Off an anti virus blog site so not my words but I agree with the fact that every anti product out their is not perfect the user is definatley a strong part of the equation.Just some pearls of wisdom ! I myself use avast home ā¦
if you havenāt figured this out yet (and apparently most folks havenāt) there is no such thing as a perfect anti-virus productā¦ they all fail to stop a virus at one time or another either because the virus is too new, or it spread in ways that the anti-virus couldnāt do anything about (network share enumeration, exploits, etc), or a host of other reasonsā¦
for years now iāve seen people ādiscoverā the lack of perfection in their anti-virus and the overwhelming response to this is to jump ship and try a different productā¦ the assumption is that because their anti-virus didnāt protect them there must be something wrong with it and they should try and find a better oneā¦
the reality is that no matter what product you use, or even how many you use, your anti-virus product will fail at some pointā¦ the fact that it failed to prevent an incident (or 2 or 4 or however many it failed to prevent) does not necessarily mean thereās anything wrong with the product - it could be that thereās something wrong with the userā¦
the security of a system is only as strong as itās weakest link and most of the time that link is the computer operator - either s/he takes unnecessary risks, or s/he doesnāt keep the anti-virus up to date, or s/he doesnāt take any other safe-hex measures, etc . . . thereās only so much these products can do to protect someone from themselvesā¦
iāll be blunt - the knee-jerk reaction to blame the anti-virus for failing to prevent a virus incident needs to changeā¦ users need to start asking themselves if there was something they could have done to prevent the incident - some security precaution they could have taken, some policy they could have put in placeā¦ the anti-virus should not be the sole defence against malware, it should be one of many and it should be the one that acts when all other measures fail to prevent the incidentā¦
and what other measures are those?
- the use of a firewall
- the closing of network shares and unnecessary ports
- keeping up to date with security patches and the migration away from the most often targeted applications (to minimize the impact of patch maintenance failure)
- minimizing the amount of outside active content (applications, word documents, excel spreadsheets, etc) that are introduced into the system
- turning off unnecessary active content support in your browser
- not accepting attachments from strangers
- not accepting attachments from legitimate contacts until after verifying that they intended to send it and what it is
- the use of strong passwords
- the scanning of all incoming material, preferably after a suitable ācool downā period so that itās novelty doesnāt play a part in avoiding detection of any malware that may be present
even after all that, you can still expect a virus/worm/malware incident once in a whileā¦ no security is perfect, thatās just something we have learn to accept and plan for (i.e. make sure you have a plan for disaster recovery)ā¦