DEP and group policies on windows are exhaustively underrated. DEP on windows is actually better than ProPolice and the the stuff in Fedora 10 and the latest GCC. Ask anyone who knows what a canary value is.

I run everything under DEP and configured signed driver loading, services, and group policies. I don’t run a firewall, and use free avira with it’s I/O monitoring/guard.

Most people just assume that because source code is available, the code is correct and efficient.

Posted at 5:45 pm on Dec 20th, 2008 by TJHooker

“Hide data inside files with steganography.”

i’ve made a habit of not criticizing the posts on this site. although it’s incredibly difficult right now I’m going to stick with that. goodnight.

Posted at 5:47 pm on Dec 20th, 2008 by amk

you can put it in the safest safe of the world and it gets stolen. so first rule: encrypted backup. A real mans backup, to an external storage device, off location, but not connected to the internet, external Drive, DVD-RAM, DAT.

Posted at 4:07 am on Dec 21st, 2008 by ragnar

A “real mans backup” is nice and all, but the data is still being used on an active system with many attack vectors.

Most software uses the registry or an ASCII file to store data, and most times vendors don’t encrypt the data; this is the case with Thunderbird and Pigin for example.

In comparison a physically disconnected storage with an AES based protection would be nice for backups, but real time protection is way more important.

Password Safe, Group policies, DEP, and Signed driver loading are about as good as real time protection gets on windows. With this setup data is stored correctly for the most part(considering no auto-logins,) vulnerable processes are very unlikely to run shellcode with stack based overflows, and rootkits are restricted to userland. Also group policies restrict privileges to malware.

Posted at 12:39 pm on Dec 21st, 2008 by TJHooker

i think http://www.thenoz.wordpress.com had some killer ideas

Posted at 4:20 pm on Dec 21st, 2008 by thenoz