I could care less....I know as much as that it resrictys access based on permissions(users/admins/etc) and the like. Still, that has nothing to do with certain people's overwhelming support for it in here regardless of the fact that it isn't needed with good security set in place.
They might be secure, but then so is my setup.....they're also certainly also more annoying than my usual security suite. :P

I agree, leave it on. As far as Sucunia is concerned, it has to be the most intrusive, annoying program that i have ever used imho.

Here's an interesting thing. I have a script that deletes most of the files from the Windows directory. It is done in a way that you are required to run it, all clean code, meaning it won't trigger the antivirus alarm. I send it to you, and tell you that it is a game that is awesome, and requires no installation or whatever, just launch it, and you'll be playing in a matter of seconds.

1. You, understanding how security / policies on Windows systems work, have UAC enabled. You start the "game", and a pop up tells you that the "game" needs to have the full administrative rights of your Windows installation for it to run properly. But you understand that this may be a malicious software, because, why the hell on Earth would a game need the full rights to function properly, right? So you remove it, and you keep your system safe.

2. You, are a very cool guy, using some very cool antivirus, not from a piece of shit company like Microsoft (which is, by the way, one of the most trusted when it comes to security and administration), doesn't give a fuck about security, has UAC turned off (because all it does it bothers you so much, right?). You run the "game", and magic happens. The next time you start Windows... it won't start.

Which one would you choose?

As with anything else, uac is up to the user, which is good.

Outbound connects, as mentioned earlier, we all like to know about, but many are authorized by the user when they accept eula's. (Silverlight for example.)

In general security, areas where you didn't agree but are just open, this place can help you see your open ports etc.

https://www.grc.com/x/ne.dll?bh0bkyd2

Doesn't matter as my AV would either block it, or the secondary scanner would....and btw 1 or both of my apps has blocked similar things/attacks before. Also i'm not so dumb to run anything someone give me right off the bat without running it through 2-3 scanners. What kind of fool do you take me for?

UAC seems to mainly only be good for new users who don't know how to configure a security suite and also to be careful in their downloads/etc. And for those who think somehow more security past the optimal point is somehow vastly better(paranoid parrots).

Absolutely nothing would block it. The full thing is done in C# or as a batch, all clean code.

Oh, and I wasn't talking exactly about you, but "you" as a generalized user. Sorry if I offended you, dude. :)

Again, i'm not that dumb. I don't run anything someone gives me. I also look for downloads with multiple virus free comments, limit downloads to certain safe sites, etc.

With my caution and security setup, I have no need for that annoying little M$ conTROLL app.

When you assume Linux machines don't get hacked are you including the internet!?!?!?!?

Steve Ballmer:

Ah, but you're missing the point. I developed this "game" and sent it to you. And no protection software in the world is going to "discover" what this thing does, because, really, it is all done with a safe, managed code, that admins use to admin machines.

So you will have no choice but to run it, as I am a very good friend of you, and you trust me.

-- something like that kind of scenario. :)

EDIT: Anyway, I'm off for tonight... Nighty night, kids, and remember, drink your milk, and keep UAC turned on. :p

I hope you block all scripts\flash\java\and ads as well since that's where most attacks come from. UAC helps with alot of that.

I guess when all your documents have been encrypted without you knowing, your screen being scrapped, documents being uploaded and your keys being logged you'll learn the error of your ways.

There's no such thing as a "safe" site.

And antivirus and firewalls are one very small part of security (and some would argue not much of one at all).

Impossible scenario as I often don't accept files from others.


You know what else blocks java/flash/ads? Adblockers and flash blockers.

And yes there are such things as safER sites....and with caution and diligence & good security tools/realtime apps that's all one needs....unless you're stark raving mad that is.

I got had that way once, precisely because of my av scanner policies/setup.

It (my bbs and scanner) were set to open up each file and scan before posting.

Overnight, some dude uploaded a file into an elite area called nina.gif. It was scanned, nothing found (damage done), posted, and all seemed fined when I woke up.

Looked at new uploads, checked it out, and was a gif of some nice looking topless woman; thought dude must be looking for upload credits to waste his time, as I never had ratios in effect. Did maintenance, rebooted, and poof! non system disk or disk error etc.

Knew I'd been had, partition wiped out!

I sure payed for that little view!

Edit for usage.

Most trojans/viruses/attack attempts aren't as sophisticated. Most are just geenric shit that's been floating around for months which any free scanner can pick up, and diligence can save you from the rest. As I said you'd only need UAC if you were completely clueless about PC security or were paranoid to the point of psychosis.

I agree.

I used to write non-nasty viruses to automate code updates to software which I had written in the field. It was much easier, and safer, for me to update my code via resident software (a tsr) than to have to travel or disclose my password in the backyard of my client.

It was a simple virus, only to spread itself on the host system if they deleted its executable, or to re-activate itself if they disabled it. The payload for them was up to date software, for me, easy remote administration before it was commonplace.

You haven't been keeping up. The latest thing for quite awhile now is for a bot to own a system. Once your system has been comprimised the person who comprimised the system can sell whatever service they like to those who want to use it.

Antivirus scanners only scan what is in their definitions. Malware is easily modified and adjusted so it can't be picked up. Antivirus defs will ALWAYS be behind the curve. If you can't see that then you are being blind on purpose.

It's not paranoia if they are out to get you. Millions of systems are owned. Where do you think all those DoS come from?

I guess if you were using linux you'd always log in as root as well right? Because you are l33t and know your system? 2-3? You should at the very least quadruple that amount.

It takes only one compromise and your system can be owned. You want as many security layers as possible and UAC is one of them.