Author: hyrican

The content of this post does not reflect the opinion of the editors.


This workshop offers information and tips that should make it easier for newbies in particular to configure their computer securely, to get some background information and to surf the Internet "safely" without constantly catching malware.
The large number of further links offer extensive further information.

1. Browser

By default, Internet Explorer is a poorly and insecure browser that can easily be crashed by incorrectly programmed pages.
ActiveX is the source of many evils such as dialers installing themselves in the background or Trojans / worms / browser jokes.
It should therefore be deactivated in the browser or at least prompted to do so. Alternative browsers such as Opera or Mozilla (both with an integrated mail client) or Firebird (without a mail client) are better, more secure and with additional features such as PopUpBlocker.

Opera: opera-fansite.de
Mozilla: mozilla.kairo.at
Firefox: firefox.bric.de

Here is a browser check: heise.de

The next thing to mention is JavaScript.
It's generally pretty safe, but it reveals a lot of information about yourself.
See here: http://www.gurusheaven.de/index_sicherheit.html "target = blank> gurusheaven.de
Unfortunately, many pages do not work properly without JavaScript.
When it comes to Java, I also prefer the Sun version and not Microsoft's.


2. Email

Outlook is not a particularly good mail client because, due to its widespread use, many worms and viruses are written especially for it. It is also set insecure by default and security gaps are discovered again and again, which are often only partially fixed.
The safer and better alternative are also here other mail clients such as

Email: geve.de
TheBat: thebatworld.de
PegasusMail: www.bzs.tu-graz.ac.at
Thunderbird: thunderbird.bric.de

or simply the integrated mail clients from Opera or Mozilla.
These also have additional features such as filter lists and junk lists that can be used to delete spam emails directly on the server.
Here you can find a security test for e-mail programs

3. Firewall

Up and down the country there is the opinion that you could make your computer safe with a firewall.
That's not true.
A hardware firewall can secure a computer, provided it is configured correctly and whoever configures it understands how it works.
A desktop firewall definitely does not make the computer secure because it runs with the same rights as all other applications including Trojans, viruses and worms. This means that it can be levered out, tunneled, bypassed or simply switched off. I am not going into more detail about the technology of firewalls, that would go beyond the scope of this, I prefer to write informative links.

Summary, one can say "There is no one button security."

With the help of a desktop firewall you can learn which programs connect to the Internet and if you work with your firewall you can learn a lot about network protocols. Without knowing how a firewall works and how it is configured correctly, it is useless, annoying and dangerous because it suggests security without being able to keep this promise. Furthermore, it can itself contain security gaps, which means that the gap an attacker needs on a possibly securely configured computer is only created.

Here are the links:

iks-jena.de
stud.tu-ilmenau.de
pflock.de
ntsvcfg.de


It is safer than a firewall to configure the services that offer Internet functionalities under Windows, such as file and printer sharing or UPnP.

A guide for WinXP there here .
For Win2000 here

As well as the use of meaningful programs such as Active Ports (supernature-forum.de) that shows all connections and the associated applications that are set up on the Internet.
Here you will find port scanners to test whether services are offered on the web:
portscan.de
scan.sygate.com


4. Spyware

Many programs that can be found on the Internet bring program components with them that spy on you and send the collected information to the web.
Windows' own programs such as the MediaPlayer or the WinXP operating system also record user data and send it to the web.
To prevent this "espionage", there are various tools that detect and delete the spyware. Sometimes the program doesn't work anymore, but I think there are enough clean freeware alternatives on the web so that you can do without spyware-infested programs.
A good alternative to WindowsMediaPlayer is, for example, Winamp.
Here are some links to antispyware programs:
XP AntiSpy
AdAware
Spybot Search & Destroy
HiJackThis

 

 

 

5. antivirus

In my opinion, every computer connected to the Internet should have a virus scanner.
There are also plenty of them, the problem is which one is the right one?
Norton Antivirus is widespread but I can only smile tiredly at this scanner.
Soft signatures, bad unpacking engine that can hardly scan the simplest packaging formats
and on top of that, Norton digs deep into the system.
I've read too many reports that after uninstalling Norton and installing it
Another scanner found Trojans or worms on the PC.

Here are a few reviews of virus scanners: rokop-security.de

In my opinion Recommended antivirus programs make
KAV (Kaspersky)
AVK12 / AVK2004 (GData)
Nod32 (Use this scanner in conjunction with a Trojan scanner such as AntiTrojan!)

Freeware scanners are
AntiVir (H + BEDV) or Bitdefender
Of course, these also have their weaknesses, but they are always better than Norton.

Here you can find Online scanners and virus databases


6. Dialers

Often you will come across websites that ask you to download an access tool.
This is a dialer that connects you to expensive premium rate numbers.
The bill you receive at the end of the month is often several hundred euros.
The installation of such access tools must therefore always be rejected. The scam is also widespread
to offer the dialer in a popup and to install it in the background via ActiveX
the user does not even notice that he is connected to an expensive number.
It should be noted here that the dialer is only available for users with a modem dial-up connection or
with a network card with DSL and analog modem functionality and connected
Analog modem cable can dial in.
With a pure DSL connection, dialing in is not made via a phone number but via
a network registration so that dialers have no chance here.
In my opinion, this is the best tool to protect against dialers YAW .

Since according to the new telecommunications law in Germany only dialers can be used
who have been registered, this page helps an injured party: bo2005.regtp.de

As of recently, only registered dialers who are allowed to dial 09009 ..... number range
should be used.
Further information here: dialerschutz.de

7. General tips

Update, check back regularly for Windows updates and at least install the
any important updates that may be present, these keep the operating system up-to-date and
close at least the worst security holes.

MS Baseline Security Analyzer (Download ), checked various system settings
and whether all important updates are installed.

No program, no matter how good, can surpass your own brain.
That is why the following applies in principle don't click on anything whatever falls in front of the cursor.

If you are asked to install something on websites to see the offer
to always be able to No click, these are always dialers with which you can use expensive ones
Value added numbers is connected.

Note from Michael (Admin)
A click on no can sometimes trigger the installation,
because where it says no, it doesn't have to be no.
It is safer to close the active query window with the key combination ALT + F4.

Don't download anything what can be found but only through a program or tool
inform (e.g. at Google )

Everyone Check the download with the virus scanner before opening it.

Be careful when downloading from file sharing sites, there are viruses / worms / Trojans
very common.

Mail attachments from unknown senders do not open but delete.

Users from Win2000 or WinXP should not surf under an administrator account but
set up an account with limited rights under which you can surf.


8. Left

Here are some interesting websites that offer a lot of background information:

trojanerboard.de
rokop-security.de
surfing anonymously
bluemerlin-security.de
sites.inka.de
eisenheim.de
trojaner-info.de
home.pages.at/heaven

Information about the group policies:
group guidelines.de

 

___________________________________________________
This tip comes from www.win-tipps-tweaks.de
© Copyright Michael Hille

Warning:
Using Registry Editor or its tips incorrectly can cause serious system problems that may require you to reinstall your operating system. Tampering with the registry files and using the tips is at your own risk.