J
jimrainfordson
Well, I'm not an internet newbie, but soon I'll be switching to a high
speed connection for the first time. (cable). I've been reading
through old posts in this newsgroup and I'm feeling a bit overwhelmed
as if there's no real way to rest assured my PC is protected. I
couldn't find a FAQ for this group, so I'll gladly go do more research
if my questions are too basic. In this case a link or reference is
appreciated along with the flame.
Bascially, what I do on my PC is browse the web and stream online radio
(via WMP) but I have a son who will ocassionally play online games.
Although I've been very strict about pirated sofware, every once in a
while he gives into temptation usually via a friend's CD rather than
directly downloaded from the Internet. I don't think it's an issue
anymore, but there's always that slight doubt with teenagers.
Furthermore, I am not on any kind on LAN. I don't do any kind of
instant messaging. I have occasionally used IE in FTP mode just to
upload images to a personal website. (It's just a basic webpage for
family to see all ISP based). I try to keep plug-ins and 3rd party
apps to a minimum. I'm on XP (regularly updated) and I use M$ software
like Outlook Express, IE6 and WMP. I currently use Zone Alarm. I
haven't consistently used anti-virus software but I ocassionally
download and run anti-spyware and anti-trojain software. So far I've
never had a problem, but I guess I've just been lucky.
While I would hate to have to deal with all the problems of a virus
infection, by far my primary concern is security from someone
discovering the username and password I use to log into financial
websites like my local bank or to check my investments. (I only have a
few thousand invested but it's my money and I'd like to keep it that
way).
To my understanding, due to high encryption, the only practical way for
a hacker to steal my username and password would be for them to install
a text-capturing-application (via some kind of trojain) and have it run
while I log in then phone home later. Is this bascially true?
To my understanding there are other things I can do to promote
security, including:
Get a dynamic IP Address.
Get a router even though I don't have a LAN because the router will
help keep my PC anoynmous, almost like an dynamic IP. Not sure how
this works.
Get a good Firewall. (I currently run Zone Alarm). For best security
is it better to get a hardware Firewall or is an updated software
firewall just as good?
Other than turning the power off, is there a good simple (automated?)
method for turning off internet access during times when there is no
reason to be online? My firewall (ZA) has a panic button to block all
incoming and outgoing transfers. Assuming my firewall hasn't been
compromised, does this offer the same protection as not being online at
all?
I'd rather keep using IE and OE and WMP because they are well supported
and help me to avoid unecessarly hassles with viewing pages or using
the internet. I feel comfortable using these apps so long as I keep
them updated.
I have enough componets to build a second PC. I've been considering
keeping a second PC on hand just for using to check my bank account and
to check my investments. (I would still use my regular PC for internet
shopping. I figure if I get hacked and my credit card is compromised at
least that's fraud protected.)
When I use it I figure I'll directly hook up my secondary PC (rather
than going through a LAN). I'll set it to automatically update my OS
and my firewall, virus checker, etc... and then I'll only go online
long enough to check my account then shut the computer down and
disconnect again. Is is a practical idea or am I just being paranoid?
Will I be able to use anti-virus software on two different PCs in this
manner or will most companies require me to buy to licenses?
Beyond that what does a hacker look for when port scanning or otherwise
invading a PC. Assuming I ever do get compromised is there anything I
can do to make my local computer look less inviting? In other words,
what do hackers look for? How much is protection about keeping
yourself hidden verses protecting yourself AFTER you've been hacked or
been infected with a trojain? If I understand better what Hackers are
looking for I might be able to make myself look like less of a target.
Given my concerns and the old posts I've read from this newsgroup, I'm
leaning towards Kaspersky for an anti-virus program. However, scanning
for trojains every hour seems very excessive and draining to processing
power.
All comments welcome, including those that redirect me to good links
for more homework.
Thanks
speed connection for the first time. (cable). I've been reading
through old posts in this newsgroup and I'm feeling a bit overwhelmed
as if there's no real way to rest assured my PC is protected. I
couldn't find a FAQ for this group, so I'll gladly go do more research
if my questions are too basic. In this case a link or reference is
appreciated along with the flame.
Bascially, what I do on my PC is browse the web and stream online radio
(via WMP) but I have a son who will ocassionally play online games.
Although I've been very strict about pirated sofware, every once in a
while he gives into temptation usually via a friend's CD rather than
directly downloaded from the Internet. I don't think it's an issue
anymore, but there's always that slight doubt with teenagers.
Furthermore, I am not on any kind on LAN. I don't do any kind of
instant messaging. I have occasionally used IE in FTP mode just to
upload images to a personal website. (It's just a basic webpage for
family to see all ISP based). I try to keep plug-ins and 3rd party
apps to a minimum. I'm on XP (regularly updated) and I use M$ software
like Outlook Express, IE6 and WMP. I currently use Zone Alarm. I
haven't consistently used anti-virus software but I ocassionally
download and run anti-spyware and anti-trojain software. So far I've
never had a problem, but I guess I've just been lucky.
While I would hate to have to deal with all the problems of a virus
infection, by far my primary concern is security from someone
discovering the username and password I use to log into financial
websites like my local bank or to check my investments. (I only have a
few thousand invested but it's my money and I'd like to keep it that
way).
To my understanding, due to high encryption, the only practical way for
a hacker to steal my username and password would be for them to install
a text-capturing-application (via some kind of trojain) and have it run
while I log in then phone home later. Is this bascially true?
To my understanding there are other things I can do to promote
security, including:
Get a dynamic IP Address.
Get a router even though I don't have a LAN because the router will
help keep my PC anoynmous, almost like an dynamic IP. Not sure how
this works.
Get a good Firewall. (I currently run Zone Alarm). For best security
is it better to get a hardware Firewall or is an updated software
firewall just as good?
Other than turning the power off, is there a good simple (automated?)
method for turning off internet access during times when there is no
reason to be online? My firewall (ZA) has a panic button to block all
incoming and outgoing transfers. Assuming my firewall hasn't been
compromised, does this offer the same protection as not being online at
all?
I'd rather keep using IE and OE and WMP because they are well supported
and help me to avoid unecessarly hassles with viewing pages or using
the internet. I feel comfortable using these apps so long as I keep
them updated.
I have enough componets to build a second PC. I've been considering
keeping a second PC on hand just for using to check my bank account and
to check my investments. (I would still use my regular PC for internet
shopping. I figure if I get hacked and my credit card is compromised at
least that's fraud protected.)
When I use it I figure I'll directly hook up my secondary PC (rather
than going through a LAN). I'll set it to automatically update my OS
and my firewall, virus checker, etc... and then I'll only go online
long enough to check my account then shut the computer down and
disconnect again. Is is a practical idea or am I just being paranoid?
Will I be able to use anti-virus software on two different PCs in this
manner or will most companies require me to buy to licenses?
Beyond that what does a hacker look for when port scanning or otherwise
invading a PC. Assuming I ever do get compromised is there anything I
can do to make my local computer look less inviting? In other words,
what do hackers look for? How much is protection about keeping
yourself hidden verses protecting yourself AFTER you've been hacked or
been infected with a trojain? If I understand better what Hackers are
looking for I might be able to make myself look like less of a target.
Given my concerns and the old posts I've read from this newsgroup, I'm
leaning towards Kaspersky for an anti-virus program. However, scanning
for trojains every hour seems very excessive and draining to processing
power.
All comments welcome, including those that redirect me to good links
for more homework.
Thanks