查看: 4139|回复: 7
收起左侧

[转帖] 王者归来 Norton Internet Security 2008 评测

[复制链接]
sqsszzq
头像被屏蔽
发表于 2007-12-16 08:52:38 | 显示全部楼层 |阅读模式
1、我曾为这个网站的卡巴斯基安全套装7.0评测做过翻译,有网友对这个网站权威提出疑问。我之所以选择它是因为,诺顿的中国官方网站介绍诺顿网络安全特警2007版本得到它的编辑选择奖。同样这次2008版本仍得到了该网站的最高荣誉,编辑选择奖。
    2、生词查自百度词典,新英汉词典与搜索引擎。对于可能有另外意思的单词,我将在括号里写下我个人理解的意思,括号里有问号,括号前标出原意。不当之处,欢迎大家提意见,我尽快改正。有些话,我用了自己的语言,完整翻译太累了。
    3、原网站评测了诺顿的各方面防护能力,时间所限,我只翻译防火墙与杀毒部分,请谅解。
   Symantec continues to polish and enhance its flagship Norton InternetSecurity suite. The 2008 edition adds full-scale password and identitymanagement, and its new BrowserDefender technology offers even strongerdefense against Web-based attacks. Borrowing a page from Norton 360'splaybook, NIS 2008 now offers a built-in, multilayered help system. Forthe multicomputer home, it now includes a network map and optionalremote monitoring of other NIS 2008 installations. Antispam andparental controls remain second-class citizens, present only if youinstall the optional Add-On Pack.
   赛门铁克,继续优化与提升它旗舰级产品,诺顿网络安全特警。这个2008版本增加了完全的密码与身份管理,它的新的阅览器守卫者科技,针对其于网络的攻击提供了更好的保护。借用了诺顿360剧本(?界面)的一页(?页面),NIS2008现在提供了内置的多层帮助系统。对于有多台电脑的家庭,它包括了一个网络地图与可选的对其它的NIS2008设置的监视。反垃圾邮件与父母控制仍是二等市民,只有你安装了可选的Add-On Pack才有效。(BrowserDefender:保护用户免受利用IE中新的或者是未知隐患的攻击和那些因下载而触发的隐患。)资料来自http://alertword.com/history/4282395    Organizationally, the main screen is little different from thatof NIS 2007, though it has traded its cheerful blue background for atougher-looking patterned black. You still get an overview of all thesecurity modules and a great big icon that reflects overall status. Ifit's anything but the green check mark that means fully protected, justclick Fix Now to set everything right.
     组织上,主界面与NIS 2007的区别不大,虽然它已经将令人愉悦的蓝色背景换成了更严肃的黑色样式。你仍能得到所有安全模块的综述与一个反映总体状态的大图案。如果这个表示完全保护的绿色检查标志改变,只需点现在修复去恢复一切。
    Fabulous Firewall   惊人的防火墙
    The suite's firewall puts allports in stealth mode, making them invisible to hackers—that almostgoes without saying with modern firewalls. The NIS 2008 firewallblocked all my Web-based tests; in several cases it reported aport-scan attack and blocked the "attacker" for half an hour. As inprevious versions of NIS, the latest firewall is armor-plated againstattack by malware. I couldn't find any way to disable itprogrammatically (and believe me, I tried). Panda's firewall was alsopretty tough, but it gave way to my last-resort attack using fake mouseclicks—NIS resisted even that attack. And BitDefender Total Security2008? Well, I showed that a malicious program could turn off thatsuite's protection by disabling essential services—it needs to gettough, like the other two!
   这个套装的防火墙隐藏了所有端口,使它们对于黑客不可见-这对于现代防火墙几乎是不言而喻的。NIS2008防火墙阻止了我所有基于网络的测试;在一些情况下,它报告端口扫描攻击并阻止攻击者半个小时。在以前版本的NIS,最新的防火墙对抗恶意软件的攻击是披上了盔甲(?很坚固的)。我不能找到办法从程序上关闭它,(相信我,我试过)。熊猫的防火墙也很坚固,但它屈服于我最后手段,用伪造的鼠标点击-但NIS 抵抗住这个功击。而 BitDefender Total Security2008呢?我展示了一个恶意程序能通过关闭它必要的服务来关闭这个套装的保护-它需要再强大一些,像其它两个。
    Symantecwas an early proponent of the rising trend to put responsibility forsecurity decisions where it belongs—with the security software. LikePanda's firewall, NIS 2008's never asks you whether this or thatprogram should be allowed access to the Internet. If the firewallrecognizes known bad programs, it just removes or disables the threats;there's no question of allowing them Internet access. The firewallgraciously allows known good programs to connect at will. Using itsSONAR (Symantec Online Network for Advanced Response) technology, NIS2008 watches unknown programs for signs of malicious behavior, and aslong as they play nice it lets them access the Net.
