Log in
Register
Menu
Log in
Register
Home
What's new
Latest activity
Authors
Forums
New posts
Search forums
What's new
New posts
Latest activity
Members
Current visitors
New posts
Search forums
Menu
Log in
Register
Install the app
Install
Forums
Miscellaneous Sections
Tech Head - The Technology Section
Computer Discussion
Five basic security tips
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Stargazer" data-source="post: 21420"><p>Some good basic pointers here worthy of more elaboration...</p><p></p><p><u><strong>Install and use a firewall</strong></u></p><p></p><p>Some very good free ones out there - and some good not-free ones also. <a href="http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp" target="_blank">Zonealarm</a> is one of the most widely used and is (relatively) easy for newcomers (free version downloadable <a href="http://download.zonelabs.com/bin/free/1001_cnet_zdnet/zaSetup_37_159.exe" target="_blank">here</a>). <a href="http://www.agnitum.com/products/outpost/" target="_blank">Outpost</a> is the one I recommend - it offers far more control (allowing you to set rules for individual applications if you wish) and includes ad-filtering, active content control (cookies, ActiveX, javascript can be disabled on a site-by-site basis) and other features. Version 2 has recently been released and is available as a 30-day trial <a href="http://www.agnitum.com/download/outpostpro.html" target="_blank">here</a> - version 1 is still available as a free download <a href="http://www.agnitum.com/download/outpostfree.html" target="_blank">here</a>. For support, there is a special user-run site - <a href="http://www.outpostfirewall.com/forum/" target="_blank">www.outpostfirewall.com</a>. <a href="http://www.kerio.com" target="_blank">Kerio</a> and <a href="http://soho.sygate.com/default.htm" target="_blank">Sygate</a> are other firewalls worth considering.</p><p></p><p><u><strong>Use anti-virus software and update virus definitions regularly</strong></u></p><p></p><p>For a free anti-virus package, consider <a href="http://www.grisoft.com/html/us_downl.htm" target="_blank">Grisoft AVG</a>. Bear in mind that Grisoft will not have the same resources as the likes of Symantec or McAfee for countering the latest viruses (and have done poorly in past <a href="http://www.virusbtn.com/vb100/archives/products.xml?avg.xml" target="_blank">Virus Bulletin reviews</a>) but using this is far better than nothing at all. However, given the problems a virus infection can cause, this is an area where money really should be spent.</p><p></p><p>Update virus definitions at least weekly. If you run file-sharing software or use instant-messenger/internet chat software try to update more often since new viruses can spread faster through these applications.</p><p></p><p>Anti-virus software specifically searches for viruses (code that tries to copy itself to other files) and worms (code that installs on your computer, but does not attach itself to files) - more details on this distinction <a href="http://www.rbs2.com/cvirus.htm" target="_blank">here</a>. However there are other dangers not covered such as trojans (programs that appear useful or harmless but actually carry out other actions like recording your keystrokes to find passwords or allowing an outsider control over your computer), adware (software that carries advertising - often in an intrusive fashion like creating pop-up windows when you visit a web site) and other malware. To deal with these, a specific anti-Trojan scanner is needed. Popular (and free) ones include <a href="http://www.lavasoftusa.com/support/download/" target="_blank">Adaware</a> and <a href="http://security.kolla.de/" target="_blank">Spybot Search and Destroy</a>. <a href="http://www.staff.uiuc.edu/~ehowes" target="_blank">Eric Howes</a> has done an <a href="http://www.staff.uiuc.edu/~ehowes/crap-count.htm" target="_blank">analysis</a> of the increasingly widespread use of this software. Some truly obnoxious examples can be found <a href="http://www.usatoday.com/tech/news/2003-05-16-popup-suit_x.htm" target="_blank">here</a> and <a href="http://www.securityfocus.com/news/4217" target="_blank">here</a>. A case where someone almost received a prison sentence due to a trojan can be found <a href="http://www.theinquirer.net/?article=9023" target="_blank">here</a>.