|
-
December 15th, 2002, 10:46 AM
#1
 Securing you box
Securing your box.
Keep it up to date, go to update.microsoft.com and get all neccesary service-packs and patches for your box. If you have a slow connection get a friend with broadband to download them and burn em to a cd.
Use a good virus-scanner. Freeware is available from download.com or you could obtain a commecial package like Norton AntiVirus or Mac-Caffee. Many virus scanners scan for trojans and there are also some specific trojan scanners on the market. Update it frequently.
Now for a listing of AV products:
http://www.kapersky.com
http://www.nai.com
http://www.symantec.com
http://www.f-secure.com
http://www.sophos.com
http://www.norman.com
http://www.antivirus.com
To read virus-info go to:
http://www.viruslist.com
To view hoaxes about virii visit:
http://www.vmyths.com
further:
http://www.wildlist.com
http://www.mcaffee.com/anti-virus/virusmap.asp
There are mailing lists that inform you once new virii are discovered.
To join one of these send mail to listserv@lehigh.edu with in the body of the e-mail:
SUB VIRUS-L your name
Basicly three types of data are not wanted.
Virrii. Data that infects files.
Trojans. Data that supplies a backdoor
Logic bombs. Data that executes something once a certain condition is met.
Scan all your incoming e-mail automaticly. Go to the options in your virus-scanner to specify this. Don't use Outlook Express as it is known to be insecure. Third party mail clients are avaiable from the net. Use one of these or use a web based i-mail address. Hotmail does online virii scanning.
Floppy disks can contain virii. Go to the CMOS setup screen and in BIOS Features setup choose C Only in Boot Sequence.
Whenever you go online you connect to a webserver that assigns you a IP address. Dial Up connections get these dynamicly normally because not all subscribers dial in at the same time. Permanent (or always on) connections frequently use a static IP address. This a vulnarability. Configure your browser to use a proxy when browsing the web.
http://www.inetprivacy.com/a4proxy/a...-proxy-faq.htm
U can also use firewalls to protect yourself.
Read the Frequently Asked Questions list:
http://www.faqs.org/faqs/firewalls-faq/
Find them:
http://www.tinysoftware.com
http://www.zonelabs.com/
http://www.networkice.com/
http://www.sygate.com/
www.agnitum.com/products/outpost/
http://www.kerio.com/us/kpf_home.html
http://www.checkpoint.com/
Configure them properly (read the manual).
If you have configured a small LAN you might want to look here:
http://www.nokia.com/nokia/0,5184,151,00.html
http://www.watchguard.com/products/fireboxsoho.asp
http://www.sonicwall.com/
http://www.umax.com/world/
http://www.cisco.com
Once you configured your firewalls correctly you can go to the shields up website (http://www.grc.com/) and test to see how secure you have become. If you would like to read more check this:
http://www.cert.org/tech_tips/home_networks.html
or
http://www.cert.org/encyc_article/tocencyc.html
or
http://advice.networkice.com/Advice/default.htm
Programs from 'friends' can contain all sorts of stuff. Trojans for example. Do not thrust everybody. Programs that get pushed to you on the net like download accelarator or Go!zilla can contain something like spy/adware. The programs push marketing information through the net, sometimes collection info on your surfing behaviour and mailing it back to the owner. To get rid of this goto:
http://www.lavasoftusa.com/
To obtain a list of programs donig this go to:
http://www.cexx.org/adware.htm
http://www.cexx.org/spysites.htm
Next the scripting of your browser (IE). Script languages like VBScripting and ActiveX can contain malicious code. Disable the ActiveX by going to Extra-Internet Options-Security. Disable VBScripting by going to Extra-Internet Options-Advanced.
Your browser also collects cookies from websites sometimes. These collect info on you. To read about cookies and privacy goto:
http://www.cookiecentral.com/n_cookie_faq.htm
To get rid of cookies you can configure your browser not to accept them or use a third party prog.
http://www.kburra.com/cp1setup.exe
http://www.thelimitsoft.com/
More are available. Perform a querry at your favorite download site.
Many sites use banneradds and some even contain webbugs collecting info on you. Get rid of these:
http://www.junkbusters.com
http://www.guidescope.com/tour/tour3.htm
Do not use file and printer sharing. If you have to: protect all of your shares with strong passwords. To disable file and printer sharing completly go to control panel network FPS. Uncheck the boxes. Next select the network adapter you are using and choose properties-bindings tab. Here remove all your unneeded bindings.
Next disable the server service through control panel-services-server-properties-disabled
Encrypt your files. All of them. This will help prevent data theft big time. Also use encryption for the emails you send. Internet Explorer 6.0 (5.5 to) has had some severe bugs. Get all of the patches. Even then there are some bugs. Sorry mate. Use a different browser. It might contain bugs as well but they a less known and therefore less exploited.
http://www.opera.com
http://www.netscape.com
http://www.lynx.com
Remember to keep all the stuff you use up to date.
Enforce a strong password policy for all the users of your computer.
Next read the following:
http://www.antionline.com/showthread...hreadid=237662
Well that wraps it up.
If you have additions feel free to post them in a reply !
__________________
noODle #©
* * * *
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote