Steve Thornburg's Computer Security and Software Resources page

NOTE that this page was originally created with Windows XP in mind, a few years ago.  This page has no Windows Vista information at this time.  For current Windows Vista computer security information, see my home page, and see my computer security software page as well.

The purpose of this page is simply to provide references to established sources of information regarding Computer Security and Software Security issues.  I will try to update this page as time permits, as well as to verify existing links.  Most of this information is not "mine" (not authored by me).  In fact, most of it is at or from various news sites.  The links found below lead to information that I have found useful either directly for myself, or in the process of helping others.  For more security information, visit  Computer Security News , where you can find hardware and software security references.  You can subscribe to  Computer Security Resources  here, if you want email notification when this page is updated.  A site map of stevethornburg.com can be found  here , if you want to see some of my other pages.

Today more than ever, the average computer user is at risk at any time that the computer has an active connection to the internet.  What was once simple browsing is now a high-risk engagement, where spammers, con-artists and criminals are doing everything possible to not only steal from you, but to take control of your computer as well.  These perpetrators of fraud are willing to go to any length to achieve their goal.  For example, while broswing to a seemingly reputable web site, your computer can become infected with spyware.  "How?", you ask.  It starts with a criminal setting up a false business.  That "business" then purchases ad space at the "legitimate" web site  -  and I use the term "legitimate" loosely because if they were really concerned about the safety of their visitors, they would take measures to ensure that the ad space they sell is not being used by criminals.  Anyway, the bogus ad banner links to a web page that tries to upload spyware into your computer.  Unfortunately, this behavior is much more common than most people choose to believe.  Perhaps more unfortunate is the fact that the success rate of those criminals is surprisingly high.  After some period of time, the "legitimate" site owner will become aware of the problem and remove the banner, and ban that particular business entity from future engagements.  Then the criminal simply contacts them with a different business name, and the cycle continues.  The vast majority of these criminals operate from servers outside of America, generally in countries that will not cooperate with our authorities.  There is speculation that various terrorist groups are heavily involved in this activity to raise revenue.  Even conservative estimates place the dollar amounts lost to spyware fraud in the billions every year, and the figure is growing rapidly.  And even small-time criminals are harvesting millions of dollars every year via spyware, spam fraud and other methods, all of which rely on a single weakness:  lack of computer security.

Feature Article: How to create a VPN for your wireless network December 2005, from TechTarget Windows Media by Brien M. Posey, MCSE This is another excellent article in a long line of excellent articles presented by the folks at TechTarget.  The article is presented in several chapters, including "Server requirements", "Server placement", "Setting up the certificate authority", "Configuring the authentication server", "Configuring the VPN server", and "Configuring wireless clients", and goes into good detail about what you need, and what you need to know to accomplish the task.  If you do not have much experience, here are some links to articles that cover some of the more preliminary aspects of learning about and setting up a Virtual Private Network . . . The first two are the best place to start that I know of . . .     Wikipedia, Virtual Private Network     Understanding Virtual Private Networks The remainder of sites listed below contain a wealth of information as well.  Happy reading . . .     IPSec, VPN, and Firewall Concepts (Cisco Systems)     Virtual Private Networks, a tutorial from the International Engineering Consortium (IEC)     FreeBSD Handbook,  Chapter 14: Security     Step-by-Step Guide for Setting Up VPN-based Remote Access in a Test Lab     Administrator's Guide to Microsoft L2TP/IPSec VPN Client     How Virtual Private Networks Work     Crypto for VPNs: Questions and answers     VPN - Virtual private Networking, an overview     VPN - Virtual private Networks - DEFINITION     How Virtual Private Networks Work

