Professional Documents
Culture Documents
Introduction
Keeping your computer secure will protect you against viruses, worms, spyware, hacking attempts, and password theft. Windows security is often neglected, but keeping a Windows computer secure requires just a few straightforward concepts:
Stay on top of Windows Security Updates Always have a Virus Scanner with Updated Definitions Every account on the computer should have a password Always run an updated Software Firewall Don't click on suspicious links and attachments Avoid and remove SpyWare
or some Microsoft software are discovered and patches are written approximately once per week. You can configure windows to install these Windows updates automatically. On Windows XP, the functionality is automatically included. On other versions of Windows, it is available as an update from the Windows Update website. The configuration for the automatic updates can be found in the Control Panel. On most versions of Windows there is an Automatic Updates icon. If you have XP service pack 2, your Automatic Updates should look like this:
If you have Windows XP and your Automatic Updates does not look like this, you are already behind on security updates. The recommended setting is to have the computer automatically download and install updates whenever you are online. This is especially useful for a lab computer or unattended computer. The second option can be useful for those who have good reason to leave some critical patches uninstalled. All other options should not be used. If you elect to install updates manually, you are responsible for installing them in a timely manner. There are some patches so critical to a system's security that they should be installed before the computer is ever put on a network. These differ depending on what
Another useful antivirus tool is the Stinger Tool from McAfee. Stinger is a standalone antivirus tool that does not require an install. It is a specialized tool that scans for the latest and most common virus threats only. Therefore, it should not be relied upon as your only virus protection, but it can be a useful tool to supplement your current antivirus program. Stinger can be downloaded from http://vil.nai.com/vil/stinger/
Every account on the system should either be disabled or password protected. It doesn't matter whether or not you are the only person who uses the computer or if the computer is in a secure locked office. The same password you use to log into the computer is effectively the same password someone would use to log into the computer via the network. Creating an account without a password is an invitation to hackers and worms. Most hackers and worms will try to hack into a computer by rapidly trying a list of passwords, including dictionary words and common passwords. In many password schemes, it is easy to test all approximately 200,000 English words in a matter of seconds. Conversely, testing all arbitrary 8 character passwords with non-letter characters takes thousands of years. This is why it is so important to make sure the passwords you choose are secure passwords.
If you have Windows XP, but you do not have a Windows Firewall Control Panel icon, you are behind on your security updates, and should download Service Pack 2. In the meantime, you may turn on the firewall inside of an internet connection according to our network documentation. If you are running other versions of Windows, such as Windows 2000, it is recommended to use a third-party firewall, such as Symantec Client Security, Symantec Personal Firewall, or Zone Alarm.
In the first few days after a virus is created, virus scanners cannot typically find it. Therefore, you should be wary of attachments, even if the virus scanner says it does not contain a virus.
You should always click No on windows that look like this unless you know exactly what it is you'd be installing. Windows XP Service Pack 2 may automatically try to block these installers. Reputable vendors such as Adobe and Microsoft are not known to include spyware addons with their software. Spyware add-ons usually come from smaller shareware programs and Peer-to-Peer network programs. Kazaa is known to install a large amount of spyware, including spyware programs that constantly download more spyware. Peer-
to-Peer network programs such as Kazaa, LimeWire, Morpheus, iMesh, and others should not be used on the ITS network. If you already have spyware on your computer (most people do), there are ways to remove it. However, these methods can lead to network problems, software malfunctioning, and result in Windows no longer starting. Therefore, the following methods are provided as-is, with no support, and it is strongly recommended that you backup your computer before attempting any of the following. Ad-Aware and Spy-Bot S&D are two programs that can be used to clean up spyware. These programs work similar to a virus scanner. They must be updated, then they scan the computer for spyware. It is recommended that you use the backup/quarantine features of these programs rather than deleting spyware outright.