</p><p></p><p><u><strong>Update your computer(s) with the latest vendor security patches</strong></u></p><p></p><p>Consider <em>not</em> using Microsoft products. Yes, really. The list of security vulnerabilities in Internet Explorer (IE) is seemingly <a href="http://www.guninski.com/browsers.html" target="_blank">never</a>-<a href="http://www.pivx.com/larholm/unpatched/" target="_blank">ending</a> - and with its default configuration, viewing sites in IE is having your house front door and windows wide open. Outlook Express (OE) has been the most effective propagation method for viruses ever (most so-called "email viruses" are actually Outlook scripting viruses) and MSN Messenger also has had <a href="http://www.tom.me.uk/msn/" target="_blank">some major security vulnerabilities</a>. Other vendors are not blame-free in this regard, but MS seems to have the worst record by far. Even though known loopholes are (eventually) patched, the large number found so far is an indication of insecure design and a guarantee of more problems in future. And the less said about <a href="http://www.theinquirer.net/?article=9392" target="_blank">Microsoft Passport</a> the better.</p><p></p><p>Alternatives for IE include Mozilla, Firebird and Opera. For OE, consider Eudora, Thunderbird and the Bat. For MSN Messenger, look at Trillian. More suggestions are given <a href="http://www.theinquirer.net/?article=9316" target="_blank">here</a>.</p><p></p><p>Finally, while applying patches is a good idea, having them applied automatically is not. A patch should only be installed if you need it - having unnecessary ones will increase the chance of <a href="http://www.theinquirer.net/?article=9707" target="_blank">problems</a>. To this end, consider disabling Automatic Windows Update and install needed patches manually.</p><p></p><p><u><strong>Practice basic e-mail and downloading "street smarts."</strong></u></p><p></p><p>Most anti-viruses scanners can be configured to check email attachments - check that yours is. Download managers can usually be configured to run a virus-scan automatically at the end of a download - another worthwhile feature to use.</p><p></p><p>Another issue with email is that of spam (unsolicited commercial email) which can range from mildy irritating (a couple of "special offers" per day) to the downright outrageous (a deluge of hundreds of emails touting viagra, mature content sites with pictures and explicit descriptions and get-rich-quick scams). Many such emails include HTML with hyperlinks so that spammers know when you open their mail - this of course guarantees you will get more. Configure you email software not to display HTML or download images - if this cannot be done, configure your firewall to bar access to port 80 for your email client. If you use Outlook Express, disable the preview pane to avoid automatically downloading such items.</p><p></p><p>Prevention is better than cure with spam - make use of disposable email addresses from sites like <a href="http://www.spamgourmet.com" target="_blank">SpamGourmet</a> or <a href="http://www.sneakemail.com" target="_blank">SneakEmail</a> to supply a unique email to every website and newsgroup where you have to register. This gives you the ability to identify where a spammer got an email address from and allows you to shut the address down with minimum collateral damage. If you are already receiving spam on your "main" email address, consider using software like <a href="http://www.mailwasher.net/" target="_blank">Mailwasher</a> to delete or bounce suspicious emails before you download them from your ISP.</p><p></p><p><u><strong>Advanced Security Tips</strong></u></p><p></p><p>You have your firewall setup, your anti-virus software is zipping through all your emails, spammers are tearing their hair out over not being able to harass you - is that everything? Well there are still some issues to consider...</p><p></p><p>There have been a number of programs produced to bypass personal firewalls by piggybacking onto a trusted application (examples include <a href="http://tooleaky.zensoft.com/" target="_blank">TooLeaky</a>, <a href="http://keir.net/firehole.html" target="_blank">FireHole</a> and <a href="http://tooleaky.zensoft.com/" target="_blank">Yalta</a>). While the latest firewalls (like Outpost v2) will block them, an "application firewall" (which intercepts calls from one application to another) is really the solution needed. A good (and free) one is <a href="http://kormushkin.narod.ru/help/ssme.html" target="_blank">System Safety Monitor</a> - the download will take a while (slow site) but it should be a worthwhile addition to most people's security arsenal (Win9x/ME users may find compatibility problems however).</p><p></p><p>If you have a broadband (cable or xDSL) connection, it is likely that your computer is connected to the Internet for longer periods than a dial-up user's would be. This makes your system a more attractive target for crackers. Consider getting a router that offers Network Address Translation (NAT) - as well as hiding your IP address, these allow you to share your connection with other PCs. Having a built-in firewall is also useful, since it will keep working even if the personal one on your PC goes down during a system crash.</p><p></p><p>Finally, spend some time at security-related sites like <a href="http://www.pcflank.com" target="_blank">PCFlank</a> or <a href="http://www.securityfocus.com" target="_blank">SecurityFocus</a> or forums like <a href="http://www.wilderssecurity.com/index.php" target="_blank">Wilders</a>. And of course, this forum, where rolfw will be happy to deal with all your questions! <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite8" alt=":D" title="Big Grin :D" loading="lazy" data-shortname=":D" /></p></blockquote><p></p>
