Computer security - do I have enough?

**Must Dash** · 01-12-2008, 02:13 AM

I've got Norton 360 running, and once in a while I give Ad-Aware a spin (it only ever finds negligible stuff). Is this enough to keep my computer secure or do I need more? No real signs of problems, other than my computer running somewhat slower than when I bought it a year or two ago.

'cos you're probably gonna ask:
Compaq Presario laptop
Windows XP
Link to a Siemens Speedstream ADSL modem via a Netgear router (3 other computers at home link to this)
Occasional link via a USB wireless card
Synchronize with Blackberry via a USB port
Anything else that helps, please ask.

Funny thing is, my wife works in IT, but knows nothing about this kind of stuff.

Thanks in advance.

Cheers

Jeremy

**profipsy** · 01-12-2008, 02:35 AM

Norton will slow down your PC, but all PC's collect redundant files and clutter with time. To keep your system running at full speed a yearly reinstall does wonders if you are prepared to put the time in.
My approach is to do a clean install of the OS and all applications and get it working perfectly (I also keep my personal files on a separate partition for easy back up and restore) then clone the hard drive using acronis or similar then I can return to this clean initial state when ever I need to.
I manage all my lab machines at work and this approach is by far the best option if you have the time to get it set up.
That failing check for redundant applications etc with suitable software and run disk defragmentation regularly.
Hope that makes sense, PM me if you want more details.
Si

**Must Dash** · 01-12-2008, 12:42 PM

Profipsy, many thanks for your response

What you suggest sounds like the right thing to do, but I'm a little bit concerned that this is over my head. If something goes wrong, I'm unlikely to know the right moves and shakes to fix it.

Cheers

Jeremy

**arcman** · 01-12-2008, 09:14 PM

In terms of avoiding infections, the three things I recommend most are...

1. Use a browser other than IE. ActiveX has become a backdoor for so much malware you're better off using a browser that doesn't use it, and isn't hooked directly into the user shell. Firefox or Opera are excellent alternatives. If you must use IE, turn off ActiveX in the security tab and install SpywareBlaster, this will actually help seal IE from sites known to carry malware. An excellent preventative step.

2. Never download or run any executible file from a source you do not explicitly trust. This includes programs, utilities, screensavers, Microsoft Office attachments, etc.

3. Make sure you're properly firewalled.
For most people this is covered by either running the XP SP2 firewall, or using the firewall built in with their router. You really don't need anything else to protect you from attacks, the only reason to use a 3rd party software firewall is if you need to monitor your outbound traffic.

Do these and your chances of catching something are minimal.
If you want to further protect yourself, go into Control Panel and create a limited account for yourself. Use this account regularly and only log into the Administrator account when you are required to do so, say to install a program or perform a maintenance task. Do this and your chances of being infected with anything are practically nil, as a limited account is practically unable to harm the Windows system files if it runs an infected executable.

**Must Dash** · 01-12-2008, 10:09 PM

Hey, thanks for that

1. I use Firefox almost exclusively. From time to time I need something from a website that doesn't function properly through Firefox... although that hasn't happened for a while, so maybe that problem has been overcome.

2. I'm very strict about not running exe files

3. I need to check in to

And that last one... even I can do that. So I will.

Thanks

Jeremy

**perry** · 01-13-2008, 06:39 AM

Being behind the router is a good thing and adds an additional layer of protection over the computer's firewall. Keeps the computer from being directly accessible via the Internet. For a demonstration, there is this vulnerablity in the Windows IGMP handling. Basically, a system directly connected to the Internet, even with the Windows firewall running and no open ports, is vulnerable to a bad guy running whatever they want on the computer.

There's no known exploits in the wild, yet, but an unpatched computer would be vulnerable when one comes out. And one will come out as soon as the bad guys reverse engineer the patch or find the vulnerability now that they know one exists. But, in this case, the router stops all that.

**apex.predator** · 01-13-2008, 07:06 AM

Originally Posted by perry

Being behind the router is a good thing and adds an additional layer of protection over the computer's firewall. Keeps the computer from being directly accessible via the Internet. ...

Yes, I second that. A router would also make you a better internet citizen.

A year ago my home computer was the target of flood attacks. At the time, I was running Linux and iptables, but nothing else. The floods were relentless and made my system unusable for long periods. The source was given as my ISP, but I'm sure it was really a Windows zombie spoofing my ISP's IP. These attacks are made possible by millions of insecure Windows systems whose owners don't even know they're being used.

A $90 Netgear router has put a stop to those attacks for me and there hasn't been even a blip since.

**Must Dash** · 01-14-2008, 01:51 AM

Originally Posted by arcman

If you want to further protect yourself, go into Control Panel and create a limited account for yourself. Use this account regularly and only log into the Administrator account when you are required to do so, say to install a program or perform a maintenance task. Do this and your chances of being infected with anything are practically nil, as a limited account is practically unable to harm the Windows system files if it runs an infected executable.

I went ahead and did this. The only problem is with Outlook. I had to use the original installation CD in order to install it, but I can't import the data from my usual account. Any thoughts on how to overcome this?

Cheers (and thanks)

Jeremy

**arcman** · 01-14-2008, 06:09 AM

Originally Posted by Must Dash

I went ahead and did this. The only problem is with Outlook. I had to use the original installation CD in order to install it, but I can't import the data from my usual account. Any thoughts on how to overcome this?

Cheers (and thanks)

Jeremy

No problem, just logon with your original account and make a backup of your folders and addresses to a .pst file, then import that into the new installation, see directions here.