Hi There
Quick lesson;
1.2.What is a Router?
*A device that determines the next network point to which a data packet should be forwarded en route toward its destination
*The next "hop" in "how do we get there from here"
*A packet typically travels through several routers before arriving at its destination3.A router…
*Is connected to at least two networks
*Examines packet source and destination addresses
*Decides which way to send each packet based on its current understanding of the networks to which it is connected4.What is a firewall?
*Prevents unauthorized access to information resources by placing a barrier between a protected network and an unsecured network5.Why do I need a firewall?
Mitigation of:
oTheft or disclosure of data
oUnauthorized access to hosts and systems
oInterception or alteration of data
oVandalism and denial of service (DOS)
oBad publicity, public embarrassment, lawsuits6.I have a firewall, so I'm protected
*WRONG!
*WRONG!
*Did I mention that's simply WRONG?
*Firewalls can give a false sense of securitySourceWhat a Firewall Can't Do
*Protect against threats inside your network
oEmployees
oWeak passwords
*Protect against attacks that don't go through your firewall
oPersonal modems
oSocial engineering
*Protect against attacks on services allowed through your firewall
o Attacks on firewall-protected web and email services
oViruses and browser attacks
Botom line, even if you have a router, each PC should have a software firewall, if they are XP then the Windows firewall can be used...I would recommend Zone Alarm instead.http://www.zonelabs.com/store/content/home.jsp
Not eveything that your router see's is malicious, but there are internet trojans/viruses (in the wild) which will seek out a new PC just hooking up to the net without protections usually within the first 10 minutes.
http://www.cert.org/tech_tips/before_you_plug_in.htmlThe CERT/CC has composed this Tech Tip to address a growing risk to Internet users without dedicated IT support. In recent months, we have observed a trend toward exploitation of new or otherwise unprotected computers in increasingly shorter periods of time. This problem is exacerbated by a number of issues, including:
* Many computers' default configurations are insecure.
* New security vulnerabilities may have been discovered between the time the computer was built and configured by the manufacturer and the user setting up the computer for the first time.
* When upgrading software from commercially packaged media (e.g., CD-ROM, DVD-ROM), new vulnerabilities may have been discovered since the disc was manufactured.
* Attackers know the common broadband and dial-up IP address ranges, and scan them regularly.
* Numerous worms are already circulating on the Internet continuously scanning for new computers to exploit.
As a result, the average time-to-exploitation on some networks for an unprotected computer is measured in minutes. This is especially true in the address ranges used by cable modem, DSL, and dial-up providers.
Standard advice to home users has been to download and install software patches as soon as possible after connecting a new computer to the Internet. However, since the background intruder scanning activity is pervasive, it may not be possible for the user to complete the download and installation of software patches before the vulnerabilities they are trying to fix are exploited. This Tech Tip offers advice on how to protect computers before connecting them to the Internet so that users can complete the patching process without incident.
Yes the software firewall adds the extra protection behind a properly configured router (see your router's manual for setting up the other PC's).I am not familiar with Registry First Aid, as a rule IMO if you are real familiar with the registry then using these programs are okay, however if you are not then using these incorrectly could corrupt the registry (make backups) usually WinXp does a good enough job, if you leave most of the junk files/keys alone, unless you are required to remove them....
Reply With Quote