How to be safe on the internet

[pencil]

* Buy a router
* Don't use IE
* Check your startup programs every day

That's it, unless you run you open ports deliberately.

 

[Lius]

safest way is best not to use a computer

 

[Luka Pribanic Lux]

* Buy a router
* Don't use IE
* Check your startup programs every day

That's it, unless you run you open ports deliberately.

Don't agree. I have no router, use IE/OE all the time, I never check my
startup programs (well, once in a month maybe, but not cos I'm looking for
trojans or something), and I even don't patch my OS and/or programs other
than using service packs maybe (and I'm still on SP1) - and I am as safe as
it gets. Being safe anywhere in this world, and doing anything is just about
knowing what you do and HOW you do it.

 

[Ionizer]

Don't agree. I have no router, use IE/OE all the time, I never check my
startup programs (well, once in a month maybe, but not cos I'm looking for
trojans or something), and I even don't patch my OS and/or programs other
than using service packs maybe (and I'm still on SP1) - and I am as safe as
it gets. Being safe anywhere in this world, and doing anything is just about
knowing what you do and HOW you do it.

You're not "as safe as it gets" by any means. When Microsoft releases a
security patch, the bad guys immediately get to work trying to exploit the
vulnerability in question. They apparently do so by reverse-engineering
the patch itself, and it doesn't take them long:
http://news.bbc.co.uk/1/hi/technology/3485972.stm That way they can screw
around with people such as yourself, who don't apply the security patch.

I'm still on XP SP-1 myself, but I've applied all the other critical
patches before and since its release. In another week or so I'll finally
get around to following my own advice and install SP-2.

Regards,
Ian.

 

[Guest]

I disagree aswell. However, I do agree IE is very unsafe.
I use Opera, which is considerably safe, as long as you use it with a virus
scanner (ie Avast!).

You just need the following software:
- Opera
- Avast! Anti-virus
- Black Ice, Zone Alarm or Outpost (or any other good firewalls)
- Reasonable updates, although I don't recommend WinXP-SP2.

If you're in a network, make sure the server is protected well enough.
Don't open any ports, make sure you don't have trojans on it.

The other PC's in your network should be safe from hackers, too.
However, if you don't have an AV program I think you'd soon be caught with
the JPEG-worm.

Bart

 

[Bob Adkins]

* Buy a router
* Don't use IE
* Check your startup programs every day

That's it, unless you run you open ports deliberately.

Awwww come on. Get real.

A firewall, AV, anti-Trojan, anti-spam, anti-spyware, and common sense are
all you need. A program like WinPatrol is nice for warning you about
hijackers, startup changes, and HOSTS changes, but not an absolute
necessity.

My main advice? Keep your OS updated, stay off the dangerous web sites, and
don't open e-mail from strangers.

-- Bob

 

[Chrissy Cruiser]

My main advice? Keep your OS updated, stay off the dangerous web sites

No PORN? Painful, yes i said it, painful.

 

[Chaos Master]

pencil to stdout:

* Buy a router
* Don't use IE
* Check your startup programs every day

I use IE. I don't have a router (I'm on dial-up and AFAIK it was against
the terms of service of my local broadband ISP to use a router .. don't
know if it still is).

Yet, I have never got a virus (spyware just once, when someone installed
Kazaa without my authorization -- even thought I already had WinMX, eMule
and Soulseek)

[]s
--
Chaos Master®, posting from Canoas, Brazil - 29.55° S / 51.11° W

"Sing what you can't say / forget what you can't play
Hasten to drown into beautiful eyes / Walk within my poetry, this dying
music"
- My loveletter to nobody


My e-mail address is renanDOTbirckATgmailDOTcom [DOT=. AT=@].
DON'T SPAM IT. REPLY TO NEWS UNLESS I ASK YOU TO REPLY BY MAIL
UNWANTED REPLIES = PLONK TO WHO SENT THEM.

 

[lilbear]

sites

No PORN? Painful, yes i said it, painful.

Ouch. Owwee! Ouch.
Without the porn, what's the point of living?
Or at least the internet.
Good thing it's possible to be smart and a pervert...

 

[Luka Pribanic Lux]

You're not "as safe as it gets" by any means. When Microsoft releases a
security patch, the bad guys immediately get to work trying to exploit the
vulnerability in question. They apparently do so by reverse-engineering
the patch itself, and it doesn't take them long:
http://news.bbc.co.uk/1/hi/technology/3485972.stm That way they can screw
around with people such as yourself, who don't apply the security patch.

I'm still on XP SP-1 myself, but I've applied all the other critical
patches before and since its release. In another week or so I'll finally
get around to following my own advice and install SP-2.

Well, 99% of computer attacks are made automaticaly through viruses/trojans
and such. With firewall (software one), antivirus and a bit of care for your
computer you're safer than just by "checking your startup programs every
day" :>

 

[Luka Pribanic Lux]

I disagree aswell. However, I do agree IE is very unsafe.
I use Opera, which is considerably safe, as long as you use it with a virus
scanner (ie Avast!).

You just need the following software:
- Opera
- Avast! Anti-virus
- Black Ice, Zone Alarm or Outpost (or any other good firewalls)
- Reasonable updates, although I don't recommend WinXP-SP2.

If you're in a network, make sure the server is protected well enough.
Don't open any ports, make sure you don't have trojans on it.

The other PC's in your network should be safe from hackers, too.
However, if you don't have an AV program I think you'd soon be caught with
the JPEG-worm.

Well, that's about same like I do. Only difference is Opera vs IE. I do use
Maxthon as "IE addon" browser (kinda like shell that uses IE engine). It
blocks popups and has a neat filters, and that's where 99% of malware come
through in IE. I did try once using popup blocker and filter off.. I got a
trojan warrning from my antivirus in first minute of surfing. Keeping
blocking turned on, and never have problems..

