply #100 on: March 31, 2011, 12:25:31 PM »
OutPost,Comodo and Online Armor all have HIPS.

meaning that for you, Comodo, Outpost and OA firewalls have HIPS onboard, this must be cool 8)

to make things clear and what seems to confuse many users here, you included: HIPS when present are part of suites integrating multiple components, separate components, firewalls don't have HIPS jesus :D

@umbrapolaris check this post.. he clearly states that FWs dont have HIPS, and when i searched online most of the results confirmed his post.. and now you also say that some FWs have HIPS..

I use AIS 6 as mentioned in my signature + have MBAM pro on real time, had SAS pro on real time as well but disabled it as it was recommended by most that running 3 real time will cause problems.
ASUS ROG Mobo - AMD Ryzen 7 3700X| RAM 32.00GB | 4TB HDD +1TB SSD | ATI Radeon RX 5700 XT 8GB
Windows 10 Pro 64bit |Avast One Individual | MBAM PRO - RealTime | SUPERAntiSpyware PRO |CC Cleaner | Chrome | Firefox |(The Latest Release of all the Software)

umbrapolaris

  • Guest
Re: Host Intrusion Prevention System
« Reply #101 on: March 31, 2011, 05:49:34 PM »
Drakul, it is a way of speaking, coz BB or HIPS are "generally" associated to FW; like u say "the scope of a sniper rifle" (of course the scope is not fusionned with the rifle and sure, u can use the rifle without the scope, but less effectively.)

Comodo Firewall is renown because his HIPS component (called DEFENSE + ) is a very very effective aspect of it. i used it since long time, believe me ^^ when u install Comodo Firewall, D+ is automatically installed, u cant uncheck it during the installation (like the BB of avast),  then activated, but u can disable it later. it is why we used to say Comodo FW has a HIPS integrated (coz it is installed automatically).

if u take it word by word, Comodo is a FW with a HIPS component.(like the airbag of a car is a component of its securiry alongside the seatbelt)

comodo released first the firewall & D+ then added the antivirus to become a suit. it is why the AV of comodo is not among the top one actually if used without D+ (still young but improving at every release).

i use MBAM ans SAS too but i dont want their realtime aspect, it make them a bit heavy for my taste. i prefer IMMUNET as a "companion AV" using a cloud system. Immunet is designed to run alongside with most other AV.
« Last Edit: March 31, 2011, 06:01:08 PM by umbrapolaris »

Offline danny96

  • Malware Fighter
  • Advanced Poster
  • **
  • Posts: 668
  • No-malware!
Re: Host Intrusion Prevention System
« Reply #102 on: March 31, 2011, 06:35:59 PM »
HIPS is crap. When you want HIPS then download Comodo firewall, DefenseWall HIPS or something else...
Real-time protection and Firewall: COMODO Internet Security 12.0.0.6810 -- Additional Protection: Web Of Trust, Ublock, NoScript, Malwarebytes Premium, Avast! Online Security, Hitman Pro -- OS: Windows 10

Dieselman

  • Guest
Re: Host Intrusion Prevention System
« Reply #103 on: March 31, 2011, 06:49:03 PM »
HIPS is no junk. A HIPS comment is a great means of protection. But you need to have the knowledge of understanding the pop ups.

umbrapolaris

  • Guest
Re: Host Intrusion Prevention System
« Reply #104 on: March 31, 2011, 06:54:09 PM »
When you want HIPS then download Comodo firewall, DefenseWall HIPS or something else...

it is what i said or maybe i dont understand your sentence...

agreed with Dieselman