Skip to main content

XP: Not quite Dead...

... until that final whack!



Four nifty tools to tide you over till you decide the upgrade to path to take and give Windows® XP that final whack!
When using an anti virus it might complain and prevent installation. If so turn it off, install the software, and then turn it back on when done.

Sandboxie

Sandboxie works on the Sandbox theory: a child playing in a sandbox with a high(ish) wall has difficulty escaping. Sandboxie places the browser in a protective wrapper to prevent any malicious script installing to your hard drive. Closing the browser purges any shenanigans that might have been ongoing while browsing. The free version, which works just fine, has a pop-up to up-sell to the Pro version costing only 15 Euros.


"Almost all user attacks are through web browsers, Java, and PDF documents; 

    Use Sandboxie Pro to help protect your Windows XP computer -- run your Internet applications in separate sandboxes to prevent security attacks (http://www.sandboxie.com/)".


SuRun

Using XP with elevated rights is what makes installing malicious scripts an easy task for attackers. While there is a tool 'Limit User Administration' (LUA) few users configure it because of the hassles it can cause running certain applications with reduced rights - they don't run! SuRun brings to Windows something similar to SUDO (Super User Do) in Linux, which Linux users use to easily switch between 'user' and 'admin' without the bothersome log out -- login regime to run an application that won't play ball with reduced rights. The creator's website (http://kay-bruns.de/wp/software/surun/) is in German but a tutorial in English is available at Dedoimedo (http://www.dedoimedo.com/computers/surun.html).
"SuRun eases using Windows 2000 to Windows Vista with limited user rights. With SuRun you can start applications with elevated rights without needing administrator credentials (http://sourceforge.net/projects/surun/)".

EMET

The last of the three comes courtesy of Microsoft and is the most overlooked freely available tool for XP. An XP certified Windows OS engineers security toolbox makes good use the Enhanced Migration Experience Toolbox (EMET) and there is no reason why ordinary users shouldn't too. EMET compliments Windows firewall and resource-light anti-virus programs e.g. Avira or MSE (http://www.avira.com/en/avira-free-antivirus or http://www.microsoft.com/security/pc-security/microsoft-security-essentials.aspx).

"The Enhanced Mitigation Experience Toolkit (EMET) is a utility that helps prevent vulnerabilities in software from being successfully exploited. EMET achieves this goal by using security mitigation technologies. These technologies function as special protections and obstacles that an exploit author must defeat to exploit software vulnerabilities. These security mitigation technologies do not guarantee that vulnerabilities cannot be exploited. However, they work to make exploitation as difficult as possible to perform ((http://support.microsoft.com/kb/2458544)".

LIBRE OFFICE

Replace Office 2003 with Libre Office.
LibreOffice is a powerful office suite; Its clean interface and its powerful tools let you unleash your creativity and grow your productivity. LibreOffice embeds several applications that make it the most powerful Free & Open Source Office suite on the market (https://www.libreoffice.org/)".

OR

The need to learn how to 'drive' a computer again will be required, which ever OS you choose to upgrade to. With that said, my suggestion is to test drive PCLinuxOS live CD. Downloaded the ISO file,burned to CD/DVD as a bootable file (check with your burner software documentation), then place it in the CD/DVD tray and reboot the computer. Check the manual to force "boot from CD"(often F2, F10, F12).  Visit the PCLinuxOS vibrant and friendly user community at (http://www.pclinuxos.com/), or search for others at Distrowatch (http://distrowatch.com/).


Labels:

Popular posts from this blog

How To Evade Job-Scam Victimization

A Job seekers Guide to Basic Digital Forensic Investigation using actual Email Phoney Job Invitation Dear Terry, We decided to include you in the list of potential candidates after we reviewed your resume on Jobsite. We decided to offer you the position of TS Associate in our company. This is Part-time home based role and most of the work can be done in a comfort of your own home. We invite you to apply online on our website: http://marfigroup.com/careers/tsa/ Please include your telephone numbers along with your application and our HR staff will be back with you for telephone interview. We hope that our offer will make a positive influence on your potential career change and you will become one of our valued employees. Thank you, Charles Panter HR Department First Glance At first glance nothing alarming stands out and 'Jobsite' does have a copy of my CV.   The mandatory unsubscribe link is there and is managed by 'Constant Contact' which, so far, all seems
Read more

SOCIAL MEDIA IN RURAL AREA: A COMMUNITY POLICE CASE STUDY

"MyPolice" proprietary social media software product, which was studied in this investigation, has not yet been deployed commercially and appears to be dormant. My conclusion that community-run rather than enterprise-run is the better method to manage this sort of social media tool might be correct, given than MyPolice seems to be dormant. Social_Media_in_Rural_Area.pdf   Abstract: Computer-Mediated Communication (CMC) has evolved from email and simple bulletin boards to live text feeds and elaborate Social Networking Sites (SNS) some of which have gained cult-like status. The pervasiveness of Social Media (SM) within the CMC landscape has inspired social-entrepreneurs and software developers to create civic-centric communication platforms for civic engagement rather than vanity-centric for personal satisfaction.  As the Internet becomes the default communication method by the will of Government the need to be connected to the world by the Ethernet increases. Bu
Read more

Infosec Blunder by Infosec Specialist (supposedly)

Seven days ago I received 'Infosec Consultant'  job prospect news from **** Recruitment by email, but did not reply;  an Infosec Consultancy wants to contract security consultants. Today I received unsolicited news update direct from ****'s client , which included the email contact details of hundreds of job seekers listed in ****'s data base including the name of ****' staff... oops!  Update: One week on, the same from a Financial Services firm!  Now the question is - who is the more stupid? 1)   Dear Terry, Please accept my apologies on behalf of **** Recruitment for this unfortunate incident. ****  has strict procedures and controls in place for sending out e-shots and electronic mailers to candidates to ensure that incidents of this nature do not occur. The recruitment consultants all receive training on their obligations under the Data Protection Act and are required to use an email maker system that ensures all recipient email addresses are blind
Read more