Steps to Secure Computer Operations for the Consumer Secure Your Access Point(s) » Make sure that your internet connection is as secure as possible (see links to information below).  This is particularly important if you have a unique IP address, such as with a cable connection for example. » Use a firewall.  Be sure it is configured correctly.  Run a security scan periodically. » If you are running a network, then be sure to secure all network connections.  This is particularly important if you are using a wireless connection to your internet portal.  Any/all wireless connections should always be made as secure as possible.  Remember, your wireless network communications can be intercepted from outside your home (links to wireless security resources, below).  If you are serious about protecting your network, install a honeynet, or honeypot.  Here's a link to a wealth of information about how to install and configure a honeynet - possibly the best network security method. » If you don't know how to configure security, call a professional. Secure Your Individual Machine(s) » Configure your computer for maximum security. » Use a firewall. » Install and maintain a current  hosts  file (thanks to Mike Burgess). » If your computer is running a Microsoft Windows™ operating system, disable services that are not required, and set a strong security policy.    Disabling unnecessary services adds the benefit of improved system stability and improved performance. » If you don't know how to disable/modify service behavior, or if you don't know how to configure a strong security policy, call a professional. Install and use Anti-Virus and Anti-Spyware software » Make sure you keep the applications up-to-date.  That is IMPORTANT. » I strongly recommend NOD32 for virus protection.  It is an excellent product, with excellent support. » For anti-spyware, I recommend SUPERAntiSpyware. Credit-card Purchases » Contact your bank to find out 1) if they offer single-transaction numbers, or 2) if they offer a card with a prepaid limit. » For a single-transaction number, the likelihood of fraud is greatly reduced.  For a prepaid limit, you simply transfer enough funds into the account immediately before making a purchase, again reducing the likelihood of fraud. » Always be careful where you shop.  If the business is located overseas, you are at greater risk.  If the business is not a "well established" business, you are at greater risk.  Take adequate precautions to protect yourself. » Visit the  Federal Trade Commission  web site often and check for Consumer Alerts, as well as other valuable information that is available there.  They maintain reports on common fraud schemes, and offer helpful "internet safety" tips. Browsing Habits » If your browser does not include a built-in "pop-up blocker", then  get one   (may not work with all browsers). » Avoid "freeware" and "shareware".  While much of it is perfectly legitimate, and often quite good, you should only install software that is known to be a safe quality product.  Sadly, there is a vast quantity of software available that introduces "ad-ware" and/or "spyware" into your computer.  When software is "free", you should stop to think about how the author is actually gaining any benefit from it.  While there are numerous exceptions, there are also numerous commercial software applications that are distributed with the sole intention of making profit, one way or another.  Be careful. » Avoid "no-name" software.  Again, some of it may be fine.  Unfortunately, some of it contains spyware - even some products that are sold in stores are guilty of this.  Always ask around, or find user comments and/or reviews of the software before you install it. » Until or unless Microsoft improves the security of Internet explorer, consider an alternative browser such as  Firefox .  It is safer than Internet Explorer, and it is free.  It is a quality product, introducing no instability into your system. » Do not indiscriminately click on banner ads or links. Using email » Until or unless Microsoft improves the security of Outlook express, consider an alternative email client such as  Thunderbird .  It is safer than Outlook Express, and it is free.  It is a quality product, introducing no instability into your system. » Do not configure your email client to operate in "preview" mode.  That is a severe security risk, and leaves your computer vulnerable to malicious content. » Do not open any email "attachment" that you were not expecting or that you are not positive is safe.  Spyware and virus code can send infected attachments without the knowledge of the computer owner, as well as with forged return address.  So even if the message claims to be from somebody you know, it is not necessarily so. » Do not indiscriminately click on banner ads or links within emails. Using an Instant Messenger » Don't.  So far, "instant messenger" software simply is not safe.  It opens a door directly into your computer that any novice hacker can easily penetrate.  Also, it is easy to capture the packet stream and subsequently decode messages.  Corporate network users beware - your network administrators can easily monitor Instant Messenger communications. Online Chat Rooms » Avoid chat rooms at all times.  Participating in online chat is an open invitation to hackers and perpetrators of fraud (the exception being something like a tech support chat session from a reputable organization, though even some of those are not completely safe). For the Paranoid » Disable any/all "active scripting" capability in your browser. » If running Microsoft Windows™, disable ActiveX® completely. » ALWAYS update your software with the latest critical patches or service packs. For those Beyond Paranoid » Never use a computer.  In fact, why are you reading this page?  It is common knowledge that several government agencies are monitoring you this very moment.  You have no privacy.  Everything you do is recorded and will someday be used against you.  As you are reading this text, biometric scanners have been recording your brainwaves and sending your darkest thoughts to several agencies, each of which is preparing a case against you at this very moment.  They are very upset that you are learning anything at all about security.  Your wallet was just scanned too, and the information within it has been forwarded to the IRS.  And the Patriot Act makes it all legal.  Face it... you're screwed.