   赛门铁克,是负责决定安全软件的决定上升趋势中早期倡导者(?它很早自动为用户作安全决定)。NIS2008从不问你是否这个,那个程序该允许连接网络。如果这个防火墙识别出已知的坏程序,它只是移除或关闭这些威胁;是否允许它们连接网络是毫无疑问的。这个防火墙会盛情的(?毫无疑问的)允许已知的好程序随意连接。应用它的 SONAR (Symantec Online Network forAdvanced Response)科技,NIS2008观察未知程序的是否有恶意行为的迹象,且只要它们表现体面(?正常),它会允许它们连接网络。
    I usually run aset of "leak test" utilities to check whether the firewall can handlemalware that tries to evade normal program control. In the past, NIShasn't detected these because they have no malicious payload—which iscompletely reasonable. This version, however, did block all but two ofa dozen samples, identifying them with generic names such as "TrojanHorse," "Hack Tool," and "Downloader." This probably doesn't make usersany more secure, but it gives us security testers a warm, fuzzy feeling
   我经常运行一套leaktest公用事业(?组件)去检查是否防火墙能处理试图逃避正常程序控制的恶意软件。过去,NIS不去侦测它们因为它们没有恶意炸药(?不太重要)-这是很合理的。这个版本,尽管如此,确实检测出除两个以外的所有样本,将它们认成Trojan Horse,Hack Tool,与Downloader.这也许对用户没多大用处,但它的确给安全测试者一个警告,但有模糊不清的感觉。
     For thisreview I added a new tool to my testing arsenal: Core Impact. Amongmany other features, this penetration tool automatically generatesexploits to probe a system's defenses. Working across the virtualnetwork I unleashed over a dozen client-side exploits on theNIS-protected system. This type of exploit gets into your system whenyou click a link in an e-mail message or visit a hacked (ordeliberately malicious) Web site. In addition to a number of InternetExplorer exploits, I managed to unleash one aimed at Firefox and somethat go straight for Windows itself through various vulnerabilities. Afew failed simply because the test system's browser and operatingsystem were fully updated. NIS's Intrusion Prevention System recognizedand blocked all but one of those that got past that initial hurdle. Theone that wasn't recognized still couldn't actually do anything harmfulbecause it was stopped by Norton's suite. Going forward, I'll bechallenging other security suites and firewalls in the same way
   对于这次测试我为我测试收藏增加了新的工具:核心影响。在许多其它功能中,这个入侵工具自动生成漏洞去入侵系统防御。工作在整个虚拟网络,我对NIS-保护的系统发动十多个客户端漏洞攻击。这类漏洞进入了你的系统,当你点击一份电子邮件的连接或登陆被黑的(或故意如此的)网站。除了许多InternetExplorer漏洞,我设法释放一个旨在firefox与一些旨在Windows自身的漏洞,通过不同的弱点。一些直接失败,因为测试系统的阅览器与操作系统被彻底升级。NIS入侵阻止系统识别并阻止那些摆脱最初障碍的漏洞,除了一个。这个仍没被识别的漏洞实际上不能产生危害,因为它被诺顿的套装所阻止。以后,我会用同种方法测试其它安全套装与防火墙。
太累了,下次再更新,见谅。
    While the 2008 editionhasn't been through independent lab testing yet, Norton AntiVirus 2007got top marks from all the labs. Both ICSA Labs and West Coast Labscertified it for virus detection and cleaning; West Coast Labs alsogave it Checkmark certification for detecting spyware and Trojanhorses. And you have to go back to 1999 to find any occasion when aSymantec product did not receive the VB100% award from Virus Bulletin.In addition, a very recent test by AV-Comparatives rated Symantec'stechnology Advanced+, the highest rating.
    尽管,2008版本还没有经历独立研究室的测试,诺顿反病毒2007在所有研究室得到了顶级评价.ICSA研究室与West
Coast研究室担保它的病毒侦测与清除能力;西海岸研究室在其侦测间谍软件与木马授予了Checkmark证明.而你不得不追溯到1999年,只有那时一个赛门铁克产品没得到Virus Bulletin的VB100% 奖励.另外,AV-Comparatives最近的测试将赛门铁克科技评价为Advanced+, ,最高的评价.
