i'm running windows 7 on a netbook with 1gb ram. i don't want to use antimalware which would slow it down so i am running firefox in sandboxie. i only visit around 5 sites on a daily basis so i shouldn't get infected anyway but better safe than sorry. so when using windows what do you use?

I have AVG free on my Vista partion, and, other than doing system updates and coming by these forums while waiting for some video to render, I don't normally connect outside my home network using Windows.

This is what works for me:
The 6 Best Ways to Secure Windows (http://www.psychocats.net/ubuntucat/windowssecurity/)

The best Windows security practice is abstention.

no script is too annoying for me. i buy all my music on amazon. limited user not a bad idea. thanks for advice

I used to have problems with virus, malware, etc...But, I use AVG free and it has been good to my XP portion of my dual boot.
Robert

Ubuntu

lol

I still have a few things like AVG antivirus, spybot search-and-destroy, malwarebytes anti-malware.

AVG is always on, I run the spyware/malware scanners once every 2 weeks or so, I disabled the always-on protection shield kind of thing so it doesn't suck up ram 24/7.

Lately plugin exploits have been a big issue, even on normally trustworthy sites. People sometimes manage to infect all the websites on a shared host at once, or they get an infect ad into their ad provider's rotation, which then infects any user who visits the site having outdated plugins.

I try to keep Adobe Reader, Flash, and Java up to date, if they're installed, and disable browser plugins I don't use (generally anything but Flash).

http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/

Strictly enforce and practice using a standard user and keep administrative tasks to a minimum. Disable scripts in your browser except for trusted sources. Ensure you do not have conflicting firewall software running and etc.

I just run an antivirus and windows firewall/windows defender.

Haven't had any problems with malware or viruses.

Of course, I only go to a few sites and rarely "surf teh interwebz."

Ubuntu

lol

Right On MadnessJack! It works for me too God bless the Karmic Koala its mean and lean fast and immune!But for windows which I hardly ever use any more I use pandacloud malwarebytes antimalware outpostfirewall free edition and run my browser in sandboxie. I know it sounds like overkill but overkill is needed for windows!

the only way i was able to get wireless working on my netbook was ndiswrapper and had next to no signal strength right next to acess point.

I used AVG on an old machine with 512MB. But then AVG became so bloaty that it would drag that machine to a screeching halt.

Find Ethernet cable (note these are usually blue, but can be black, gray, yellow or red.
Unplug Ethernet cable from computer
Find wireless toggle switch
Turn wireless off
Happy Windows OS



Being serious...



Windows Defender is actually better than Symantec or McAfee right now. Eset NOD32 is good, but I actually have found Windows Defender to catch more of the 'malware' that is invading profiles currently.
Run as a non-administrative account (do not just use UAC)
Use IE8 and turn-on the security features

Use a good antivirus (Avast Works For Me™), use Firefox with NoScript and don't browse shady sites. That's about it.

Don't use IE and use a decent hardware firewall (Smoothwall, pfSense, IPCop, etc). That's what I do, no problems for years.

Turn on Windows Firewall, run a decent AV, surf smart, and pay attention to what the OS tells you. Simple.

Despite what that blog post (linked to on the first page)said, an AV is a must. I could get by without one, you could probably get by without one, but the average windows user needs one. No question.

I won't even run without one these days. I didn't for years, but malware changes quickly these days and, as smart as were are, we are ALL prone to click on something we probably shouldn't from time to time. Besides, there are few out there now that have near 0 affect on system resources. one or two are free. But I do agree that most of the AV products are bloated pieces of crap (I actually include AVG in that category).

All in all, staying safe on a windows pc is pretty simple.

EDIT: I meant to say...In all honesty, Sandboxie is overkill. Having tested it (and similar products) in the past, it's more for the paranoid.

avg sucks, go with malwarbytes & and superAntiSPyware, i use these to clean up client computers often, worse case scenario' create new account for functionality purposes :)

Get a router and don't go to porn site..

The best practice is having 2 computers. One for daily use without storing any important data in it and not to use it for transactions involving sensitive informations. Even though it got infected, you lose nothing.. Just reformat HDD and reinstall the OS.
Another computer stays offline all the time except for the transaction involving sensitive data/info.

Use AVG or Avast antivirus. Neither of them use much of your resources. Avast uses a little more, and from what I've seen does more to protect you.

Also, replace Adobe Reader with FoxIt reader. 80% of exploits last year were from pdf files (source (http://www.zdnet.com/blog/security/report-malicious-pdf-files-comprised-80-percent-of-all-exploits-for-2009/5473)), and FoxIt is far more secure than Reader.

I would also get something like File Hippo, or another software updater (good list with links here (http://lifehacker.com/5384140/five-best-software-update-tools)) to keep your software up to date.

Use NoScript and AdBlock EVERYWHERE. Only enable javascript if you have to, because compromised websites are becoming more common, as well as ad-based javascript attacks. You might also look at Chrome, which was the only untouched browser in the latest pwn2own contest.

And finally, have a sepearate Ubuntu partition where you can use clamav to scan your computer ever week or month. You could also get the AVG rescue CD (usb image available for netbooks)

someone mentioned norton, that's probably the most useless scanner ever.