[QUOTE="Stargazer, post: 21420"] Some good basic pointers here worthy of more elaboration... [u][b]Install and use a firewall[/b][/u] Some very good free ones out there - and some good not-free ones also. [url=http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp]Zonealarm[/url] is one of the most widely used and is (relatively) easy for newcomers (free version downloadable [url=http://download.zonelabs.com/bin/free/1001_cnet_zdnet/zaSetup_37_159.exe]here[/url]). [url=http://www.agnitum.com/products/outpost/]Outpost[/url] is the one I recommend - it offers far more control (allowing you to set rules for individual applications if you wish) and includes ad-filtering, active content control (cookies, ActiveX, javascript can be disabled on a site-by-site basis) and other features. Version 2 has recently been released and is available as a 30-day trial [url=http://www.agnitum.com/download/outpostpro.html]here[/url] - version 1 is still available as a free download [url=http://www.agnitum.com/download/outpostfree.html]here[/url]. For support, there is a special user-run site - [url=http://www.outpostfirewall.com/forum/]www.outpostfirewall.com[/url]. [url=www.kerio.com]Kerio[/url] and [url=http://soho.sygate.com/default.htm]Sygate[/url] are other firewalls worth considering. [u][b]Use anti-virus software and update virus definitions regularly[/b][/u] For a free anti-virus package, consider [url=http://www.grisoft.com/html/us_downl.htm]Grisoft AVG[/url]. Bear in mind that Grisoft will not have the same resources as the likes of Symantec or McAfee for countering the latest viruses (and have done poorly in past [url=http://www.virusbtn.com/vb100/archives/products.xml?avg.xml]Virus Bulletin reviews[/url]) but using this is far better than nothing at all. However, given the problems a virus infection can cause, this is an area where money really should be spent. Update virus definitions at least weekly. If you run file-sharing software or use instant-messenger/internet chat software try to update more often since new viruses can spread faster through these applications. Anti-virus software specifically searches for viruses (code that tries to copy itself to other files) and worms (code that installs on your computer, but does not attach itself to files) - more details on this distinction [url=http://www.rbs2.com/cvirus.htm]here[/url]. However there are other dangers not covered such as trojans (programs that appear useful or harmless but actually carry out other actions like recording your keystrokes to find passwords or allowing an outsider control over your computer), adware (software that carries advertising - often in an intrusive fashion like creating pop-up windows when you visit a web site) and other malware. To deal with these, a specific anti-Trojan scanner is needed. Popular (and free) ones include [url=http://www.lavasoftusa.com/support/download/]Adaware[/url] and [url=http://security.kolla.de/]Spybot Search and Destroy[/url]. [url=http://www.staff.uiuc.edu/~ehowes]Eric Howes[/url] has done an [url=http://www.staff.uiuc.edu/~ehowes/crap-count.htm]analysis[/url] of the increasingly widespread use of this software. Some truly obnoxious examples can be found [url=http://www.usatoday.com/tech/news/2003-05-16-popup-suit_x.htm]here[/url] and [url=http://www.securityfocus.com/news/4217]here[/url]. A case where someone almost received a prison sentence due to a trojan can be found [url=http://www.theinquirer.net/?article=9023]here[/url]. [u][b]Update your computer(s) with the latest vendor security patches[/b][/u] Consider [i]not[/i] using Microsoft products. Yes, really. The list of security vulnerabilities in Internet Explorer (IE) is seemingly [url=http://www.guninski.com/browsers.html]never[/url]-[url=http://www.pivx.com/larholm/unpatched/]ending[/url] - and with its default configuration, viewing sites in IE is having your house front door and windows wide open. Outlook Express (OE) has been the most effective propagation method for viruses ever (most so-called "email viruses" are actually Outlook scripting viruses) and MSN Messenger also