    The combinedantivirus/antispyware scans files on access, on demand, and onschedule. You can set up a full or custom scan at daily, weekly, ormonthly intervals, or configure scans to run at start-up, at log-on, orwhen the system is idle. The suite scans incoming and outgoing e-mailfor malware and also watches outbound e-mail traffic for signs that aworm is sending e-mail using your computer. NIS 2008 scans filesreceived through popular IM programs (Yahoo!, AOL, MSN, and Trillian)as well. It also finds known malicious programs by matching theirsignatures and catches unknown ones using its SONAR behavior-basedtracking. In addition, the suite specifically looks for keylogger androotkit activity
   联合反病毒与反间谍按使用,按需要,按时扫描文件.你能设定在每天,每周,每月空闲时间进行完全或自定的扫描,或更改扫描设定,在启动时,在登录时或当系统空闲时扫描.这个套装扫描入站与出站电子邮件中的恶意软件,同时监视出站电子邮件连接,查找是否有一个蠕虫用你的电脑发送电子邮件的迹象.NIS2008同样扫描通过流行IM程序(Yahoo!, AOL, MSN, and Trillian)接受的文件.它还通过基于特征找到已知的恶意软件,用它SONAR基于行为技术来追踪未知恶意软件.另外,套装特别注意键盘记录者与ROOKIT行为.
   By default, NIS 2008 runs a preinstall scan during the installationprocess, and you'll definitely want to accept that default. When Iinstalled it on my infested test systems, the pre-install scan detectedand at least partially disabled almost three-quarters of the malwaresamples, including adware, spyware, Trojans, rootkits, and rogueantispyware programs. After a full scan almost every single one of thesamples was gone—NIS 2008 scored 9.3 out of a possible 10 points. Inthe same test Spy Sweeper and Spyware Doctor scored 9.0 and 9.1,respectively; BitDefender rated 8.6 points
    默认时,NIS2008在安装中进行安装前扫描,你会自然的接受默认的设定.当我把它安装在我受感染的系统时,安装前扫描侦测并最起码部分关闭大概四分之三恶意软件样本,包括广告,间谍软件,木马,rookit与流氓对抗反间谍软件程序.在彻底扫描后,每一个样本都被移走-NIS2008在可能的10分中得到9.3分.在同样的测试中, Spy Sweeper 与Spyware Doctor分别得到9.0分与9.1分.BitDefender得到8.6分.
    Panda Internet Security 2008recently aced this test, scoring 10 out of 10, but there's aninteresting distinction to be made. In most cases Panda wiped out onlythe essential executable files, leaving behind dozens of data files andRegistry items. NIS, on the other hand, wiped out every single trace ofabout two-thirds of the samples and cleaned up the rest more thoroughlythan most products. My Panda contact noted that without the malwareexecutables, the other traces are harmless. That may be true, butsurely it's better to avoid clogging the Registry and file system withuseless junk. I did find, however, that a full scan on my standardclean test system took nearly an hour with NIS 2008, almost twice aslong as that of NIS 2007. I guess that thorough cleaning takes a bit ofextra time. It's worth the wait, in my opinion.
    Panda InternetSecurity 2008 最近赢得满分,但造成了有趣的区别.在大多数情况下,Panda清除必要的执行文件,留下了大量数据文件与注册表项目.NIS,与此相反,清除大概三分之二样本的痕迹,清理其余的样本比其余大多数产品更彻底.我的Panda联系者指出没有恶意软件执行文件,其余的痕迹是无害的.这也许是对的,但避免用无用的垃圾来阻塞注册表与文件系统不是更好吗.我的确发现,尽管如此,用我的NIS 2008在我的规范的清洁测试系统彻底扫描用了近一个小时,几乎是NIS2007扫描时间的两倍.我猜彻底地清理需要更多时间.等待是值得的,在我看来.
    I always run a separatetest using commercial keyloggers in place of malware. I don't give thistest as much weight, since a typical commercial keylogger has to beinstalled by someone who has physical access to your computer. But NIS2008 deserves credit for wiping out every single one of the samples inthis test for a perfect 10 of 10. (Panda bombed with 2.1 points in thissame test. BitDefender did better, scoring 7.1.)
