 |
Webizus Monthly Newsletter | |
|
|
||
|
||
|
--Erich Fromm, American Psychologist (1900-1980) |
 |
|
|
|
 |
||
 |
||||
| IntroductionTimes are changing! The last few years have seen an enormous increase in Internet penetration with the number of web users rising exponentially. This means a field day for hackers and authors of malicious code like viruses as their programs are now doing greater damage than before. Thanks to the media (and damages on a greater scale), the news of the virus attacks and damage done spread almost as fast as the virus itself. Though this hasn't brought down the damage done to users' machines, what it has done is significantly increased the awareness levels of users around the world to desktop level security. The following article was born out of similar requests on information on user level/ desktop security against unauthorized access to user machines. The article looks at areas of concern where the user's desktop security is likely to be compromised namely emails, network access & OS & software holes. Also included are a few guidelines on protecting the workstation against unauthorized access by a judicious use of tools and software. Sitting ducks:Emails:Emails are the most popular mode of transfer for viruses today. While floppies and local networks are the old favorites, emails due to their sheer size and ease of use are now much more dangerous. Usually viruses are sent with attachments in emails which when clicked execute the virus (though virus authors have also written scripts that execute even though the attachment is not clicked) To further confuse and make the user click on the attachment or the email, a method known as Email spoofing is used. Here the worm while transmitting itself from the user's PC grabs some or all of the addresses from the user's address book and sends itself to them using the user's address in the “from” field. This is done with the intention that the recipient will accept and open the email seeing a familiar name in the “from” field in the email. Worse, virus authors also use the addresses from the address book to generate a random “from” address so that emails go to addressees from random email addresses. To combat damage from email viruses and worms, if possible separate your work and personal email. This may avoid a possibility of comprehensive damage if your work and personal circles are distinct and different. So, say, even if a virus enters your personal mail box (assuming you don't check your personal email at work and vice versa) your office email and consequently the network would still remain untouched by the infectious file. Also open emails with care. Even if the sender is familiar, check the attachment's name and file extension to make sure its not a worm from his or her system transmitting itself disguised as a genuine mail (viruses are often sent as files with typical subject content or keywords as filenames or with double extensions – as in getrichquick.vbs.js) If you use Hotmail and access it through MS Outlook Express, then there's a very useful feature you should use. Turn the synchronization settings for all folders (inbox, junk email, outbox) to read “headers only”. Also change the layout view to disable the preview window. This will download only the headers of the emails giving you an option to choose and download a select few that you can trust and delete other headers instead of having all the emails downloaded which may include spam or viruses etc... Understand that some emails are always hoaxes – Microsoft never sends patches though it might send notifications of patches or updates available. But it is simply economically and technically unfeasible for it to send patch files as attachments to every user. Same goes for other application vendors. Operating Systems:Viruses, dangerous or otherwise are often programs written that exploit the vulnerabilities of the operating system or certain software. Creators of software write their applications and as and when loopholes or vulnerabilities come to light, they write patches or fixes that 'patch' the hole. According to a research, there have been more than 25 vulnerabilities identified for the Windows XP Home operating system in the first half of the year and a greater number for Windows 2000 during that same time. There will be more discovered, you can be sure. What is important is that you make yourself aware of these and update your machines before the virus strikes. Usually there is a time limit between when the vulnerabilities are discovered and when the virus attack take place. The SQL Slammer early this year exploited a flaw in Microsoft’s SQL Server software for which a patch had been made available over 6 months prior. But as is evident not many make their desktops immune to the virus. Vendors of applications often send out email notifications to users of available patches and updates and it pays to sign up for updates on operating system patches and updates & Antivirus program and virus definition updates at least. Microsoft Windows versions have automatic updating features that help this idea or you can go to the Windows website and the website gives a free report on the updates not installed on your desktop. (While on the topic of OSes, create a boot disk that will help you load your operating system when a malicious file corrupts the operating system making it unable to boot by itself.) BrowsingThe most common security feature