[ home / bans / all ] [ qa / jp / sum ] [ maho ] [ f / ec ] [ b / poll ] [ tv / bann ] [ toggle-new / tab ]

/maho/ - Magical Circuitboards

Advanced technology is indistinguishable from magic

New Reply

Options
Comment
File
Whitelist Token
Spoiler
Password (For file deletion.)
Markup tags exist for bold, itallics, header, spoiler etc. as listed in " [options] > View Formatting "


[Return] [Bottom] [Catalog]

File:EeetQd0XkAAG1ON.jpg (825.03 KB,2857x4096)

 No.1722

How do you manage computer security in your devices?

I feel that just common sense isn't enough nowadays, because of several reasons:

- Browsers especially (even if you disable JavaScript, which is often not feasible in many sites), but also email clients, torrent clients... can all be exploited somewhat easily.
- Some games require kernel-level anti-cheats, which have complete access to your computer. Even if you trust the developer, these kernel drivers are often buggy and can be leveraged by malware.
- Legitimate programs or Steam games might receive malicious updates if the developer or their supply chain is compromised.
- If you use third-party dependencies for development, you might also be compromised if any of them (or their recursive dependencies) are malicious, not uncommon in ecosystems like npm.
- If you play doujin games or eroge, you often have to download them from random untrusted sources.

I've concluded that it's not really possible to trust a computer if you use it for activities like these.

I'm thinking about getting a second device only for sensitive stuff, like banking, shopping and managing passwords. It seems a bit of a hassle, but I can't think of any other way.

 No.1723

File:9c8751f015b3706bbd03a7bf93….jpg (1.4 MB,1792x1275)

>It seems a bit of a hassle
Is it? Just get a cheap used laptop for sensitive stuffs, it won't take much space. I have like 4 of them.

 No.1724

>>1722
i think you're being overly paranoid
also, dunno what your bank is like but it has been i think a industry norm for like 15 years to require MFA for basically every action you take
anyway, if you really that concerned you could look into getting a hardware token instead of a brand new device, or virtualization/sandboxing

 No.1725

Even if you use trusted and expensive services you can still get super fucked if the someone up the chain pushed out a bad update, such as what happened to microsoft a few months ago with their security provider.
The only way to be completely safe is to physically isolate your hardware. Cant get a virus if it cant connect to you. Doujin and ero games are stuff I put onto my old laptop which is more convenient to sit in bed and play, and if something goes wrong with my dolphin porn I'm not losing much. It's also a good idea to get your "illicit goods" from trusted sources. A lot of this can be avoided with just paying attention to where the link goes.

 No.1726

File:1673314875896105.gif (3.58 MB,1644x1080)

>>1722
99% of the stuff you listed is not realistic and only works in theory. In reality all you have to do is not download random shit on the internet and not fall for phishing scams.

 No.1727

>>1726
This,
OP and anyone who is interested in securing their electronic devices should define their own threat model before implementing solutions.
Anyway, most people only want to be safe from cybercriminals and this advice is probably the most important. If I wanted to add one more specific, I'd recommend to create a separate account for administration tasks (done by default on most Linux distributions but not on Windows).

 No.1729

File:R-1725842433966.gif (823.86 KB,498x280)

have some fun playing with Qubes OS which isolates every application into its own virtual machine

 No.1730

>>1722
Backup your files in case of ransomware.
Don't reuse passwords.

Having a USB containing a small OS that loads into RAM and doesn't touch your HDD could work, like Puppy Linux or Slax.

There are small things you can do that don't necessarily fall under "don't click on weird stuff".

 No.1731

I don't keep any passwords on my device, after I got a virus that pulled all mine from Firefox's password cache.

Don't let your browser remember passwords, it's stored basically in plaintext as far as viruses are concerned.




[Return] [Top] [Catalog] [Post a Reply]
Delete Post [ ]

[ home / bans / all ] [ qa / jp / sum ] [ maho ] [ f / ec ] [ b / poll ] [ tv / bann ] [ toggle-new / tab ]