Re: Network Security Help Please
From: Chuck (none_at_example.net)
Date: 08/26/04
- Next message: kmcbkccjc: "Re: Unable to connect to Internet w/McAfee Personal Firewall"
- Previous message: strict9: "Re: Compiling example code from OPSEC SDK"
- In reply to: Stuart Gibson: "Network Security Help Please"
- Next in thread: Stuart Gibson: "Re: Network Security Help Please"
- Reply: Stuart Gibson: "Re: Network Security Help Please"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 26 Aug 2004 14:12:03 -0500
On Thu, 26 Aug 2004 15:08:01 +0100, "Stuart Gibson" <no e-mail address> wrote:
>At the moment, I have 2 machines using ICS for Internet access, but I am
>going to set up a proper home network at the weekend.
>
>My 3 machines will be connected to a Netgear ADSL modem/firewall/router.
>
>I have anti-virus software installed on each machine, but only have a
>software firewall installed on my main machine (see sig below) which has my
>printer & scanner connected to it.
>
>As each machine will be able to connect directly to the Internet through the
>router, will I need to install a separate software firewall on each machine
>on my home network ?
>
>TIA,
>
>Stu.
Stu,
The Netgear router will protect you from hostile incoming network traffic. It
won't protect you from unwanted outgoing network traffic.
The router is the outermost portion, only, of a good layered defense. Each
layer is necessary because no layer produces complete protection. Your AV
software is a significant portion of another layer.
The second layer is a software firewall, or a port monitor like Port Explorer
(free) from <http://www.diamondcs.com.au/portexplorer/index.php?page=home>,
either which will detect unknown applications generating outgoing network
traffic. See various discussions in comp.security.firewall for good advice on
choosing a firewall.
The third layer is good software. This layer has multiple components.
AntiVirus protection. Realtime, plus a regularly scheduled virus scan.
Regularly updated.
Adware / spyware protection. Realtime, plus a regularly run adware / spyware
scan. Regularly updated.
Complete instructions, using Spybot S&D and HijackThis (both free) are here:
<http://forums.spywareinfo.com/index.php?showtopic=227>.
Harden your browser. There are various websites which will check for
vulnerabilities, here are three which I use.
http://www.jasons-toolbox.com/BrowserSecurity/
http://bcheck.scanit.be/bcheck/
https://testzone.secunia.com/browser_checker/
Block Internet Explorer ActiveX scripting from hostile websites (Restricted
Zone).
<https://netfiles.uiuc.edu/ehowes/www/main.htm> (IE-SpyAd)
Block known dangerous scripts from installing.
<http://www.javacoolsoftware.com/spywareblaster.html>
Block known spyware from installing.
<http://www.javacoolsoftware.com/spywareguard.html>
Make sure that the spyware detection / protection products that you use are
reliable:
http://www.spywarewarrior.com/rogue_anti-spyware.htm
Harden your operating system. Check at least monthly for security updates.
http://windowsupdate.microsoft.com/
Block possibly dangerous websites with a Hosts file. Three Hosts file sources I
use:
http://www.accs-net.com/hosts/get_hosts.html
http://www.mvps.org/winhelp2002/hosts.htm
(The third is included, and updated, with Spybot (see above)).
Maintain your Hosts file (merge / eliminate duplicate entries) with:
eDexter <http://www.accs-net.com/hosts/get_hosts.html>
Hostess <http://accs-net.com/hostess/>
Secure your operating system, and applications. Don't use, or leave activated,
any accounts with names or passwords with trivial (guessable) values. Don't use
an account with administrative authority, except when you're intentionally doing
administrative tasks.
The fourth layer is common sense. Yours. Don't install software based upon
advice from unknown sources. Don't install free software, without researching
it carefully. Don't open email unless you know who it's from, and how and why
it was sent.
The fifth layer is education. Know what the risks are. Stay informed. Read
Usenet, and various web pages that discuss security problems. Check the logs
from the other layers regularly, look for things that don't belong, and take
action when necessary.
Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
- Next message: kmcbkccjc: "Re: Unable to connect to Internet w/McAfee Personal Firewall"
- Previous message: strict9: "Re: Compiling example code from OPSEC SDK"
- In reply to: Stuart Gibson: "Network Security Help Please"
- Next in thread: Stuart Gibson: "Re: Network Security Help Please"
- Reply: Stuart Gibson: "Re: Network Security Help Please"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