 

[Luka Pribanic Lux]

No PORN? Painful, yes i said it, painful.

Hehe, still possible if you are carefull enough, just that's it's safer no
to visit sites like these and all those "underground" and/or forbidden ones
and such.. )))

 

[Chaos Master]

Luka Pribanic Lux to stdout:

Hehe, still possible if you are carefull enough, just that's it's safer no
to visit sites like these and all those "underground" and/or forbidden ones
and such.. )))

All my porn comes from IRC channels dedicated to file sharing.

Since my IRC client (mIRC, not freeware, but this doesn't matter) is
configured to ignore all sends that aren't audio/video/image files, I
feel safe.

And to visit suspect sites I use a really old version of Mozilla.

[]s
--
Chaos Master®, posting from Canoas, Brazil - 29.55° S / 51.11° W

"Sing what you can't say / forget what you can't play
Hasten to drown into beautiful eyes / Walk within my poetry, this dying
music"
- My loveletter to nobody


My e-mail address is renanDOTbirckATgmailDOTcom [DOT=. AT=@].
DON'T SPAM IT. REPLY TO NEWS UNLESS I ASK YOU TO REPLY BY MAIL
UNWANTED REPLIES = PLONK TO WHO SENT THEM.

 

[xmp]

And to visit suspect sites I use a really old version of Mozilla.

Mozilla (esp older versions) does have vulns but they are not seen in
the wild much (vs IE). i collect some forms of malware, so i use
hardened IE and Mozilla and K-meleon to surf those sites. safer still
would be a browser with little to no interpretation of scripting
languages, e.g. links, lynx, Amaya, and Dillo. of those, I consider
Dillo to be the most stable and functional.

michael

 

[xmp]

* Buy a router

with NAT. or an SPI firewall. either can block inbound unless it
conforms to a specific port forwarding rule.

* Don't use IE

or harden it with hosts file, Prevx, Qwik-Fix, SP2, etc. (all but one of
those is free.)

* Check your startup programs every day

or use a reg entry monitor that prevents unauthorized new entries.

That's it, unless you run you open ports deliberately.

i harden and patch my services, so open ports are generally a non-issue.

michael

 

[xmp]

You're not "as safe as it gets" by any means. When Microsoft releases a
security patch, the bad guys immediately get to work trying to exploit the
vulnerability in question. They apparently do so by reverse-engineering
the patch itself, and it doesn't take them long:
http://news.bbc.co.uk/1/hi/technology/3485972.stm That way they can screw
around with people such as yourself, who don't apply the security patch.

often the "evil hackers" find the exploit first e.g. people like Last
Stage of Delerium and Georgi Guninski. the patch though can be used as
a hint if very little information is released about the exploit.

the typical scenario is:
a) hacker finds exploit
b) microsoft is given X weeks
c) exploit goes public with limited details
d) other hackers develop working PoC (proof of concept) code
e) blackhat hackers further develop the code
f) sometimes a worm or autorooter follows

zero day exploits are a noteable exception to this.

michael

 

[xmp]

Well, 99% of computer attacks are made automaticaly through viruses/trojans
and such. With firewall (software one), antivirus and a bit of care for your
computer you're safer than just by "checking your startup programs every
day" :>

there are plenty of programs designed to defeat software firewalls and
AV e.g. Hacker Defender, Optix Pro. this is why it's good to understand
computers themselves, not just point-and-click security software.
however, the average user just wants something that works, so
consumer-grade FW and AV are a good compromise.

an oft overlooked vuln is extra software. that old version of AIM or
Yahoo messenger may have several remote admin holes. the FW / AV may
come in handy to block some of these attacks.

michael

 

[xmp]

Hehe, still possible if you are carefull enough, just that's it's safer no
to visit sites like these and all those "underground" and/or forbidden ones
and such.. )))

i've been using computers since 1986 and only encountered a couple of
pieces of true malware accidently. one was a macro virus emailed from
some idiot on AOL (failed). another was a malicious javascript in a
banner ad that tried to put the Rameh downloader on my machine (failed
also).

i have run into plenty of spyware, but much of that was not coming in
via IE but was probably bound to shady freeware. often spyware isn't
very malicious anyway and comes from real companies with real programmers.

so long as you patch your OS and apps, you are often safe. for the
paranoid, add a hardware and software FW, harden IE or use Mozilla,
disable unneeded services, use HIPS (host intrusion prevention system),
harden the OS, add hosts file, etc. there are lot of basic books on
security that cover this e.g. Hack Proofing Your Network, Hacking
Exposed, or maybe even Wang's or Meinel's books.

i've always thought it's easy to block a generalized attack such as
malicious banner ads or trojans. however, a specific attack such as
angry IRC user may be harder to fend off, particularly if you run
servers. a dedicated attacker may wait weeks or months for the proper
exploit to surface.

michael

 

[Chrissy Cruiser]

there are plenty of programs designed to defeat software firewalls and
AV e.g. Hacker Defender, Optix Pro. this is why it's good to understand
computers themselves, not just point-and-click security software.
however, the average user just wants something that works, so
consumer-grade FW and AV are a good compromise.

Bottom line is that the vast majority of computers are hopelessly at risk
and will, given time, take the "big hit."

And I will tell you who's fault it is. Susan Buggher.

No, Bush. He fired John Poindexter, let the Demos close down Total
Information Systems. Data mining has shrunk from view.

"Keep your friends close but keep your enemies closer."

 

[Chrissy Cruiser]

Hehe, still possible if you are carefull enough, just that's it's safer no
to visit sites like these and all those "underground" and/or forbidden ones
and such.. )))

Someone ought to put together a freeware porn browser that will allow us
deviants to have safe masturbation.