Internet Common Sense Never give personal information over the internet, such as your social security number, birthdate, and so forth. The exception is for cases where you know that the site is secure, such as a bank. Never download software, images or other files for which you do not know and trust the source of origin. Never open email messages for which you do not know and trust the source of origin. This is especially true for messages with subject lines like "Your order #1234", and messages with attachments. See my  Internet eMail Fraud and Scam  page for more specific information. Never visit online casino/gambling sites.  It is possible that the odds are stacked against you. Never visit online "adult entertainment" sites.  Not even with a condom. Never post your email address in a newsgroup, though it will endear you to the International Spammer community. Never indiscriminately click on banner ads or links. Never download music or video files unless you know and trust the source of origin.

Create your own Windows™ Security CD-ROM Below is what I would recommend as a baseline for software for your own Windows™ Security CD-ROM. These items are listed in order of priority  -  my opinion, not necessarily gospel . . .  Your favorite anti-virus software.  Good anti-virus software is a necessity if you connect to the internet.   I strongly recommend NOD32 for virus protection.  It is an excellent product, with excellent support.   If you feel you can not afford the cost of a "serious" anti-virus application, then try one of these . . .     Avast         AVG         BitDefender         ClamWin         Comodo AntiVirus  It is important to note that you should NOT install more than one anti-virus application.  SUPERAntiSpyware,  a very good product, available in "free" and "Pro" versions.  The "Pro" version is much better.  If you feel you can not afford the cost of a "serious" anti-spyware application, then perhaps take a look at Microsoft's  Windows Defender,  which is free, and a fair defensive tool.  As with anti-virus software, do not install more than one  active anti-spyware application.  It is safe, however, to install additional passive anti-spyware software.  Keep a current HOSTS file.  For details, see Blocking Unwanted Parasites with a Hosts File  Use a "personal" software firewall.  This is something that if you ask 100 "expert" computer users about, you could  possibly get 100 different answers.  If you really want to learn about software firewalls, you need to do some research,  and then make your own choice.  My personal recommendation is the Comodo Firewall Pro.  It is free, and it works.  Those of you who have followed this page know that for a long time I recommended the Kerio  firewall from Sunbelt.  At this time I feel that the Sunbelt product is not as good, nor as easy to use, as the Comodo  product, and the price can not be justified in any case.  Things change.  Sometimes they even improve.  The Sun JRE (Java Runtime Environment), available here.     Scroll down to middle of page, look for "Java Runtime Environment (JRE) 6 Update 3".     Note that the version number may be different, of course.     If you have any previous version(s) installed, remove them before installing newer version, via Add/Remove Programs in Control Panel.  The Microsoft Baseline Security Analyzer  This tool helps identify security risks on your computer, and tells you if all current updates are applied.  Microsoft Malicious Software Removal Tool.  For details of the Malicious Software Removal Tool, read Article KB890830  This tool is updated monthly, typically near the 2nd Tuesday of the month.  A process reporting tool such as Sysinternals' Process Explorer is a "must have" utility.  Process Explorer is useful for understanding exactly what is running on your computer.  Another powerful utility is the Belarc Advisor, which is a "Personal PC Audit" tool.  The Belarc Advisor builds a detailed profile of your system, missing Microsoft hotfixes, anti-virus status, and more.  Note that Belarc Advisor gets updated periodically, so you may want to check for latest version from time to time.  If you believe you may already be infected and are having difficulty cleaning your system, take a look at Silent Runners.  Silent Runners helps identify the programs that start up with Windows.  It is quite good, and it is easy to use.  Home network users may want to include Karen's LAN Monitor Power Tool.  Karen has a number of useful and well designed Power Tools, available here.  If you use them, you should purchase a CD from her.  Web broswer:  either Microsoft Internet Explorer or Mozilla Firefox.  Information about MSIE and various accessories can be found here.  Note that Microsoft Internet Explorer version 7.0 is fairly secure now.  Information about Mozilla Firefox can be found here.  If you are not comfortable with the security of your current email client, you may want to try Thunderbird. Those are some basics.  If you would like a comprehensive detail of my own personal Windows™ Security CD-ROM, send a request.

