Chey Cobb web site

 

Index for Chey Cobb
Articles and books by Chey Cobb
Hobbies of Chey Cobb's
Pictures from Chey Cobb
Contact for Chey Cobb

   
 
Chey Cobb
  
   

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 
 

Newsscan Computer Security Column
Stephen Cobb, CISSP and Chey Cobb, CISSP

Securing Your Home Computer

The wrapping paper and fancy ribbons are gone and the once-glorious Christmas tree has probably made its way to the county dump by now. Your new computer sits proudly on your desk and you're happily browsing the Internet on the new broadband connection that Santa brought.

Unfortunately, that Christmas present is full of holes - security holes, that is. Whether you've got a new computer, upgraded your operating system, or never got around to securing the old operating system, all computers come with security holes. Even those that are sold as "secure" have default settings that represent only a bare minimum set of protections.

There are security holes in the operating system as well as the applications you use and they all need to be plugged if you want to avoid criminal hackers wreaking havoc on your computer. It's up to you to make the changes necessary to ensure robust security. It will take some of your time to do this, but it's not hard and it's not rocket science.


Some readers may be asking: "Are hackers/intruders really interested in my computer?" The answer to this is a resounding Yes! Even if there is nothing on your computer you feel is worth stealing, there is probably more than enough information on your hard drive to help someone steal your identity.


The average cost of reversing the damage caused by identity theft is over $6,000! In addition to that threat, you should realize that your computer is a desirable target for those who want to store and distribute illegally pirated programs and content, not to mention pornography. Your machine can even be seen as a way to attack other computers. The scary part of all this is -- you probably won't even know it's happening.
So, to help you make 2003 a safer year, here's our list of "must-do's" to secure your computer:

  1. Password protect your computer and use strong passwords that can't be easily guessed.
  2. Delete or disable any user accounts called "Guest". This will prevent unauthorized users from using that account to log on to your machine.
  3. If you have a Windows computer, go to the Start menu and choose "Windows Update". Your web browser will connect you to Microsoft and your machine will be checked to see which patches you need. If you have not done this before, allow a couple of hours to download and install all recommended patches (note that patches for the Internet Explorer browser and Outlook Express email program will also appear in this area.)
  4. Also use "Windows Update" to check for patches for your Office applications. You will probably need your installation CD to complete the patch installation.
  5. Disable any default shares of your hard drives (if a little "hand" appears to be holding the hard drive or folder, that means it's being shared.)
  6. Review the security settings of your browser by going to Tools|Internet Options. It's safest not to allow scripts or other programs to be run from your browser.
  7. In Outlook, disable the "Preview Pane" by going to View|Preview Pane. This toggles the pane on or off. Also go to Tools|Options|Other and select Preview Pane. Then uncheck the options. This will prevent viruses from automatically launching from the Preview Pane. In Outlook Express, select View|Layout and uncheck "View preview pane."
  8. Install antivirus software and keep it updated. The software that comes with new computers is frequently out of date by the time you are setting up your computer (which means it can't catch the latest viruses). The program should have an "Update" command to get the newest list of viruses. If you don't want to purchase antivirus software, we recommend a free program called AVG Anti-Virus that's available from www.grisoft.com.
  9. If you have a broadband DSL router, change the password from the default. (ALL hackers know these default passwords!) Also review the security settings for your router (you'll need the user's manual for this one.)
  10. Use a personal firewall. Windows XP comes with a firewall but it is not turned on by default. To turn it, on use Settings|Network Connections and view Properties for your Internet connection. Select the Advanced tab and check the Internet Connection Firewall box. We also recommend ZoneAlarm, which is available for free from www.zonelabs.com. It's easy to install and it will alert you when there's suspicious activity on your computer.
    After you have gone through this list and completed all the tasks, your computer will be a lot more secure than it was. No computer that is actually in use by humans is 100 percent hack-proof, but the changes you've made will keep you very safe from unauthorized intrusion.

If you want to check to see how safe your computer is, go to http://grc.com/ and try their "Shields Up" tests. They'll scan your computer and tell you how vulnerable you are to hacks. (Note: there is no "www" in their URL.)


Happy and safe computing in 2003! Next time we'll discuss how to secure your new wireless router!

  


©2003 Chey Cobb. All rights reserved.
chey@patriot.net
FAQs Contact Us