has had [url=http://www.tom.me.uk/msn/]some major security vulnerabilities[/url]. Other vendors are not blame-free in this regard, but MS seems to have the worst record by far. Even though known loopholes are (eventually) patched, the large number found so far is an indication of insecure design and a guarantee of more problems in future. And the less said about [url=http://www.theinquirer.net/?article=9392]Microsoft Passport[/url] the better. Alternatives for IE include Mozilla, Firebird and Opera. For OE, consider Eudora, Thunderbird and the Bat. For MSN Messenger, look at Trillian. More suggestions are given [url=http://www.theinquirer.net/?article=9316]here[/url]. Finally, while applying patches is a good idea, having them applied automatically is not. A patch should only be installed if you need it - having unnecessary ones will increase the chance of [url=http://www.theinquirer.net/?article=9707]problems[/url]. To this end, consider disabling Automatic Windows Update and install needed patches manually. [u][b]Practice basic e-mail and downloading "street smarts."[/b][/u] Most anti-viruses scanners can be configured to check email attachments - check that yours is. Download managers can usually be configured to run a virus-scan automatically at the end of a download - another worthwhile feature to use. Another issue with email is that of spam (unsolicited commercial email) which can range from mildy irritating (a couple of "special offers" per day) to the downright outrageous (a deluge of hundreds of emails touting viagra, mature content sites with pictures and explicit descriptions and get-rich-quick scams). Many such emails include HTML with hyperlinks so that spammers know when you open their mail - this of course guarantees you will get more. Configure you email software not to display HTML or download images - if this cannot be done, configure your firewall to bar access to port 80 for your email client. If you use Outlook Express, disable the preview pane to avoid automatically downloading such items. Prevention is better than cure with spam - make use of disposable email addresses from sites like [url=www.spamgourmet.com]SpamGourmet[/url] or [url=www.sneakemail.com]SneakEmail[/url] to supply a unique email to every website and newsgroup where you have to register. This gives you the ability to identify where a spammer got an email address from and allows you to shut the address down with minimum collateral damage. If you are already receiving spam on your "main" email address, consider using software like [url=http://www.mailwasher.net/]Mailwasher[/url] to delete or bounce suspicious emails before you download them from your ISP. [u][b]Advanced Security Tips[/b][/u] You have your firewall setup, your anti-virus software is zipping through all your emails, spammers are tearing their hair out over not being able to harass you - is that everything? Well there are still some issues to consider... There have been a number of programs produced to bypass personal firewalls by piggybacking onto a trusted application (examples include [url=http://tooleaky.zensoft.com/]TooLeaky[/url], [url=http://keir.net/firehole.html]FireHole[/url] and [url=http://tooleaky.zensoft.com/]Yalta[/url]). While the latest firewalls (like Outpost v2) will block them, an "application firewall" (which intercepts calls from one application to another) is really the solution needed. A good (and free) one is [url=http://kormushkin.narod.ru/help/ssme.html]System Safety Monitor[/url] - the download will take a while (slow site) but it should be a worthwhile addition to most people's security arsenal (Win9x/ME users may find compatibility problems however). If you have a broadband (cable or xDSL) connection, it is likely that your computer is connected to the Internet for longer periods than a dial-up user's would be. This makes your system a more attractive target for crackers. Consider getting a router that offers Network Address Translation (NAT) - as well as hiding your IP address, these allow you to share your connection with other PCs. Having a built-in firewall is also useful, since it will keep working even if the personal one on your PC goes down during a system crash. Finally, spend some time at security-related sites like [url=www.pcflank.com]PCFlank[/url] or [url=www.securityfocus.com]SecurityFocus[/url] or forums like [url=http://www.wilderssecurity.com/index.php]Wilders[/url]. And of course, this forum, where rolfw will be happy to deal with all your questions! :D [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Miscellaneous Sections
Tech Head - The Technology Section
Computer Discussion
Five basic security tips
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.
Accept
Learn more…
Top