Reference Materials

» TechTarget Learning Center: Detecting and removing rootkits in Windows    http://searchwindowssecurity.techtarget.com/featuredTopic/0,290042,sid45_gci1110450,00.html

» Microsoft TechNet: Wireless Networking Security    http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/wnsec.mspx

» Microsoft TechNet: Security Guidance    http://www.microsoft.com/technet/security/guidance/default.mspx

» Microsoft TechNet: Security Content Overview    http://www.microsoft.com/technet/security/bestprac/overview.mspx

» Microsoft TechNet: Manually Configuring Windows Firewall in Windows XP Service Pack 2    http://www.microsoft.com/technet/community/columns/cableguy/cg0204.mspx

» Microsoft TechNet: Microsoft Baseline Security Analyzer V2.0  (free tool)    http://www.microsoft.com/technet/security/tools/mbsahome.mspx

» Microsoft TechNet: Windows XP Security Guide v2 updated for Service Pack 2  (25 AUG.04)    http://go.microsoft.com/fwlink/?linkid=14840  (Windows_XP_Security_Guide_v2.zip)    Microsoft TechNet: Windows XP Security Guide  (original version)    http://www.microsoft.com/technet/security/prodtech/winclnt/secwinxp/default.mspx

» Microsoft's "Security at Home, Protect Your PC" main page    http://www.microsoft.com/protect

» Microsoft's "Manage Your Computer's Security Settings in One Place"    http://www.microsoft.com/windowsxp/using/security/internet/sp2_wscintro.mspx

» Networking with Microsoft Windows XP    http://www.microsoft.com/windowsxp/home/using/productdoc/en/hs_networking_web.asp

Below are various security-related links . . .

» Windows XP Security Checklist (at LabMice.net)    http://labmice.techtarget.com/articles/winxpsecuritychecklist.htm

» How to do it: Securing your wireless LAN    http://www.nwfusion.com/reviews/2004/1004wirelesshowto.html

» Windows Security: Hardening Communications    http://www.aspfree.com/c/a/Windows-Security/Hardening-Communications/10/

» Setting Up a Secure Wireless Network    http://www.wi-fiplanet.com/tutorials/article.php/2233511

» Wireless Network Security for the Home    http://netsecurity.about.com/cs/wireless/a/aa112203_2.htm

» Secure your wireless networks, or else...    http://reviews.cnet.com/4520-3513_7-5540685-1.html

» Protect Your Wireless Network    http://reviews.designtechnica.com/guide25.html

» Wireless Security - Four Steps You Need to Take    http://www.linksys.com/edu/page10.asp

» Securing your Wireless Network    http://www.practicallynetworked.com/support/wireless_secure.htm

» Wireless Networking Reference - Security    http://www.practicallynetworked.com/tools/wireless_articles_security.htm

» Beginners Guides: Securing Your Wireless Network    http://www.pcstats.com/articleview.cfm?articleID=1489

» Wireless Network Security    http://www.microsoft.com/hardware/broadbandnetworking/10_concept_wireless_security.mspx

» Protecting Your Home Network    http://www.microsoft.com/windowsxp/using/networking/learnmore/protecthomenet.mspx

» Tips For Securing Your Wireless Network    http://www.extremetech.com/article2/0,1558,1152933,00.asp

» exploiting and Protecting 802.11b Wireless Networks    http://www.extremetech.com/article2/0,1558,1159371,00.asp

» Security Basics:  Re: Harden a Windows Network    http://seclists.org/lists/security-basics/2004/Jan/0006.html

» Security: Taking The Danger Out Of Wireless    http://www.digitalconnectmag.com/howto/showArticle.jhtml?articleID=18401641

» Harden Your Wireless Apps with MIDP 2.0 Protection Domains    http://www.devx.com/wireless/Article/20682

» NSA Security Configuration Guides    http://www.nsa.gov/snac/

» Services Guide for Windows XP    http://www.theeldergeek.com/services_guide.htm

» How to secure Windows 2000 and Windows XP    http://www.markusjansson.net/exp.html

This is good info about service configuration, not only for security but for improved system stability as well . . .

