GO said:
It means to lock the client down to prevent any exploits from taking hold of
your PC. In the case of OE that means configuring the security settings so
it uses the "Restricted site zones" and said zone is configured to not allow
scripting, etc.
Yes, I'm running AV software but my mail is not monitored by it.
Regardless of all the software you may use, you can only be really
protected from online attack by a thorough habit of self-defense.
DO NOT download from sites that cannot be trusted. And do not trust
easily. Your "friends" are your worst enemy in this regard, as they may
be naive or just plain malicious. A site that employs sleezey methods
(javascript, flash, etc) or can be uploaded to without proper screening,
is not a site to get anything from, whether you can screen it or not
(hackers are always working on ways to get past even the latest filters).
DO NOT accept mail or other transfers from anyone unless you know them,
are expecting it, and even then SCAN EVERYthing you get before opening it.
DO NOT let your email program execute anything, not even the opening of
a zip file, since the ext of a file in windows does not actually control
what the OS does with it (a zip file may actually be an exe file in
disguisse).
DO NOT run any activeX, Java Script (script is not actually java, it is
a microsoft invention, and is capable of doing horrendous damage if
turned full on), or (after a recent attack discussed in
news.admin.net-abuse.email) shockwave flash. If you want to watch
movies go get a DVD. All these things can do much damage to your
machine. If you do run a few JS functions you must run a proxy system
like proxomitron (no longer supported, but good, and there are others),
which allows you to finely tune what is allowed on your browser and what
is not. It stops popups, ads in general, and a lot of JS and html mischief.
Assume anything new from microsoft has bugs and unexpected ratware (you
find out what XP does behind your back, you will need a quick trip to
the toilet).
And do control your mail situation. This system ** costs me an extra
few bux a month, but I have received only 3 spams in the last two years
as a resilt. And remember, many spams carry virus/trojan/worm attacks
that can turn your machine into a zombie in control of the spammer, who
takes your bank account, your machine, your everything, and then pumps
his spam from your address from then on.
**
http://www.seige-perilous.org/spam/spam-free.html
Protect yourself at all times from these few insane bastiges. The only
healthy attitude when it comes to computer defense is hardly any
different from paranoia. The result of this attitude is that the last
successful attack against me was back in 1997, a couple of winnukes
before I figgered out what it was and how to stop that. Your mileage
may vary.
