Announcement

Collapse
No announcement yet.

Computer Security

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Computer Security

    i didnt see a forum or thread here on retouch that is dedicated to computer/software security, so i thought i'd start one.

    10 years ago, computer security meant getting norton anti-virus and running it every once in a while. today, all that has changed. any more, you shld be running a suite of programs to protect your computer. this is partially due to the gaping holes microsoft left in the operating system and accomanying software and partially due to a proliferation in virus and malware makers. it was estimated not too long ago that there are now over 60,000 viruses for computers. and that's just the viruses. there are many forms of malware. malware is just a catch-all name that means any piece of software designed to do something to your computer that you dont want done. this can include viruses, trojans, worms, spyware, hijack-ware, spam, active attack viruses (like the blaster worm), key-loggers, call homes (a form of spyware), riders, pop-ups, and quite possibly some others i'm forgetting.

    the first best step in protection is education. learn what's out there and how to prevent it.

    viruses: this is probably the largest class of malicious programs. for my purposes here, i also include worms and trojans in this class. all of these are designed to something destructive to your computer, or, at the very least, something you dont want to happen. they can, if unprotected, wipe your harddrive, render your operating system inoperable, steal data from your machine, enable others to access the entire contents of your machine and other malicious actions.

    virus protection: norton anti-virus, trend micros online checker, AVG anti-virus, mcaffee anti-virus and others. if you're online, or get downloads of any kind, you NEED an anti-virus program and preferably one that does active checking of incoming files, including your email program, and preferably one that also checks any outgoing files so that you arent also infecting others.

    hijackers: hijackers are a class of programs that usually target your browser, and most specifically, internet explorer. these can include those which alter your home page, alter which search engine you use, alter your browser options settings in any way, render parts or all of your browser inoperable, add .dll's to your system, or rewrite existing .dll's, usually adding a 'check and write' program to it.

    hijack prevention: the best program to catch this class of program is 'Hijackthis'. this program was written specifically to catch hijacks. it searches your registry concerning the browser and lists all applicable apps or add-ons running in the browser and offers a way to remove them without destroying the browser. you do want to be careful with this one; you can remove things you dont want to, so study the docs and any online helps you can before using it.

    spyware: spyware is another class of program that can infect your system. generally speaking, spyware doesnt want to alert you that it's there. it doesnt want to destroy your system; it wants to send information about your system to someone else without you knowing about it. common uses are to gain credit card numbers, bank account numbers, personal information, email addresses for email advertising and anything else which the originator deems valuable.

    spyware prevention: ad-aware and spybot search and destroy are both excellent spyware removers. you shld prolly have both, as one may catch one type and the other another type. run them often.

    riders: riders are a class of program that are attached to another piece of software that you do want. you download the program you want and install it and suddenly you have another piece of software on your machine that you didnt know about and dont want. the 'rider' is sometimes malicious, sometimes spyware, and sometimes just fairly innocuous. these are classed as malware because they are almost always done surreptiously. you want A and you get A and B without you knowing you're getting B.

    rider prevention: i use a small program called Win Patrol to find and kill riders. i dont know of any others currently. Win Patrol starts up when i boot up the machine and i almost never turn it off. almost anything i install on my machine, win patrol will notice and ask me if it's ok to install. this can be a bit annoying, but it's also saved me from untold troubles. i've had several riders found by win patrol. it will also handle cookies. i dont allow many cookies on my machine. i consider them a sort of spyware almost. win patrol will notice any new cookie i do allow and ask me if i want to keep it or not.

    active port/ip scans: if you're on the internet, there are attempts going on to scan your machine and what ports are open on it and if you're vulnerable to an attack. the blaster worm was the first of a class of ACTIVE attack viruses and was VERY widespread. nobody even knew these were possible. it was always thought that to get a virus you had to download something, even if it was only an e-mail. the blaster worm changed all that. all you had to do to get infected by the blaster was to be online and have no firewall or router and you could be infected. port scans are also an active attack. or rather, they are a check to see if you are vulnerable to attack. a person can scan your internet address to see if anyone if there and if so, if they have any ports open and if so, can they get into your machine via those. these can result in very destructive results.

    active port/ip scan prevention: this one is simple. get a firewall or a router! and if you have one, turn it on! a firewall blocks other originated incoming traffic unless you allow it. when you browse, you are asking for the content on a site. you originate it. a port scan is originated by someone else. a firewall blocks the latter. it can even hide you from anyone even seeing that you are online. a router does the same thing. if you have windows XP then you have a firewall. if it's not on, turn it on! if you have windows xp service pack 2, then you have an even better firewall. personally, i dont use microsofts firewalls. i use zone alarm. they have a free basic firewall which is really quite good. they also have a pro version. there are others out there also which are reported to be quite good. get one and use it.

    there is a lot more that can be said on the subject, but that's some of the basics. i hope that others add to this thread and correct any mistakes i've made and also that folks will post some links to some of the prgrams i've mentioned and to the ones that they use also. be safe, folks

    Craig

  • #2
    Just a quick word on Firewalls.