» Windows XP Home and Professional Service Pack 2 Service Configurations    http://www.blackviper.com/WinXP/servicecfg.htm

» Windows 2000 Professional and Server Services Configuration    http://www.blackviper.com/WIN2K/servicecfg.htm

» Disable Unneeded Services in Windows XP    http://www.winnetmag.com/Windows/Article/ArticleID/40722/40722.html

» Remote Registry Administration in Windows XP Professional    http://techrepublic.com.com/5100-6270-5173421.html    → Disable the Remote Registry service in Windows, unless you have a compelling reason not to.

» SANS' Information Security Reading Room    http://www.sans.org/rr/

» Network Security Glossary    http://business.cisco.com/glossary/

» SOHO - Small Office Home Office    http://www.soho.org/

These links are to some older articles . . .

» Windows Networking Tips and Info    http://www.windowsnetworking.com/kbase/WindowsTips/

» Setting Up a Secure Wireless Network    http://www.intranetjournal.com/articles/200307/ij_07_10_03a.html

» Ten Steps to a Secure Wireless Network    http://www.pcmag.com/article2/0,4149,844020,00.asp

Miscellaneous

» Description of the Internet explorer Information Bar in Windows XP SP2    http://support.microsoft.com/default.aspx?kbid=843017&product=windowsxpsp2

» Microsoft Support WebCasts:    How to configure XP SP2 Internet explorer Pop-up Blocker    mms://wm.microsoft.com/ms/seminar/en/smh072604/smh072604-2.wmv     This short video walks you through configuring the new Internet explorer Pop-up Blocker.

» These links are from one of the Microsoft "Protect Your PC" pages:    Phone number for contacting Microsoft for support with XP SP2 issues...    http://www.microsoft.com/athome/security/protect/windowsxp/choose.aspx     Link to the Microsoft XP SP2 Support Center (many options available)...    http://support.microsoft.com/default.aspx?pr=windowsxpsp2

» Windows Server 2003 Security Center    http://www.microsoft.com/technet/security/prodtech/win2003/default.mspx

» Windows Server 2003 PKI Operations Guide    http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/ws03pkog.mspx

» Securing Wireless LANs - A Windows Server 2003 Certificate Services Solution    http://www.microsoft.com/technet/security/prodtech/win2003/pkiwire/swlan.mspx

Microsoft

» Microsoft Security Home    http://support.microsoft.com/

» Microsoft TechNet Home    http://www.microsoft.com/technet/

» Microsoft TechNet Briefings    http://www.technetbriefings.com/

» Microsoft TechNet Windows XP Professional    http://www.microsoft.com/technet/prodtechnol/winxppro/default.mspx

» Microsoft MSDN Home    http://msdn.microsoft.com/

» Microsoft Partner Program  (yes, I am)    http://members.microsoft.com/partner/default.aspx

Cisco

» Cisco Channel Partner program  (yes, I am)    http://www.cisco.com/en/US/partners/pr11/index.shtml

» ethernet Tutorial (from Cisco)    http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/ethernet.htm

Intel

» Intel Developer Site    http://developer.intel.com/

Sun Microsystems

» Java Tutorial for Networking, from Sun Microsystems    http://java.sun.com/docs/books/tutorial/networking/

Visualware

» Visualware provides a number of excellent security tools    http://www.visualware.com/

Other

» Mindspeed Technologies™    http://www.mindspeed.com/

» Computer Security News   (shameless plug)    http://computersecuritynews.us/

Home   Basic Security   eMail Security   Entertainment   Imagery   Music   Site Map   Subscriptions   Technology   XP Users