A Man and his Penguin

Take a powerful computer. Run Linux on it. It is now YOUR powerful computer.

Dec 23 2008

10 REAL steps to security on Windows

Posted by: bigbolshevik in Other computers/OS'es, Web/Tech

1. Run Vista, and do not turn UAC off.

2. Keep the automatic updates turned on.

3. If your computer is too old for Vista and you’re still on ancient XP, then create a new account called “Administrator”. Change your normal user account to a limited user account. Whenever you need to install software, switch into the Administrator account. DO NOT RUN FULL-TIME AS ADMINISTRATOR!

4. Make file extensions visible - not sure how to do it in Vista, but do it. In XP it’s in Windows Explorer’s “View > Folder Options” menu. This way, if you download something malicious that masquerades as a picture file (”myboobs.jpg.exe”) you will be able to see that it’s actually an executable.

5. Do not use Internet Explorer or the default Windows mail client. Use Firefox, Flock, Chrome even Opera, as your web browsers. Thunderbird, Eudora or Evolution work well as e-mail clients. Do not use Safari as your web browser.

6. Do not click links in e-mails. Do not download executable files from peer-to-peer or instant messaging networks. Do not download “e-cards” or any executable email attachments.

7. Encrypt your wireless network. If possible, use WPA2 encryption. If not possible, use WPA or WEP encryption. If you and your family are the only ones who use your wireless network, then set up MAC address filtering. Note down all the MAC addresses of your computers and other wifi devices and put them into your router’s “whitelist” of allowed MAC addresses. Set it so that any other MAC addresses cannot access your router.

A MAC address (sometimes referred to as a Hardware Address) looks something like this: 00:15:AF:22:88:65

8. Turn on your firewall. You probably have one in your ADSL modem/router that will do the job properly and without any fuss. If your router doesn’t have one, then install personal firewalls on your computers. Don’t install multiple firewalls as it just increases complexity without adding any security benefits. Also, don’t poke holes in the firewall unless you really need to. And turn off Universal Plug ‘n’ Play (UPnP) on your router - it allows any viruses you might recieve to open ports on your router and invite its buddies in to infect your computer.

9. Unless you like the idea of your computer running like a slug, do not install anti-virus or anti-spyware software.

10. For god’s sake, if you must run Windows, you should AT LEAST run Vista.

This entry was posted on Tuesday, December 23rd, 2008 at 1:05 am and is filed under Other computers/OS'es, Web/Tech. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.