    我一直进行独立的商业键盘记录者测试代替恶意软件.我并不太看重这个测试,因为有人需要物理上接触你的电脑并将其安装.但NIS 2008该得到荣誉,因为它在测试中清除了每个样本,得到了完美的满分.(Panda惨败,仅在测试中得到了2.1分.BitDefender做得更好,得到了7.1分)
     One of my test systems frequently goes into a blue-screendeath spiral when security software does an incomplete cleanup job. NIS2008 had no trouble with that one. I like the fact that Norton's newsuite cleans up high-risk items the moment it finds them, rather thanasking the user. It asks your permission only when the item isseriously low-risk. A malware sample on another system tries to protectitself from security software by interfering with the WindowsInstaller. NIS 2007 installed despite this chicanery, but NIS 2008 hita wall, which was a bit disappointing. Still, on Symantec's advice Iran a Web-based scan and then booted into Safe Mode to delete the filesidentified by the scan. After that I was able to install the productand complete the cleanup process.
    我的一个测试系统频繁蓝屏死机当安全软件进行了不完整的清理工作.NIS 2008没出现这类问题.我喜欢诺顿的新套装找到高危条目时,立即清除的事实,而不是询问使用者.它只有询问你的允许当条目真的是低威胁.一个恶意软件样本在另外的系统中试图保护自己免除安全软件的清除,通过干涉Windows Installer.NIS 2007安装成功尽管这种诡计,但NIS 2008却失败了,这多少有些令人失望.然而,在赛门铁克建议下,我运行了基于网络的扫描并进入安全模式去删除被扫描侦测出的文件.在此之后,我能够安装这个产品并完成清理过程.
     As usual, I attempted to install all the same threatson a clean system protected by NIS 2008. The moment I opened thefolders containing the samples, though, NIS started eliminating them.Within a minute or two it had wiped out all but a handful of themalware samples and all but one of the commercial keyloggers. I triedagain using samples that I had modified myself. Even though I renamedthem, tweaked some nonexecutable bytes, and changed their file size, itwiped them out just the same. Of the handful of remaining threats, mostgot caught early in the install process. Overall NIS 2008 scored 9 of10 points against the malware samples and blocked every singlecommercial keylogger for another perfect 10. Spy Sweeper rated 8.1 atblocking malware installation, while Spyware Doctor racked up 9.8points. Panda scored 10 against the malware samples, but was much lesseffective at blocking commercial keyloggers—scoring a mere 3.6. AndBitDefender lags the pack slightly, with 8.8 points against malware and4.3 against keyloggers
    与平常一样,我尝试安装所有样本在NIS 2008保护的清洁系统.当我打开包含样本的文件夹,然而,NIS开始消除它们.
在1,2分钟内,它清除了除少量样本恶意软件以外的所有样本与除一个以外的所有商业键盘记录者.我又用我自己修改的样本试了一次.即使,我重命名它们,修改一些不执行字节,并改变它们的文件大小,它同样清理它们.对于少量存留威胁,大多数在安装时很早被捕捉.总体上NIS 2008得到了10分中的9分,对抗恶意软件样本并在阻止每个商业键盘记录者上得到满分.Spy Sweeper在阻止恶意软件安装得到了8.1分,而Spyware Doctor累计得到9.8分.Panda在对抗恶意软件样本得到了10分,但阻止商业键盘记录者上效果差一些-得到仅仅3,6分.而BitDefender轻微落后背包(测试),对抗恶意软件8.8分,4.3分对抗键盘记录者.
hljdqzr
发表于 2007-12-16 10:06:29 | 显示全部楼层
感谢你的分享,不过这小子翻译的太差!
xuhl196
发表于 2007-12-16 10:32:54 | 显示全部楼层

用过了。一如既往的差劲,Norton 归来绝对是个错误

唉! 一声叹息啊,诺顿老矣,尚能饭否
sqsszzq
头像被屏蔽
 楼主| 发表于 2007-12-16 12:13:09 | 显示全部楼层
3楼的为什么这么说?
no.01
发表于 2007-12-16 12:17:46 | 显示全部楼层
期待上市。。。购买正版,前提是价格100块,现在07就要100块了,呵
sqsszzq
头像被屏蔽
 楼主| 发表于 2007-12-16 12:21:06 | 显示全部楼层
呵呵,nav08现在199

[ 本帖最后由 sqsszzq 于 2007-12-16 12:24 编辑 ]
wusuobuzai
发表于 2007-12-16 12:27:41 | 显示全部楼层
已经不是很贵了。
billy1981
发表于 2007-12-16 12:34:33 | 显示全部楼层
感谢译者的翻译,不管怎么说他是第一时间翻译并共享,表现非常棒!感谢!
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-23 13:26 , Processed in 0.130014 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表