Re: Network Security Help Please

From: Stuart Gibson (no)
Date: 08/26/04 

Date: Thu, 26 Aug 2004 21:41:03 +0100

Wow!

That's a pretty comprehensive list you've got there.

I already have a fairly hardened system using Tiny Firewall Pro 6.0 on the
machine that connects to the Internet. I have tested it with Shields Up! at
www.grc.com where it found a couple of open ports. These are now closed!

I've got Ad-Aware and a couple of pop-up stoppers, and I've disabled all the
unnecessary services, but I'm certainly going to look at all the links you
suggested.

Thanks Chuck,

Stu.

"Chuck" <none@example.net> wrote in message
news:3rcsi01jg4hkpss4jshn6f91e6pi0ut9b7@4ax.com...
> On Thu, 26 Aug 2004 15:08:01 +0100, "Stuart Gibson" <no e-mail address>
wrote:
>
> >At the moment, I have 2 machines using ICS for Internet access, but I am
> >going to set up a proper home network at the weekend.
> >
> >My 3 machines will be connected to a Netgear ADSL modem/firewall/router.
> >
> >I have anti-virus software installed on each machine, but only have a
> >software firewall installed on my main machine (see sig below) which has
my
> >printer & scanner connected to it.
> >
> >As each machine will be able to connect directly to the Internet through
the
> >router, will I need to install a separate software firewall on each
machine
> >on my home network ?
> >
> >TIA,
> >
> >Stu.
>
> Stu,
>
> The Netgear router will protect you from hostile incoming network traffic.
It
> won't protect you from unwanted outgoing network traffic.
>
> The router is the outermost portion, only, of a good layered defense.
Each
> layer is necessary because no layer produces complete protection. Your AV
> software is a significant portion of another layer.
>
> The second layer is a software firewall, or a port monitor like Port
Explorer
> (free) from
<http://www.diamondcs.com.au/portexplorer/index.php?page=home>,
> either which will detect unknown applications generating outgoing network
> traffic. See various discussions in comp.security.firewall for good
advice on
> choosing a firewall.
>
> The third layer is good software. This layer has multiple components.
>
> AntiVirus protection. Realtime, plus a regularly scheduled virus scan.
> Regularly updated.
>
> Adware / spyware protection. Realtime, plus a regularly run adware /
spyware
> scan. Regularly updated.
> Complete instructions, using Spybot S&D and HijackThis (both free) are
here:
> <http://forums.spywareinfo.com/index.php?showtopic=227>.
>
> Harden your browser. There are various websites which will check for
> vulnerabilities, here are three which I use.
> http://www.jasons-toolbox.com/BrowserSecurity/
> http://bcheck.scanit.be/bcheck/
> https://testzone.secunia.com/browser_checker/
>
> Block Internet Explorer ActiveX scripting from hostile websites
(Restricted
> Zone).
> <https://netfiles.uiuc.edu/ehowes/www/main.htm> (IE-SpyAd)
>
> Block known dangerous scripts from installing.
> <http://www.javacoolsoftware.com/spywareblaster.html>
>
> Block known spyware from installing.
> <http://www.javacoolsoftware.com/spywareguard.html>
>
> Make sure that the spyware detection / protection products that you use
are
> reliable:
> http://www.spywarewarrior.com/rogue_anti-spyware.htm
>
> Harden your operating system. Check at least monthly for security
updates.
> http://windowsupdate.microsoft.com/
>
> Block possibly dangerous websites with a Hosts file. Three Hosts file
sources I
> use:
> http://www.accs-net.com/hosts/get_hosts.html
> http://www.mvps.org/winhelp2002/hosts.htm
> (The third is included, and updated, with Spybot (see above)).
>
> Maintain your Hosts file (merge / eliminate duplicate entries) with:
> eDexter <http://www.accs-net.com/hosts/get_hosts.html>
> Hostess <http://accs-net.com/hostess/>
>
> Secure your operating system, and applications. Don't use, or leave
activated,
> any accounts with names or passwords with trivial (guessable) values.
Don't use
> an account with administrative authority, except when you're intentionally
doing
> administrative tasks.
>
> The fourth layer is common sense. Yours. Don't install software based
upon
> advice from unknown sources. Don't install free software, without
researching
> it carefully. Don't open email unless you know who it's from, and how and
why
> it was sent.
>
> The fifth layer is education. Know what the risks are. Stay informed.
Read
> Usenet, and various web pages that discuss security problems. Check the
logs
> from the other layers regularly, look for things that don't belong, and
take
> action when necessary.
>
> Cheers,
> Chuck
> Paranoia comes from experience - and is not necessarily a bad thing.

Relevant Pages

  • Re: ISA Web Caching
    ... still provide another layer of protection if something were to ever get past ... >> possible to install ISA as just a web cache or not. ...
    (microsoft.public.windows.server.sbs)
  • Re: Is XP Firewall Sufficient?
    ... As you've indicated by your post, it (or any other software firewall) is only ... The first layer is a NAT router. ... AntiVirus protection. ... using Spybot S&D and HijackThis are here: ...
    (microsoft.public.windowsxp.perform_maintain)
  • Re: Deep Throat
    ... someone else using your computer) might download and install ... Further, because the ICF is a "stateful" firewall, it will also assume ... >> Sounds like your antivirus protection caught it and blocked you ...
    (microsoft.public.security.virus)
  • Re: Is Windows XP firewall any good?
    ... it is not the job of a firewall to protect You from ... important additional layer of protection by informing you about any ... allow someone else to install programs on Your computer. ... In most cases, for Your average user, it does. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Modem with NAT firewall, do I also need a software firewall?
    ... Zonealarm installed. ... Windows XP Firewall is enabled, ... If you need outgoing protection - you're already messed up. ... install from that hardware installation cd-ROM, ...
    (microsoft.public.windowsxp.hardware)