    Windows Firewall, and the one that comes with SP2 are both one way. That is they block unwanted INCOMING intrusions. But, many programmes get onto your system because you put them there (knowingly or otherwise) and have a habit of calling home (possibly to download further crud onto you), so it is important to have a bi-directional firewall, that notifies you when a programme is trying to contact the internet. This can be an indication that you could have a problem that needs attention, (although many legit programmes may also call home looking for updates).

    There are a few Freeware firewalls available, one of which Zone Alarm Kraellin has already mentioned. Link http://www.zonelabs.com/store/applic...201&lid=nav_db

    Also below, links to various Anti Spyware and Anti Virus sites.

    Ad-Aware (Anti Spyware Scanner)
    http://www.lavasoft.de/

    Spybot Search and Destroy (Anti Spyware Scanner)
    http://spybot.safer-networking.de/en/index.html

    Spyware Blaster (Spyware Blocker)
    http://www.javacoolsoftware.com/spywareblaster.html

    Spyware Guard (Spyware Blocker)
    http://www.javacoolsoftware.com/spywareblaster.html

    WinPatrol (Spyware Blocker)
    http://www.winpatrol.com/

    IE Spyad (Spyware Blocker (adds unwanted sites to high security list in IE))
    https://netfiles.uiuc.edu/ehowes/www/resource.htm

    AVG (Anti Virus)
    http://www.grisoft.com/doc/1

    Final word on Anti Spyware scanners. There are an awful lot of bogus scanners available. Some detect spyware when you don't have any, some detect valid programmes as spyware and delete them, often causing system failure, some actually load spyware onto you. So be careful as to which programme you use.

    For a list of bogus spyware programmes, look here. http://www.spywarewarrior.com/rogue_...tm#trustworthy
    Last edited by Gary Richardson; 06-16-2005, 01:47 AM.

    Comment


    • #3
      thanks, Gary

      i also happened to think of another great resource for handling email spams and security. www.blackviper.com has a great piece on using email filters to block out and handle all the junk email one can get.

      and, that same site is highly recommended for getting rid of junk in windows that isnt needed and slows down one's machine.

      Craig

      Comment

      Related Topics

      Collapse

      • Craig Walters
        Two days of hell ... trojan horse probs
        by Craig Walters
        well, i've just spent the last two days trying to get rid of a virus, a trojan horse type, Zlob. this was one nasty sucker to get rid of. it hijacked my browser, stuck some 'security' software on my system, and drove me just about nuts for two days.

        part of this thing is the 'mssearchnet.exe'...
        04-12-2006, 11:50 PM
      • unimatrix001
        Computer problems: spyware mainly
        by unimatrix001
        I have been rather busy lately removing several spyware programs from computers. These people that i remove the spyware and viruses for, always ask me how they got it and if they can prevent it. I find it very hard to give them an answer they are happy with. Usually the first thing they say is i don't...
        09-25-2010, 03:10 PM
      • Doug Nelson
        [Software Review] GoToAssist Express
        by Doug Nelson
        This barely has anything to do with retouching, but it does offer file download and chat, so I guess it's justified to post this in the main Software area.

        I got some tech support from a company today that used an app called GoToAssist to remotely take over my computer. It used a browser-based...
        05-23-2008, 09:10 PM
      • rondon
        URGENT - Virus discovered on digital photo frames
        by rondon
        Hi Ron,

        Please pass this along to anyone you know with a digital picture frame that connects to a PC via USB. I have one, but I use a USB stick to load the photos. I thought it may be of interest to the photo-editing sites you frequent.

        Al

        -------- Original...
        02-18-2008, 09:33 PM
      • Sanda
        Turn them off?
        by Sanda
        There's probably been a thread on this before but I can seem to find it right now.(you watch I'll find it after I've posted this, lol)
        Even though I have a lot of memory I'm finding that I' running out of resources quite regularly. It seems the more memory I put in the more the computer seems...
        08-27-2002, 08:57 PM
      Working...
      X