Posted By: John H.
Computer Security - 06/28/02 06:15 AM
Since I work on PCs for a living, and pay close attention to security/upgrades/patches, I thought it a good idea to post a few things here on the subject. Anybody coming to this forum is on the internet/WWW, and so is subject to a certain degree of risk, just by reason of being online. This info might be old hat to some, but a learning experience for others, depending on 'computer literacy' level....
There's a good article now at the Consumer Reports site that talks about the importance of firewall and antivirus software being installed on computers:
http://www.consumerreports.org/static/0206com0.html
For those who don't have firewall or antivirus software installed -- money's not an excuse any more! Both can be downloaded for free.
• Firewall software:
ZoneAlarm personal edition is free for personal use, and is probably the easiest one to use --
http://download.com.com/3000-2092-10039884.html?part=zonealarm&subj=dlpage&tag=button
Kerio (formerly Tiny) Personal Firewall is also free for personal use --
http://www.kerio.com/us/kpf_home.html
Once you have a firewall installed, you can check to see that it's doing its job properly at several sites around the Web, that'll scan your computer from their location, to see if you're vulnerable. Some of these are:
Steve Gibson's ShieldsUp! -- https://grc.com/x/ne.dll?bh0bkyd2
Sygate Online Services (SOS) -- http://scan.sygatetech.com/
Symantec (Norton) Security Check -- http://security1.norton.com/ssc/home.asp
Running these scans before-firewall and after-firewall, or with firewall disabled, then firewall enabled, can be a real eye-opener.
• Antivirus software:
AVG 6.0 Free Edition --
http://www.grisoft.com/html/us_downl.htm#FREE
I've put AVG on right many people's machines, and it works well. Can't beat the price, either (unless they paid you to use it...)
These subjects really are getting serious. If a hacker is able to get into your machine, he/she can download any data you may have stored on your computer, including user names and passwords to online banking or stock trading sites; credit card numbers and expiration dates; bank account numbers; etc. That's all they need to perform an identity theft, and start charging goods and services to your good name. Once that happens, it can be really hard to get out from under it in some cases.
Also, if a hacker is able to get into your machine, he/she may be able to use it as a 'zombie'; one machine among hundreds or thousands of remote control computers that the hacker uses to attack other destinations on the web, such as government web sites. I sure don't want my machine being used by some stranger to do things like that, and you sure don't either.
Where viruses are concerned: it's important to have antivirus software installed, but equally important to keep it up to date with current definitions. If those definitions are out of date, then the A/V program doesn't know how to recognize the latest threats; and something like 200 new viruses come out each and every month. Just about every time I find a virus on a computer, that computer's antivirus definitions are found to be way out of date. Keeping them current can greatly lower the odds of catching a 'bug'. It's a good practice to check online for antivirus definition updates at least once a week; twice a week is better.
• On another subject: if you run Microsoft Windows, it's important to go to the Microsoft Windows Update site on a regular basis, and download any Critical Updates they have for your particular brand of Windows.
Go to http://windowsupdate.microsoft.com
and click on the Product Updates link. (Note: the site only works with MS Internet Explorer.) The site will scan your computer, then present a list of available updates. The Critical Updates will be at the top of the list; these are just what they say, "critical". As in, "do it right away"!
If you'd like to get on Microsoft's Security Notification Service (which comes by e-mail, and is free), you can do so at
http://www.microsoft.com/technet/security/bulletin/notify.asp
Words to the wise! An ounce of prevention, and all that. Security's getting tougher out there on that Net. It's up to us to secure our own machines.
[ June 28, 2002, 12:41 AM: Message edited by: John ]
There's a good article now at the Consumer Reports site that talks about the importance of firewall and antivirus software being installed on computers:
http://www.consumerreports.org/static/0206com0.html
For those who don't have firewall or antivirus software installed -- money's not an excuse any more! Both can be downloaded for free.
• Firewall software:
ZoneAlarm personal edition is free for personal use, and is probably the easiest one to use --
http://download.com.com/3000-2092-10039884.html?part=zonealarm&subj=dlpage&tag=button
Kerio (formerly Tiny) Personal Firewall is also free for personal use --
http://www.kerio.com/us/kpf_home.html
Once you have a firewall installed, you can check to see that it's doing its job properly at several sites around the Web, that'll scan your computer from their location, to see if you're vulnerable. Some of these are:
Steve Gibson's ShieldsUp! -- https://grc.com/x/ne.dll?bh0bkyd2
Sygate Online Services (SOS) -- http://scan.sygatetech.com/
Symantec (Norton) Security Check -- http://security1.norton.com/ssc/home.asp
Running these scans before-firewall and after-firewall, or with firewall disabled, then firewall enabled, can be a real eye-opener.
• Antivirus software:
AVG 6.0 Free Edition --
http://www.grisoft.com/html/us_downl.htm#FREE
I've put AVG on right many people's machines, and it works well. Can't beat the price, either (unless they paid you to use it...)
These subjects really are getting serious. If a hacker is able to get into your machine, he/she can download any data you may have stored on your computer, including user names and passwords to online banking or stock trading sites; credit card numbers and expiration dates; bank account numbers; etc. That's all they need to perform an identity theft, and start charging goods and services to your good name. Once that happens, it can be really hard to get out from under it in some cases.
Also, if a hacker is able to get into your machine, he/she may be able to use it as a 'zombie'; one machine among hundreds or thousands of remote control computers that the hacker uses to attack other destinations on the web, such as government web sites. I sure don't want my machine being used by some stranger to do things like that, and you sure don't either.
Where viruses are concerned: it's important to have antivirus software installed, but equally important to keep it up to date with current definitions. If those definitions are out of date, then the A/V program doesn't know how to recognize the latest threats; and something like 200 new viruses come out each and every month. Just about every time I find a virus on a computer, that computer's antivirus definitions are found to be way out of date. Keeping them current can greatly lower the odds of catching a 'bug'. It's a good practice to check online for antivirus definition updates at least once a week; twice a week is better.
• On another subject: if you run Microsoft Windows, it's important to go to the Microsoft Windows Update site on a regular basis, and download any Critical Updates they have for your particular brand of Windows.
Go to http://windowsupdate.microsoft.com
and click on the Product Updates link. (Note: the site only works with MS Internet Explorer.) The site will scan your computer, then present a list of available updates. The Critical Updates will be at the top of the list; these are just what they say, "critical". As in, "do it right away"!
If you'd like to get on Microsoft's Security Notification Service (which comes by e-mail, and is free), you can do so at
http://www.microsoft.com/technet/security/bulletin/notify.asp
Words to the wise! An ounce of prevention, and all that. Security's getting tougher out there on that Net. It's up to us to secure our own machines.
[ June 28, 2002, 12:41 AM: Message edited by: John ]
![[Wink]](images/icons/wink.gif){kind=icon}