Guide to Computer Security
Bill Buppert
Forward the Sun City Computer Club does not recommend or endorse vendors. The companies and products mentioned in this guide are predicated on wide spread usage by Club Members and compatibility issues.
|
Item |
Title |
Description |
Implementation |
|
1 |
User Accounts |
Each User should have a separate User Account |
Start > Control Panel > User Accounts > Create new Account > follow prompts |
|
2 |
Passwords |
Each User Account should be password protected think locking the door to your home |
Start > Control Panel > User Accounts > Select User Account > Create Password > follow prompts |
|
3 |
Passwords (2.) |
Each User should employ a strong password |
Strong passwords appear to be random to hackers, are a combination of uppercase, lower case, numbers and symbols, six digits or more in length (e.g. - BdA47#), for more information on strong passwords http://www.microsoft.com/protect/yourself/password/create.mspx |
|
4 |
Passwords (3.) |
Don t forget your Password |
Either make a password backup disk Start > Control Panel > User Accounts > Create a Password Reset Disk, or employ a password management program e.g. http://www.roboform.com |
|
5 |
Firewall |
Creates a wall between the Internet and your home network |
Windows comes with a Firewall which is adequate for home use, ensure that it is turned on, Start > Control Panel > Security > Windows Firewall > follow the prompts. There are numerous other free firewalls, plus firewalls that come with package security programs for a price. Choose with care, can be invasive. |
|
6 |
Anti-Virus |
A must have tool, insure that it is turned on and updated |
The most prevalent anti-virus tool used in the Community is AVG and it is free! http://free.grisoft.com . This tool provides high quality real time anti-virus protection and the vendor will not bug you to upgrade for a price. AVG has a package security product which is addresses later |
|
7 |
Spyware |
A must have tool |
You should have one or more spyware programs installed on your computer. Choose with care they can be invasive! Microsoft Defender is free and can be downloaded here http://www.microsoft.com/athome/security/spyware/software/default.mspx Defender is included with Vista. AVG has an excellent free spyware program http://free.grisoft.com/doc/download-free-anti-spyware/us/frt/0 . Some free spyware programs are not real time meaning that they require the User to periodically run the program |
|
8 |
Updates |
Windows and other applications |
As hackers find vulnerabilities developers issue updates to plug the holes. It is very important that all of your applications are updated regularly. If you are a Microsoft User it is recommended that you employ automatic updates Start > Control Panel > System Maintenance > Windows Updates and follow the prompts |
|
9
|
Backup
|
Files and folder backup |
Murphy s law applies to computers, in spades. If you value the stuff that you have accumulated in your computer, then backup earl and often. You can automate the process by employing an external hard drive. Prices have dropped dramatically and they can be purchased for under $100. |
Other Considerations:
1. If you employ wireless technology in your network there are other issues that should be addressed:
Routers come with default User names and Passwords. People familiar with routers understand those default and therefore it should be changed. To access your router at the CMD C:\ type ipconfig (no ) and enter, opposite the heading Default Gateway you should see e.g. 192.168.x.x, write down the numbers exactly as they appear,
Open Internet explorer and in the address bar enter the numbers for your default gateway, you will probably be prompted for a User name and Password, for the User Name use- admin, for the Password- use password, if that does work try admin, if neither work Google default User name and Password (add brand name of your router) and search and you will more than likely get a display of the default for your router
When you access your router, select administration which is when you can change the default password, then
i. Select the wireless security tab and locate SSID, opposite SSID you will see the default name of the wireless network (normally the name of the vendor of the product ID), change it, the naming convention that I have used is the street address e.g. 109Network (this makes your network readily identifiable and unique N.B. do not use names) after you enter the name of your network, click save at the bottom of the page, you re not finished!
ii. On the wireless tab locate wireless security, on new installations, security will not be implemented, initiate the security option and select either 64 or 128 bit (the difference is the length of the security key). I normally implement 64 bit (10 digit hexadecimal) first then upgrade. In some systems if you enter a pass phrase the key will be automatically generated. In others you must composed the key (10 items composed of numbers 0-9 and letters A-F) if you composed the key write it down, click save at the bottom of the page. You now have a secure network, but you are not through,
iii. Go to a wireless computer that you want to access your network. In the tray, bottom right, right click on the wireless icon and from the drop down menu select view available networks , in the list you should see the name of your newly created network, click connect and you will be prompted to enter the security key (twice!), you should now be connected to your network and each time you turn on the computer in the future it will automatically connect to your network
2. The forgoing Security Guide can be accomplished without cost beyond what you have already paid for the operating system. However, the free approach to security requires some regular User administration and if you are not interested in maintenance there are package security programs, for a price, that feature a all in one, set it and forget it approach. Package programs cost approximately $50 per year with free trials rebates and specials offered from time to time. The security industry is moving towards a package approach since it is becoming clear that Users apparently do not like to be bothered with security issues. Package security plans typically include up to three computers:
Firewall,
Anti-virus,
Spyware,
Backup capability,
Computer Maintenance
3. Compatibility and use of system resources are considerations when implementing a security program. It is suggested that you try a product before you buy. You are probably less likely to have compatibility issues if the vendor of you operating system and your security program are the same. Following are links to several package programs, there are more, if you re interested Google package security programs:
Microsoft OneCare- http://onecare.live.com/standard/en-us/default.htm
Kaspersky- http://www.kaspersky.com
Norton- http://www.symantec.com/index.jsp
AVG- http://www.grisoft.com/doc/special-get-complete-protection-support-freecnv
Trend Micro- http://us.trendmicro.com/us/home
Panda- http://www.pandasecurity.com/usa
4. Computer Maintenance although not a security consideration, if you do not employ a regular computer maintenance plan, it will have detrimental effect on performance and it will give the aura of infection. Computer maintenance involves:
Disk clean up and defragmentation,
Temp file, dead file and registry clean up
You can manually perform these functions with tools that come with the OS or there are free tools that do a better job (e.g. CClean), or package security programs will perform a tune up for you
Finally, Bruce Cottrill has developed a comprehensive document on computer maintenance, which is available for Bruce, the Kaffe Klatch, a Mentor or the Computer Club
If there are questions or problems with implementing any of the forgoing, Computer Club Mentors are available to assist you. If you have questions about this document, I am available for assistance, email works best, my contact info is as follows:
Bill Buppert
Email- WIB3@suddenlink.net
Phone- 512.868.9501