Thursday, April 20, 2006

F-Secure Blacklight :: Yes!

I would like to publish here my responce to a post I found about Blacklight in another blog. I think I am a bit of an F-secure fan without even ever having used the actual antivirus or suite. I want to try it out though. I had kaspersky for a year, now I have the antivir premium version and the next one I might try is f-secure, just to gather experiences. One year testing each program is fine :)). That post refered to the suite which is not something I would never consider getting since I love Kerio Firewall. But the antivirus would be interesting.

My first reply to this post is here:

Blacklight cannot be compared to a firewall! It is a rootkit detector! It detects rootkits and ONLY rootkits. It will not detect viruses, troyans, spyware or any other malware.

Security should be based on prevention and prevention can only work if people stop surfing in suspicious websites. Prevention will work only if people stop clicking on anything that is animated and colorful on their screen. It is natural that people will get infected if they go after porno sites, cheats, casino stuff and download programs which they have not doubled checked whether they are trustworthy. People get infected only because they are not security aware and not because there is a conspiracy behind this. They just dont care.

It is not true that there are no good firewalls. Kerio Firewall is an excellent and extremely powerful firewall. It can be unistalled perfectly ok without any problems.

You simply cannot handle your operating system in a correct way. These problems do not arise unless you have really messed up your system. And who knows what else you have done with it.

Blacklight is a great program, the best rootkit revealer out there.

Second reply:

Blacklight is big because it was one of the first and few programs to detect rootkits. Rootkits are a not so common threat but a real one, which might develop into the future nightmare of IT security. I have seen rootkits in action. Rootkits can hide malware from the operating system completely and thus from antivirus software. They can install more malware which will remain invisible and take control of a system. Rootkits are dangerous and thats for sure.

I am not talking about you personally since I do not know you. But people in general get infected due to reckless surfing, due to an internet behaviour, which is not within the limits of reason because these people either do not have the necessary education on security or do not wish to accept it.

It has been 2 years since I last got a piece of malware (which did not even activate itself) and that was because I deliberately surfed in suspicious site. Apart from that nothing comes through the fortress of my pc. Why? Due to my antivirus? No. I even consider antivirus and firewall unnecessary if the pc is patched, windows and browser settings correctly set and one knows that the sites one visits are trustworthy.

I am not sure why they did not respond to your email. I also despise bad support. However, they always reply my emails when I sent feedback and problems related to blacklight and viruses.

You do not need to be a novice computer user to mess up your pc. It can happen to anyone, a small incompatibility between two running programs, errors from wrongly installed drivers, remains of registry keys, running processes or temp files etc from long erased programs can all lead to a great destruction. Sometimes the reason cannot even be identified. Windows is just windows.

No comments: