實踐的保險櫃安裝。
採取的步在運行節目之前地方
大家知道在運行您從網下載的節目之前,您應該
1. 做您的研究(檢查什麼人在google小組等)說關於軟件
2. 讀EULA (終端用戶使用協定)在幫助下 Javacool的Eulalyzer.
3. 下載從信任值得的來源,檢查站點名譽使用服務喜歡 SiteAdvisor (或 自由選擇)
4. 掃描可執行以不僅您的地方抗病毒,而且其次得到和第三個選擇與各種各樣 網上malware掃描器特殊多臺引擎掃描器喜歡 VirusTotal (或 選擇). 高級用戶應該掃描與sandboxing的類型掃描器像 Anubis 或 個人計算機用工具加工威脅專家 (或 選擇).
但這些方法不極簡單,但是什麼其他防禦那裡保證補救,如果節目結果是惡意或壞的?
使用設施顯示器
怎麼他們運作 -在節目的設施期間做的這些工具顯示器變動。 這通過創造詞條的微型快照達到在文件系統,登記(典型地它不是100%),在安置者跑之前,跟隨由另一奔跑,在安置者跑奪取所有變動之後(一些也許要求重新起動奪取所有變動)。
例子(免費軟件除非另外說明) - Inctrl , 共計卸載2.35 (前個免費軟件版本) 并且 ZSoft Uninstaller .
讚成 -簡單使用和瞭解。 審判程序可以安裝的沒有期限。 能用於要求重新起動的顯示器程序。
負面因素 -不準確作為其他方法。 在區別也許奪取其他節目和不僅安置者前後做的變動。 在設施期間做的仅捕獲變動。 例如節目也許做登記變動,在第n個用途(共享軟件使用的一種典型的戰術)之後和不會由設施顯示器奪取。 Malware節目威力做同樣。
使用Sandboxing以文件或登記虛擬化
怎麼他們運作 -跑安置者或節目sandboxed,并且過程(和通常子進程)做的每文件和登記變動在真正的時間被跟蹤。 變動轉軌對a通常否則virtualized沙盒(一個供選擇的地點),但是工作。 在設施以後,節目可能然後運行sandboxed,這保證*every*變動在真正的時間被監測不同使用設施顯示器。
例子(免費軟件除非另外說明) -Sandboxie , Bufferzone, 真正沙盒 , Altiris軟件虛擬化解答(這一個相當不同地運作).
讚成 -做的每變動sandboxed節目被跟蹤并且可以被扭轉。 Program can be tested over several sessions and can be cleared just by clearing the sandbox. Strong security, most sandboxes prevent potentially dangerous activities like installing drivers.
Cons - Many programs will not install in sandboxes because of restrictions. Programs that require reboots (generally those that install drivers and services) will not work either. Some changes might leak and not be tracked.
Note: Altiris Software Virtualization Solution differs from the usual sandbox in that it does not do security restrictions. It uses different layers which can be mounted or unmounted separately.
Using parition virtualization
How they work - They are kissing cousins of rollback and disk imaging software, except that they record changes made only during a session (protected mode/shadow mode etc) and automatically clear it after a reboot. This can be done very quickly as compared to reimaging the whole disk.
Examples (freeware unless otherwise indicated) - Returnil Virtual System Personal Edition , Windows SteadyState(allows changes to survive reboot) .
Pros - Every change made by the program you are trialling (and everything else in fact) is tracked and is reversed on reboot. While it does not protect you during the session, you are assured that nothing nasty is left behind on reboot.
Cons - Most of these software clear everything on reboot (exception Windows SteadyState that allow you to keep changes for a period of time), so programs that require reboots to install cannot be tested with this.
Multiple Snapshot/rollback virtualization
How they work - A subset of partition virtualization, but allows storing of multiple snapshots, which can be restored very rapidly using incremental backups. Many also offer advanced features of "data anchoring" (where certain files/folders are left untouched) etc.
Examples (freeware unless otherwise indicated) - Mostly commercial or enterprise products. Rollback RX (non-freeware) , FirstDefense-ISR
Pros - Combines the advantages of VMware snapshot facility, with testing on your production machine.
Cons - Despite improvements in incremental backup technology, multiple snapshots are going to require quite a lot of disk space compared to other methods.
Using Virtual machines
How they work -Uses software to completely simulate a new machine.
Examples (freeware unless otherwise indicated) - Virtual PC2007 , VMware server , VirtualBox .
Pros - Complete security, nothing can leak to your real machine. Everything is removed when the virtual machine snaphot is deleted. Allows installation of almost all types of programs (some games that require graphic cards might not work).
Cons - Virtual machines require a seperate OS license. Host machine needs to have sufficient RAM. A few malware will detect vm and act accordingly. Unless you take pains to setup your virtual machine exactly like your real production machine, software that works in the former might not work well in the later due to software conflicts.
Misc
Windows System Restore - Restores mostly system files.
Conventional Backup or disk imaging. - Examples include DriveImage XML ,Acronis TrueImage, Norton Ghost. Whether the backups are in actual archived files or in disk images, provides full restore, but restoration is relatively slow
[ via link ]
Written by Madhukara H. Read more great feeds at is source WEBSITE
no comments.
Read more articles on Vista guides and vista tools.
- [+] Digg: Feature this article
- [+] Del.icio.us: Bookmark this article
- [+] Furl: Bookmark this article