while browsing the Internet are the security settings in the browser. In the Internet Explorer for example, one has the security zones that one can set the browser to. Internet security zones – usually set to medium by default; however it is also possible to assign different security zones to different websites depending on the trust level towards a website. While the Internet browsing (medium) level is fairly dependable, different time and places could require a more custom setting. Another area of concern while browsing are websites that ask for permission to install plugins or programs on the user's computer. These websites display a message that ask the user to permit it to carry the installation. Saying 'yes' to wrong programs can place the user's machine in the open with access to its files and folders. It is advisable to read the message that is popped on the screen before clicking 'yes' or 'no' and checking whether the website is an authentic source of the information and not a dummy popping messages from behind an authentic website. Files & Networks:While the Internet remains the most effective way of transmitting infectious files over great distances, local networks are as susceptible to viruses and hacking experiences. For users who are on any network, there are certain methods to reduce their exposure to the network and through it to the Internet if a workstation from the local network is connected to the Internet. It pays to password protect important files and enable partial or password sharing on drives on a network. This ensures that access to the workstation is by authorized persons who know the password or to drives that should not have confidential or critical information. This is true for users on a usual corporate local network as well as users with broadband or cable Internet connections. Also file sharing software and collaboration software products offer a chance to external users to access your PC. Hence it is necessary to carefully select the folders that are shared. Software like PCAnywhere and MS Netmeeting are great at doing what they do but if you leave your internet connection on then you are placing your computer in a riskier territory. To combat this software product companies usually have different levels of security or 'modes' (in PC Anywhere) where the user can make necessary settings to help protect his PC from any unauthorized access. Another point is if one is using such software or is connected to the net with an 'always on' connection, it is advisable to shut of the PC or at least disconnect from the network when the computer's not in use. 'Always on' PCs offer a great training ground for hackers who can try to connect and use the computer to test their skills and talents. A precautionary measure and also a good computer usage practice, it is advisable to back up important files and sensitive data at regular intervals. The backup, of course, is better stored on a separate media like CDs instead on the same computer in another location. Of Antivirus and Firewalls:
Antivirus software companies also give tools and program files to remove individual viruses. These files are free of charge and are given for download (url given below). So in case the antivirus program has not been updated and a virus strikes, one can go on the company's website and download the tool and run it. It is usually not necessary to own a copy of the antivirus software to be able to download the tool but the whole program is obviously advantageous as it checks for all viruses and updates itself regularly whereas the tool checks only for a particular virus. Nevertheless it is of great utility when the 'disaster strikes'. While antivirus software help in scanning for presence of viruses and worms in files and emails, a firewall software helps to keep unwanted traffic to the computer out. This acts like a gate over your computer that can allow only certain computers to access yours if you are on a network and / or block unwanted access to Internet by all but necessary programs. This is useful when your computer has been hacked or infected by some malicious code. It makes you alerted telling which program/ file is trying to send itself to others using its own program installed on your computer or simply try to connect to some other computer on the network/ internet. Both antivirus and firewall software together can give greater protection to the computer and attach their watchdogs on emails, files and even instant messenger programs. Finally...Face it! The only time your computer is truly secure is when it is shut. While this should not be the only defense mechanism you have against virus and unauthorized access attacks, there are few things one can do to maintain the state of security. Till next time... say yes to better desktop security! Resources:
Share
this newsletter! To unsubscribe from the monthly newsletter, click
on the link below to e-mail your request to us. YOU WILL RECEIVE
NO FURTHER NEWSLETTERS from Webizus Technologies if you do. Webizus takes your privacy seriously. To learn more about Webizus' use of personal information, please read our Privacy Policy at http://www.webizus.com/privacy.html Disclaimer: Copyright ©1999-2003, Webizus Technologies, All Rights Reserved. For more information mail us on info@webizus.com Contact us
today for a demonstration of how we can cut down your costs and
improve your business: Download our corporate profile
|
|
|||
 |
||||
