OT computer security

firkin · Sep 3, 2003

As I recall monk is offline in whole or inpart due to a computer virus. I'd hate to see anybody else suffer from this crap.

I'm not using Windows, and don't know very much about (frankly I'm glad I don't have to), but this site appears to provide a fairly concise and lucid discussion of Windows security for internet users.

https://grc.com/default.htm

I looked at the ShieldsUp pages.

Any comments from the experts?

I ran the probes in the SheildsUp section on my computer, but I CANNOT and DONOT recommend that any one else do so without further information. I felt that my machine was reasonably well-protected, and that seems to be the case if this site is on the up-and-up.

If somebody here has information that the contents of this site are incorrect, or in any way malicious I will edit this post to delete the link.

BruiseLeee · Sep 3, 2003

Though I'm no expert...

I've used the site. Dunno how good it is though. I think a lot of viruses (viri? virae?!) are sent as attachments in e-mails.

I think... I remember turning file and print sharing off in the network properties and this can cut out a lot of junk. Plus a few other goofy things.

mPisi · Sep 3, 2003

I'm not an expert but I have been using the Shields Up part of that site for at least 5 years without any problems. I haven't seen anyone speak ill of the site.

BruiseLeee · Sep 3, 2003

Does anyone use the free firewall known as Zonealarm?

www.zonelabs.com

Bri in Chi · Sep 3, 2003

I have been using IP NetSentry for some time and have no complaints yet.
You can try a free copy and decide if you want it. Mac only.
http://www.sustworks.com

mPisi · Sep 3, 2003

I have used Zonealarm for many years, I think it is great. Besides catching things that try to access my computer, it also catches things that try to access the net from my computer (i.e. virii that try to mail stuff out). This one case my computer was infected through our LAN at work, but when the virus tried to spread further ZoneAlarm notified me that something was trying to call out and I was able to start investigating and find the problem. With ZoneAlarm, a good virus checker, periodic spyware searches, and email commonsense I feel relatively immune from problems. Wish I could say the same about my cow-orkers though...

ddean · Sep 3, 2003

Originally posted by BruiseLeee
Does anyone use the free firewall known as Zonealarm?
www.zonelabs.com

Still use it after what maybe 5 years now.
I trust it to do the job.
I still use the free version but may upgrade for extra features.

If you have a home network (LAN) you'll have to make some entries in
a table of trusted addresses for each computer with ZA
to share (both directions) on the network.
Ditto for VPN connections (usually a home connection to office/business).

ddean · Sep 3, 2003

Originally posted by firkin
I looked at the ShieldsUp pages.
Any comments

I haven't used it for a while,
but I trusted it then & am still inclined to.

He has a lot of useful specialty software.

ddean · Sep 3, 2003

BTW, a network Ethernet router that connects a dsl/cable modem
to a home network usually provides for firewall functions.
Together with ZoneAlarm I feel fairly safe from hacker connections.

The paid version of za offers spyware protection I think.

I use Norton Antivirus for most other intrusion protection.
It also can scan email.

firkin · Sep 3, 2003

Thanks for replies.

I was considering recommending that a couple of relatives go through the ShieldsUp pages to make sure that they don't have a bunch of ports open.

I've looked at some of the rest of the site and it seems pretty good, but too nerdy for my relatives. On first glance it seemed posiible that running the probes could be some kind of information gathering gimmick, but it's hard to imagine something as elaborate as his site not being legit.

Some interesting stuff there.

Mr.BadExample · Sep 3, 2003

I highly recommend Zonealarm especially if you are on a broadband connection. Also Norton Antivirus, and make sure autoprotect is enabled.
And set your Internet Explorer security settings and set it to Medium, and disable download of unsigned ActiveX controls (under Custom settings).
Zonealarm Pro will scan your email messages as they come in.

FallingKnife · Sep 3, 2003

I actually like to think of myself as a computer expert. I've seen Steve Gibson's articles and products for years and years. Although I've never actually met or talked with him, I think he's an OK guy. I haven't done a lot of detective work, but this looks like it's really his site. So therefore, this might actually be a legit and useful site. If anyone is still cynical, well, good job. You should be.

Keeping yourself safe from electronic bad guys is perhaps even more complicated than traditional self-defense. Most of the concepts are the same. Don't beat yourself up and worry about doing all of these. Sadly, you might luck out if you do only one or none, and doing all of these DOES NOT ENSURE PROTECTION.

