CS Technical FAQ

Although there is no “silver bullet” for computer security and no such thing as an unbreakable system, there are several steps you can take to protect your Windows PC.

This document is meant as a guideline and is by no means exhaustive. For more information, visit: http://www.microsoft.com/security

Also, it isn't my intention, except where noted, to make product recommendations. The tools mentioned in this document are simply the ones known to (though not necessarily tested by) me.

Use a Firewall
Windows XP includes a firewall and should be activated while connected to the campus network. If you need to access your Windows PC from home using remote desktop, please do not deactivate your firewall. Instead, configure your firewall to allow these connections.

If you're using Windows 2000 or older, you'll need to either obtain a hardware firewall or install a software firewall such as the free version of Zonealarm. For more information about firewalls, visit the above Microsoft Security link or:
http://www.howstuffworks.com/firewall.htm
http://www.firewallguide.com

Patch your System
Ensure that your PC has the latest security patches. For Windows XP users, we recommend that you configure Automatic Updates to download and install the patches daily.

From time to time, double-check that these patches are being installed. If you're using a dual boot system, be sure to check for new Windows patches once a week, especially if Windows isn't the operating system you use the most on that PC.

Be sure to update your other applications in addition to your operating system.  This includes making sure your email client, office suite, and PDF reader, for example, are up-to-date.

Use Virus-Scanning and Anti-Spyware software
Be sure to install virus-scanning software. Once installed, it is important to keep the software’s virus definitions current, so make sure to schedule daily or weekly updates.

You can further protect your PC by installed Anti-Spyware software. “Spyware” is a loose definition for any software, usually associated with web-browsing, that changes your computer’s configuration without your knowledge or consent. Spyware can slow down your computer tremendously and prove difficult to remove. There are several free Anti-Spyware tools available, including Adware, Spybot, and Microsoft's AntiSpyware.

Consider using a different Internet Browser
This author found his share of Spyware decreased significantly when he started using Firefox. http://www.mozilla.org/products/firefox/

Know What’s Running on Your System
Deactivate unnecessary services on your PC. If you’re running an FTP or SSH server, for example, be sure to keep this software up-to-date. Older versions of services may have security flaws allowing attackers to gain Administrator rights on your PC.

You can check the system for rogue services (e.g. back doors, FTP servers, etc.). http://www.foundstone.com has a nice tool called Vision for identifying ports and processes on Windows hosts.