Call Sign October 2011
Page 20
I've lost count of the number of times I'm asked
With the internet now more popular than ever, DaC's Network
by friends, colleagues and drivers what I recom-
Administrator Jon Winterburn leaves gaming for this month and
mend as the best methods of protecting yourself
explains the best ways to...
against online threats. The trouble for both lay-
man and techie alike is that there are so many
PROTECT YOURSELF ONLINE
different products out there with so many differ-
ent combinations that it's overwhelming know-
websites (like making their Facebook and
ing which products to use and how best to use
Twitter passwords the same) or their passwords
them. Add to the mix the seemingly endless
are guessable words. This is bad practice; if your
bombardment of viruses, Trojans and worms, it's
account is hacked on one website, the hacker
no wonder a large proportion of computer users
will try the same credentials on other websites.
are infested with all manner of nasties.
The best thing to do is download the free soft-
In the 21st century, protecting your computer
ware KeePass (http://keepass.info) and create
and your online identity cannot be achieved by
a password database within the software. Then
one product or one method. The only way to
you can create complex, random passwords for
counteract the myriad of risks out there is to
all your accounts (which you don't have to
have a multi-speared approach to online and
remember) and protect them all in this database
offline safety. There are many different strategies
with one master password (which you do need
out there, so I'm not going to be so arrogant as
to remember). Once this is done, whenever you
to claim that my strategy is the best one.
want to log into a website, you just need to log
However, I've worked in IT for 12 years and
in to KeePass and copy the password for the rel-
been a heavy computer/Internet user for 16
evant website and paste it into the password
years and I've never had a virus or lost any data
prompt on the website. This way, no two pass-
in all that time.
words are the same, they're complex and secure,
you don't have to remember lots of password
The 10-Step strategy
out all adverts on web pages, protecting you
(only one) and your accounts are better protect-
1. Change your DNS server addresses from
against infected ads as well as making the web
ed. I've been using this method for a year now
your standard provider's to those of OpenDNS.
page easier on the eye!
and highly recommend it.
This is a company that provides free DNS ser-
vices to the home user. Essentially, DNS is what
5. Don't download and install free applica-
9. Protect your home network. If your router
allows you to browse to a web address; it does
tions on your computer unless you are sure they
has wireless capability and you don't need wire-
the lookup for you, directing you to the correct
are safe and you've either read the terms and
less, turn it off. If you do need wireless for your
server to view the content you're looking for.
conditions or you have it on good authority that
laptop or other device, then make sure that your
OpenDNS by default blocks all malicious and
the software is legitimate. Think about it very
wireless password is strong - not a memorable or
dodgy websites it knows of, updating its data-
few developers will give software for absolutely
easy to guess word. Ensure that encryption and
bases hourly. If you sign up for a free account,
nothing. Unless the software is open source
password protection is on and that the encryp-
you can even configure further categories to
(community-driven) or provided by a big firm
tion is at least WPA, preferably WPA2 don't
block (like porn, gambling, weapons etc),
with the hope of getting you to buy the full pack-
use WEP as this is easily hacked. You can con-
which is an excellent way of protecting your lit-
age, there's got to be a price somewhere. If
figure this on your router (ask your ISP for help
tle ones from accidentally viewing unsavoury
you're not paying in cash, you're likely paying
if you're not sure where this is). Don't share your
content online. Go to www.opendns.com for
by allowing them to install adware at best and
wireless key / password with anyone else and
more info.
malware / spyware at worst. You don't need all
change it regularly. Remember, if cyber-crime is
those toolbars in your web browser! The address
committed on your Internet connection, you can
2. Make sure you are behind a hardware fire-
bar and search bar that come as standard with
be held responsible if you didn't suitably protect
wall. This should be done as standard; your
your web browser are sufficient trust me, you
your wireless network.
Internet Service Provider should provide you
really don't need additional search bars cluttering
with a router for your Internet connection, so the
up your browser.
10. Backup, backup, backup! I cannot iterate
firewall should be on already. But check with
this enough. If the worst should happen and
them to be sure and also enable Windows fire-
6. Don't click links in emails. Seriously,
your computer is infected with a nasty virus, it's
wall as well it doesn't hurt to be doubly pro-
don't click them. It doesn't matter if the email
only a matter of time before it becomes even
tected.
is from someone you know and trust don't
more infected, or worse, your data gets stolen.
click links, because even though they may look
The best thing you can do is run a regular back-
3. Buy and install some decent anti-virus
legitimate, they could very well be hiding a
up (once a week or once a month). You can
software. If you wonder why some anti-virus
malicious web address. For example, the link
either use the built-in backup software in
software is cheap as chips in the High Street, it's
may say www.paypal.com (which is fine) but
Windows or if you want to back up your entire
because the software is probably rubbish! Don't
behind that (if you click it), could be
hard drive as a snapshot image you can restore
rely on this junk. Use industry-strength anti-virus
www.dodgy-thieving-gits.com (for exam-
back to, then download the free DriveImage
software and know you're protected! It's better
ple)! Your best bet is to copy and paste the
XML
from
to spend a bit extra on anti-virus software and
address into your Web browser. That way, what
http://www.runtime.org/driveimage-
be protected with up-to-date protection. My rec-
you see is what you get.
xml.htm and buy a removable hard drive that is
ommendations
are
Sophos
bigger than your computer's hard drive, then
(www.sophos.com) or F-Secure (www.f-
7. Don't pirate software, movies, music or
backup your computer. That way, if you do get
secure.com). All this other "all-in-one" protec-
games. Downloading pirated material is damag-
infected you can simply wipe your computer
tion is not worth it, in my experience. You don't
ing for the creator (loss of earnings), damaging
clean and restore from backup without having to
need software that provides anti-virus, firewall,
for those who don't pirate (costs rise to com-
reinstall Windows, all applications and potential-
anti-malware, parental controls all in one pack-
pensate) but most of all, it is very risky for the
ly lose your valuable files.
age because in my experience all-in-one pack-
end-user. Yes, you could probably download the
ages are more likely to go wrong and mess up
latest film, game or application for nothing, but
Remember, this strategy will only work if
your computer. I place my trust in "one applica-
as I've said before - everything has a price! Often
you:
tion, one job." Windows provides a suitable fire-
malicious users will alter the pirated content to
Adhere strictly to the strategy (or to your mod-
wall already for free, as does your router.
contain a hidden virus which will allow you to
ified/improved version of it)
OpenDNS provides you with parental control
use it as normal, but also infect your computer
Remain vigilant online at all times
for free. Sophos or F-Secure provide you with
and steal your data in the background.
Keep your computer and all software updated
anti-virus, anti-malware protection.
and all your files backed up
8. Don't re-use your passwords. This is the
4. Don't use Internet Explorer. Use Firefox
I hope this helps!
most widespread security risk I have seen.
Jon Winterburn
or Google Chrome and install AdBlock Plus (a
Because users have so many passwords to
free add-on available for both), which will block
remember, they often share passwords across
DaC Network Administrator
