Re: Networking XP home & PRO computers w/Linksys Router

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: Derek (Derek_at_discussions.microsoft.com)
Date: 07/01/04 

Date: Thu, 1 Jul 2004 13:27:02 -0700

Chuck,

Thanks again.

I think I understand. I do have Spybot on my machine and it is checked. I also have Nortan Internet security (pop-ups,) and Norton Antivirus.

I will take your advise.

Thanks,

Derek

"Chuck" wrote:

> On Thu, 1 Jul 2004 12:25:02 -0700, "Derek" <Derek@discussions.microsoft.com>
> wrote:
>
> >Dear Chuck,
> >
> >Just want to ask one more question. The Linksys Router is connected to the internet. It is a firewall that prevents other people from seeing the network. I you open (guest account), is that a security threat?
>
> Derek,
>
> The Linksys router uses NAT to route solicited network traffic to the computer.
> Unsolicited (malevolent) network traffic goes nowhere, producing a firewall
> effect.
>
> The router is one component of protection. It only filters incoming network
> traffic.
>
> Other bad stuff that you need to defend against is spyware and viruses. An
> attack of either, directed against a weak (well known) object such as the Guest
> account, could infect your computer. For that reason, use of the Guest account
> is not encouraged.
>
> Since you have an XP Home system, however, you cannot avoid use of the Guest
> account. But, you can protect yourself in other ways.
>
> Install a personal firewall on both computers. A good firewall for novices is
> ZoneAlarm (free) from <http://www.zonelabs.com/store/content/home.jsp>. A
> personal firewall will defend you against any incoming attack thru the NAT
> router, plus defend you against unwanted outgoing traffic from installed spyware
> or viruses.
>
> Use AntiVirus protection. Realtime, plus a regularly scheduled virus scan.
> Regularly updated.
>
> Use Adware / spyware protection. Realtime, plus a regularly run adware /
> spyware scan. Regularly updated.
> Complete instructions, using Spybot S&D and HijackThis (both free) are here:
> <http://forums.spywareinfo.com/index.php?showtopic=227>.
>
> Harden your browser. There are various websites which will check for
> vulnerabilities, here are three which I use.
> http://www.jasons-toolbox.com/BrowserSecurity/
> http://bcheck.scanit.be/bcheck/
> https://testzone.secunia.com/browser_checker/
>
> Block Internet Explorer ActiveX scripting from hostile websites (Restricted
> Zone).
> <https://netfiles.uiuc.edu/ehowes/www/main.htm> (IE-SpyAd)
>
> Set up blocking of known dangerous scripts from installing.
> <http://www.javacoolsoftware.com/spywareblaster.html>
>
> Block known spyware from installing.
> <http://www.wilderssecurity.net/spywareguard.html>
>
> Harden your operating system. Check at least monthly for security updates.
> http://windowsupdate.microsoft.com/
>
> Block possibly dangerous websites with a Hosts file. Three Hosts file sources I
> use:
> http://www.accs-net.com/hosts/get_hosts.html
> http://www.mvps.org/winhelp2002/hosts.htm
> (The third is included, and updated, with Spybot (see above)).
>
> Maintain your Hosts file (merge / eliminate duplicate entries) with:
> eDexter <http://www.accs-net.com/hosts/get_hosts.html>
> Hostess <http://accs-net.com/hostess/>
>
> Secure your operating system, and applications. Don't use, or leave activated,
> any accounts with names or passwords with trivial (guessable) values. Don't use
> an account with administrative authority, except when you're intentionally doing
> administrative tasks.
>
> Use common sense. Don't install software based upon advice from unknown
> sources. Don't install free software, without researching it carefully. Don't
> open email unless you know who it's from, and how and why it was sent.
>
> Stay educated. Know what the risks are. Stay informed. Read Usenet, and
> various web pages that discuss security problems. Check the logs from the other
> layers regularly, look for things that don't belong, and take action when
> necessary.
>
> Cheers,
> Chuck
> Paranoia comes from experience - and is not necessarily a bad thing.
>

Relevant Pages

  • Re: Spyware, Viruses via HTML in Email
    ... "mobile code", instead of spyware. ... mention all the Security Vulnerabilities uncovered in IE in the last year. ... I never use an Admin account to surf the wild wild web. ... I had a feeling that HTML in an email was just as risky as visiting a web ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Alerting - Malicious software removal tool
    ... Plus, much of what the MSRT removes are worms that exploit vulnerabilities in humans, not vulnerabilities in the software -- even a perfect operating system can't protect itself from that. ... I explained that they should not use the Administrator account except in rare cases where "MOM" needed to install an application that she could not install from her/son's accounts, that they were NOT to run anything as the "Administrator" account. ... Security settings would not provide the user with what they needed to run the programs that they wanted to use while protecting them from malware. ...
    (microsoft.public.security.virus)
  • Fwd: SF new column announcement: Microsoft Anti-Spyware?
    ... If by some real chance an average user in the world was using Linux, ... I heard so much hohum about MS's security record. ... "Don't install it". ... spyware as you want for Linux/Unix/Freebsd whatever. ...
    (Security-Basics)
  • Re: Basic beginners security for a new mac owner
    ... Social Security number, etc.) (Of course this applies equally to ... Make your main user account a Standard account, ... Whenever you try to install an application program the computer will ask ... Turn on the Firewall that is built into Mac OS X, ...
    (comp.sys.mac.apps)
  • Re: Basic beginners security for a new mac owner
    ... Social Security number, etc.) (Of course this applies equally to ... Make your main user account a Standard account, ... Whenever you try to install an application program the computer will ask ... Turn on the Firewall that is built into Mac OS X, ...
    (comp.sys.mac.apps)