Install Microsoft Security Essentials, make a limited account and use UAC for admin tasks, don't pirate software or visit sketchy websites.

That should do just fine.

Install Microsoft Security Essentials, make a limited account and use UAC for admin tasks, don't pirate software or visit sketchy websites.

That should do just fine.

I hate your sig...:P

I hate your sig...:P

It's probably the best thing that can be typed into a terminal.

It's probably the best thing that can be typed into a terminal.

It sure is. I have it in my ~/.bashrc

I can only talk about my own experience using Windows since 1995, no virus ever. I have just followed Microsoft's advice on Security.

http://www.microsoft.com/protect/

Currently I have automatic updates enabled and Security Essentials.

Microsoft Security Essentials is an excellent scanner, avast is a good second option. I'd personally skip AVG, it started dropping the ball on definitions getting bloated, years ago.

Keep your updates current, avoid warez and porn sites, and don't blindly install things. Most 'sensible' users don't even need AV software, but it's recommended.

1. Use non-administrative account for every-day use
2. Use Anti-Virus - i use Microsoft Security Essential, its easy, quick and light AV- it's also free (of charge). Any AV must be fully updated (i.e. viruses databese)
3. Use Firewall
4. on 64 bit systems (on most 32 too)- turn on Data Execution Prevention (DEP)
5. turn on auto-updater - but only (mostly) for critical, security updates

Well, the most important thing is using the user account properly.
The most difficult the password is, the best. My current password actually consists of uppercase letters, lowercase letters, numbers and symbols. And I'm not forgetting it ;)

Make full use of the "limited user" account. If you're using XP, consider upgrading to Vis.. Ehm, consider upgrading to Windows 7.
If you're already using 7, consider having two separate accounts: an administrator one that you'll use *only* for administrative tasks that can't be done anyway else, and a limited one that you'll use on a regular basis.

Always enable UAC. Some people might say UAC is a loss of time but believe me, it's not. I also personally recommend to use an OTS-style approval (the "password" request) even for the administrative account instead of the default AAM (the box that says "are you sure?"), even if it might sound a little paranoid to the most of you.

Then, the usual things that are valid from years: a good AV software, typing the sites' addresses directly or using bookmarks created by manually typing said addresses, keeping the PC updated (especially for critical/security updates), avoiding browsing to sites that you don't know well and most of all running or installing ONLY software that you trust.

There's nothing really new in security, the same old rules apply to everyone :)

Use a good antivirus (Avast Works For Me™), use Firefox with NoScript and don't browse shady sites. That's about it.

+ 1 Stay away from WarezSeeker,

I also personally recommend to use an OTS-style approval (the "password" request) even for the administrative account instead of the default AAM (the box that says "are you sure?"), even if it might sound a little paranoid to the most of you.
I believe mandating passwords for elevations on administrative accounts does not provide any additional security, except for a little bit of physical security from when you're logged on and away from your computer.

You can however, increase your security by switching to a standard user account, mandating Ctrl-Alt-Del for elevations, or even denying all elevations from standard user accounts. Unfortunately, the last one is the only one that is an actual security boundary.

I suppose it depends on how paranoid you are.

I believe mandating passwords for elevations on administrative accounts does not provide any additional security, except for a little bit of physical security from when you're logged on and away from your computer.
Indeed the only benefit is that you can't click "allow" by accident without entering a password.
That's the only benefit I can think of, as an administrator is supposed to know what he's actually doing.
I told you it could sound paranoid but I learnt to be paranoid because of the work I'm currently doing, so I borrowed the habit. :)
For the "away from the computer" part, it's not a problem as I use to lock the screen anytime I get up from my chair.

I don't mandate Ctrl+Alt+Del for the simple user to insert the password and I don't deny elevation to it by default because the simple user is still me.
I would mandate Ctrl+Alt+Del if the simple user were a relative of mine or a colleague :P

i'm running windows 7 on a netbook with 1gb ram. i don't want to use antimalware which would slow it down so i am running firefox in sandboxie. i only visit around 5 sites on a daily basis so i shouldn't get infected anyway but better safe than sorry. so when using windows what do you use?

Stay offline! its the best way to stop Windows from getting infected.

The best way to protect any OS is just shutdown the machine put it in a black metal box and throw it on the bottom of the ocean... No virus, malware or spyware will infect it there... :P

Avast + Superantispyware + Spybot + you = good to go

http://forums.clubrsx.com/showthread.php?t=617779

the best windows security practice is abstention.

+1

I am new to ubuntu..

I am having a netbook with 1 gb ram with windows 7 starter wdition. can i have ubuntu installed in it, without losing windows 7. i am not able to part my drive..somebody please help me...

you would have create a bootable usb drive. then when you go to install ubuntu you would have to chose option to manually partition drive. make sure you create a / partition and a home one if you like. then install ubuntu like normal. grub should automatically detect windows and add it to boot list

then when you go to install ubuntu you would have to chose option to manually partition drive.

You can do that, or just choose the option to install ubuntu side by side to windows. It will automatically partition. Much easier for a noob. ;)

yes but you at least have to manually shrink the windows partition first and install in free space right?

Here (http://forums.windowsforum.org/index.php?showtopic=33716) is a very detailed tutorial to make your Windows (almost?) as secure as Linux