Sunday, February 25, 2007

Sunday Driving

Are you cruising along the Information Superhighway sober, sane and safe - or drunk, deranged and dangerous? Following these steps won't guarantee you complete immunity from the digital equivalent of a 50-car pileup - the only way to do that is to disconnect your computer from the network and turn it off - but it will make disasters less likely and recovery much easier.

Unless otherwise indicated, all software recommended here is either part of the basic operating system (Windows or Macintosh OS X) or is open source and/or freeware. I'm trying to make this as painless as possible.

I have no association of any kind with any of the web sites or products I'm referring you to here; I've just found them very useful and/or reputable. Think of this as a ten-point safety check for your virtual car.

  1. Use smart passwords
    • Never use the default password that comes with any piece of hardware or software; always create your own.
    • Use passwords that aren't obvious; Cornell University has a guide on creating strong passwords that's worth reading.
    • If you have trouble remembering your various passwords, store them in a secure, encrypted file or program. Macintosh users can use Keychain Access, which is part of Mac OS X. Windows users should check out Password Safe.
  2. Keep your system software updated
    • Windows: make sure Windows Update runs automatically.
    • Macintosh: Set your Software Update utility to check on a daily basis. You'll find it under Preferences - System - Software Update.
  3. Use anti-virus software
    • Windows: Free anti-virus options include ClamWin and AVG. Commercial products are available from McAfee, Norton and Trend Micro, among others.
    • Macintosh: Viruses for OS X are relatively rare, as are free anti-virus programs. ClamXav is the Macintosh version of ClamWin. Commercial products are available from McAfee, Norton, and Intego.
    • No matter what product you use, make sure you have it set to automatically update your virus definition files. Out of date anti-virus software is as bad as none at all.
  4. Use anti-spyware software - Anti-virus packages won't necessarily catch all the bad stuff out there
  5. Practice e-mail safety
    • Don't open a file attached to e-mail unless it's one you're expecting from a trusted sender. Hostile program are often disguised as apparently innocuous documents.
    • Don't reply to or click on links in unsolicited e-mails asking you to verify personal data at financial institutions or on-line merchants. These are likely to be fraudulent.
    • See this article at wiredsafety.org for more solid recommendations on e-mail safety.
  6. Practice safe browsing
    • Think before you click on a link! Hackers will try to sucker you into visiting web sites that will download viruses and spyware to your computer without your knowledge, or con you into entering personal information at a web site that looks (but isn't) legitimate.
    • Secure your web browser. The US Computer Emergency Readiness Team (CERT®) has some good practical advice for both Windows and Macintosh users.
    • Use Mozilla Firefox instead of Microsoft Internet Explorer. We propeller beanie types can debate the reasons why until everyone's eyes glaze over, but the bottom line is that Internet Explorer is the preferred target of the network's bad guys. Download Firefox and make it your default browser.
  7. Use a personal firewall
    • A personal firewall program provides an additional layer of protection from Internet threats, and can alert you if a spyware program is trying to "phone home".
    • Windows: Windows XP has a built-in firewall. See this article from Microsoft on how to make the best use of it.
    • Macintosh: OS X has as built-in firewall. See this article from Apple on how to make the best use of it.
  8. Avoid peer-to-peer file sharing programs
    • Programs such a Kazaa, Grokster, and Limewire are major distribution channels for viruses, worms and spyware - to say nothing of copyright violations.
    • If you must use one of these programs, disable file sharing. Here's an article on how to do that.
  9. Lock your car. Take your keys.
    • Limit access to your computer. Unless you really need to share your files and programs with others, turn off file sharing. Here's information on how to do that in Windows XP, Macintosh OS 8 or 9, and Macintosh OS X.
    • Windows has a guest account enabled by default. Who needs it? Here's how to disable it.
  10. Think before you download
    • Avoid web sites or e-mails offering "cracked" versions of commercial products such as Microsoft Office. You might or might not wind up with the product in question (and if you did, you'd be breaking the law), but you'll almost certainly wind up with a mother lode of spyware, viruses and worms.
    • Freeware downloads are OK (as is shareware IF you do the right thing and pay the shareware fee), but make sure you get them from reputable sites such as download.com.
    • Bottom line: downloading files from questionable web sites is the 'net equivalent of trying to beat a veteran card sharp at three-card Monte - a sucker bet.

Want to know more? Here are some useful web sites:

3 comments:

Parry Aftab said...

Wow!
Chuck this is wonderful. I have two questions for you: can we use this in our training at WiredSafety.org (we have a new training program just for moms and one for teens and preteens), and would you consider joining wiredsafety and helping?

We need more of you...
thanks again.
Parry Aftab,
Exec Director
WiredSafety.org

Cheezy said...

Hi Thedoge,
Just to let you know I received your return e-mail. I always check the junk mail before I delete it and for the second time low and behold your e-mail was in there.
As you can tell I am on your blog and have viewed your column and I find it very impressive. I think more attention should be brought to the e-mailing of chain letters!! That is where the spammers enter in and harvest the live e-mail addresses that are in the to: and cc: columns! What is advocated in WiredSafety is, when forwarding a e-mail take out all e-mail addresses then send to the friends and this time only BCC: The To: is the e-mail address to yourself! So the e-mail will look lik
From: Thedoge
To: Thedoge ........ So the spammer will only get one e-mail address instead of the tons that are exposed in a normal open e-mail sending.
Again thanks for the link to this blog and it was a pleasure helping you get going with the IRC chat system.
Regards,
Cheezy

Anonymous said...

Such valid points. Only wish people would listen to what you say here!