Total Newb, Interesting Problem
Hi, I'm a total newb and have a few questions I would be very grateful if I could have help finding answers to. If one of them has an answer in another post then I'm really sorry, please provide me a link. Also, there will probably be some stuff that doesn't make sense. Please tell me where.
This is a background, I am a home PC user, using a Pentium Laptop WinXP SP2. I only use the PC for browsing and downloading files from a news server. I currently have reached a "plateau" with my computer studies and want to increase security on my machine and further my knowledge about computer security. I am currently using Panda Platinum 2006 with intergrated firewall after using a few of the free scanners; AVG, TrendMicro that missed quite alot of problems I used to have. The security status of my PC is okay-ish ie. free of viruses, malware etc. (according to ewido, panda, hijack). I know there are still potential vulnerabilites and I want to know how to avoid them being exploited.
First Question: Is there a set of applications/methods that you can give me information on that will do the following and respond quickly that are free/GNU: Information on all inbound/outbound connections (IP adresses etc.) (can these adresses be masked/hidden?), all new processes starting and modification of files, and, crucially for me at this stage; what you think are the most important things to be monitoring to keep my computer secure and what are the default set of measures/applications that I need. Panda slows my machine so much!
Second: I have a friend who studys computer networking and I don't know if it's paranoia talking but I have a suspicion he has tried to/has accessed my computer remotely. I know he has communicated with me using simultanious msn nicks and repeatedly tried to send me files, posing to be a variety of different people. There has been an occasion recently when he came over, went "hey hey look at this" ("look it's superman!" kinda thing) and then did a run command then left my house suspiciously. I think it was "ipconfig". Although I don't think he would go as far as to do anything harmful I don't appreciate being some script kiddies crash test ya' know? I think I have a dynamic IP. Does this work in my favour or can it be predicted. I'd like to be able to match his skills or at least put up a reasonable defence against it and you guys are my liferaft. So there it is... Q3.
Third: What OS should I be using for maximum security and also as a tool for learning how to write code and take my computer studies further. I've never studied professionally although I'm starting a course next year and I want to have as much under my belt as possible before I start. It's a non-specific Access to Degree Level computing course. I'm almost certain this question has been covered before but to be case specific I thought I'd ask.
Fourth: I did find a method for viewing IP adresses using CMD. Thing is I don't really know which is which and what column means what if you know what I mean. How to tell which one is mine and what the changing numbers after each address mean? Someone with a high tolerance and calm disposition may want to answer that one lol.
Well that's the lot for now. Any replys will be greatly appreciated.
Thankyou very much,
ZapSeeker