1) Protect your perimiter with a firewall of some sort (like a good deadbolt). You can spend a lot of money on special equipment, but at the other end, a simple router is not too bad. NO FIREWALL WILL STOP EVERYTHING.

2) Install virus software and perhaps personal firewall software. Keep it up to date. This is like keeping a weapon in your nightstand even though you know you locked the deadbolt on your front door. THIS WON'T STOP EVERYTHING EITHER.

3) Be cautious, even cynical. Don't trust emails and files from people who seem to be friends. I've recieved a virus-invected Word files from a CEO who didn't realize their computer was infected.

Oh, and impersonation is easy. It's not hard for the bad guys to create an email that pretends to be from someone you trust, telling you to do somthing bad. Figure out a way to confirm who it came from and that even that it really makes sense.

This is a lot like the personal self-defense tactic of not inviting strangers into your car in a Wal-Mart at midnight, except that EMAIL IS VERY EASY TO IMPERSONATE.

Or like checking for yourself if a gun that someone just handed you is unloaded. Even if they said it was.

4) Make backups. Unlike with personal self-defense, you can make a copy of your computer data for safe keeping. When everything else goes wrong, you can reconstruct your computer. Alas, few people do this, and fewer do it right. Including professionals.

5) TEST. Oh, gosh. I've seen WAAAY too many computer professionals simply and arrogantly decide that their stuff works and is fine, and get slammed by Reality. Gibson's site provides a way to try to test your perimiter defense.

I'd also like to urge you to test your backups, but I have mixed feeings. While this is incredibly important, it's not without risk. I'm sorry for not going into more detail. It's like the difference between dry-firing an unloaded gun in your house and "dry-firing" an "unloaded" gun that turns out to be very much loaded. If you're not sure what you're doing while testing backups, then you're probably right. STOP before you wipe a lot of stuff out.

ddean · Feb 1, 2004

btt

https://grc.com/default.htm
is a good page to re-read
to check his current comments & projects.

Nasty · Feb 1, 2004

I may not have told you, but I am a computer systems engineer specializing in computer system security. I usually deal with systems on a much grander scale, but all of the above is true and factual...good advice in today's world.

CARman · Feb 1, 2004

Originally posted by Nasty
I may not have told you, but I am a computer systems engineer specializing in computer system security. I usually deal with systems on a much grander scale, but all of the above is true and factual...good advice in today's world.

Ahhhhh, now I see how you can be online no matter what time of day UB puts his specials up. Not to mention how you can afford so many.

I'm so jealous, no way to be you on the draw of the mouse when the UBBB/DOTD comes up.

Oh well, at least I know who to ask advice from when I have a computer problem, ole buddy ole pal.

Just kidding, I'm glad you are able to snag so many nice khuks.

Nasty · Feb 1, 2004

Good news for you CARman...I'll be TDY to Georgia all next week. That means that I will be away from my computer! You can all have a grand feeding frenzy in my absence!

As for affording them, it pays to be in security. BTW, why did you close your Wachovia MasterCard?

CARman · Feb 1, 2004

Originally posted by Nasty
BTW, why did you close your Wachovia MasterCard?

That's the reason I can't afford them.

Hey wait a minute, how did you know about that ????

Cyberbeast · Feb 1, 2004

I got nailed last week, by going to a website. It tried to rewrite my systems files and when norton stopped it it corrupted my explorer.exe file. had to slave the original drive put in a new primary. I reloaded windows about 3 times and I kept getting the same error. Once I slaved the old primary drive and ran norton it found 2 worm viruses. What sucks is I don't remember what site I was at. I was following link when I got hit. Took me 4 days to get back up and running.

Mr.BadExample · Feb 1, 2004

Originally posted by BruiseLeee
Does anyone use the free firewall known as Zonealarm?

www.zonelabs.com

I used the free Zonealarm and then bought the Pro version. I like it a lot. It fights hack attempts, it is not antivirus software.

BruiseLeee · Feb 1, 2004

I was told that the program is no longer free for individual users.

Is this true? I guess I could go to the site and have a look, but I'm lazy.

OT computer security

firkin

BruiseLeee

mPisi

BruiseLeee

Bri in Chi

mPisi

ddean

ddean

ddean

firkin

Mr.BadExample

FallingKnife

ddean

Nasty

Chief Cook & Bottle Wash

CARman

Nasty

Chief Cook & Bottle Wash

CARman

Cyberbeast

Mr.BadExample

BruiseLeee