Originally Posted by Speedbird
How do u prevent a uffer overflow?
as far as buffer overflows from network attacks goes, you need to have something that is running on your computer ( software firewall if you please) that includes stateful packet inspection...
buffer overflows are typically caused by a bug in programming code of an application or OS...which means you need to make sure you keep your apps and OS up to date with patches and security updates.
We use a product from Cisco called CSA (cisco security agent) on our servers and IT workstations at work, and pretty soon my laptop will have it running (as soon as I get done with the 2nd infrastructure datacenter setup...and get time to setup a profile for my lappies that the IT team use, ugh my life is too busy).
This product is cool because with it, you don't even really have to have antivirus software running because most viruses will try to either modify system files or place themselves in a boot record or something similar and the CSA is smart enough to know typical "behaviors" that are just simply not acceptable... notice, I didn't say "signatures"... this is not a signature based tool, it's behavior based...big difference. This doesn't mean we don't have antivirus running though, because even if an infected file was on your file system, it would still be infected, just inoperable because the CSA would block any attempts that it made to do anything that was considered "bad behavior"... but if the CSA service or agent was stopped and the infected file was accessed, then the virus would be able to do what it was intending, that is why we still have antivirus, to get rid of the crap if it's found.
There are other apps out there that are similar that will watch your system and all... zone alarm is minimalistic but worked pretty good last time I tried it.