RE: [fw-wiz] The home user problem returns

StefanDorn_at_bankcib.com
Date: 09/14/05

  • Next message: Brian Loe: "RE: [fw-wiz] The home user problem returns" 
    To: firewall-wizards@honor.icsalabs.com
Date: Wed, 14 Sep 2005 09:04:52 -0500

    Let me get this straight,

    You 'secured' your wife's PC by removing a few pieces of software, put
    Mozilla on it, slapped on some freeware spyware detection and just let 'er
    rip?

    Rule #1: Don't let a system access the internet unless you've secured the
    access, and know exactly what's allowed inbound and outbound through your
    network.

    Rule #2: Don't let people who don't know what they are doing run with
    administrative permissions, or full access to your network services.

    Rule #3: If you run Windows, get an antivirus and configure it to scan
    everything that comes in and out of the system, be it a read/write
    operation or network traffic. It's not the ideal solution, but until
    Microsoft makes their OS a little smarter, you need it.

    I think user education is important. However, there needs to be a control
    for those people who simply refuse to learn it. Using Marcus' car buying
    analogy, you could take it a step further by looking at people getting
    licensed to drive. Driving without a license can land you a fine or in
    jail for a night, or if you were to get in an accident, you can encounter
    some serious legal repercussions.

    People who refuse to learn the rules of the road don't get licenses, and
    if someone who is licensed breaks the rules too many times, their license
    and record can be marked and/or revoked.

    ISPs could adopt this model by either classifying users based on testing
    them on their knowledge (take a few web based tests about web security or
    something, and the ISP will open up more ports/access for you?), or
    perhaps by basing it on limiting or locking out repeat offenders.

    Stefan Dorn

    firewall-wizards-admin@honor.icsalabs.com wrote on 09-13-2005 07:39:53 PM:

    > hermit921 <hermit921@yahoo.com> wrote:
    > >
    > [snip]
    > >
    > > On the good side, I have a friend who is almost totally computer
    > > illiterate, but has never had a virus or spyware or any other malware.
    > > Rule #1: never double click any attachment. If you have to open it,
    choose
    > > a program that should open that type of file and do a File -> Open.
    > > Blindly following these rules has kept her safe for over 10 years. So
    I
    > > know people can learn, at least by rote, regardless of understanding.
    > > Rule #2: never use Microsoft software. This probably helps an immense

    > > amount, too.
    > [snip]
    >
    > Your friend could be my wife. WinXP (home edition) for some three
    > years or so. (She *insisted* on having a 'doze PeeCee.) OE was
    > *immediately* removed from the desktop and replaced with Pegasus. IE
    > was *immediately* de-fanged (turned off all the ActiveTrojan stuff),
    > then used to fetch Mozilla. Wife was told "Use this. Use the other
    > only if this doesn't work.") Computer's behind a "firewall router"
    > (configured by your's truly, naturally). Same aggressive mail server
    > filtering rules as at work. I only a week or two ago finally broke
    > down and put AV software on it, because one of her correspondents
    > insisted my wife was sending her infected JPEGs. (She wasn't.) She
    > has had SpyBot S&D for some time, and uses it religiously.
    >
    > It can be done. I've seen it with my own eyes.
    >
    > Jim
    > _______________________________________________
    > firewall-wizards mailing list
    > firewall-wizards@honor.icsalabs.com
    > http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

  • Next message: Brian Loe: "RE: [fw-wiz] The home user problem returns"

    Relevant Pages

    • Re: OT: Medical Coverage (was: Trump or Tramp?)
      ... How would the poor fellow make a living without his license? ... His wife was somewhat dismayed to see her husband ... the Board of Medical Examiners sometimes suspends licenses ... Halprin was convicted and sentenced to a year in jail and eight years ...
      (rec.bicycles.tech)
    • Re: Jump Start 05/03/06 - drop a name, go to jail
      ... Marcy can SO lose her license for violating HIPAA! ... My wife couldn't tell ... us if a close family friend or even a relative was in her hospital without ...
      (rec.arts.comics.strips)
    • Re: Private/Commercial pax question
      ... If your wife takes a load of Mexicans for a ride or carries ... |>> They'd have to pull my ticket then, because my reason ... | My wife has a commercial driver's license. ...
      (rec.aviation.student)
    • car insurance
      ... wife and daughter are in UK, where my daughter will stay for one year to ... She is 17 years old and whilst she has a license to drive ... It seems a lot has changed in relation to UK insurances and my wife has had ... One of the problems with the online options for quotes is that if you do not ...
      (uk.finance)
    • Re: Allow users without Access 97 ability to view data and search data in tables.
      ... You can download OpenOffice.org free of charge from www.openoffice.org ... OO Base doesn't use VBA, but it own "OpenOffice Basic" Language. ... Check out www.gnu.org about the "Free" license. ... "Mozilla" are using the GNU license. ...
      (comp.databases.ms-access)