rnd_border

Computer Security

Information Links

  • Check out the latest phishing scams
  • Check out the latest virus and security alerts
  • Understanding differences between Trojan Horses, Viruses, Worms and Spyware
  • Corporate Information Security Guidelines
    •

    Protecting your Computer and your Privacy

    Keep your software programs and operating system regularly updated. Vendors provide web sites where you can go and download software updates and install them. Security updates should be installed as soon as possible. You can set your Windows computer to automatically download updates. For more information on Automatic Updates. The older your software is, the more likely security vulnerabilities have been found and exploited by hackers. (Examples are windowsupdate.microsoft.com, www.apple.com, www.redhat.com)

    Install an anti-virus software program and keep it current. All students are provided with and required to run Sophos Anti-Virus. For information on installing and configuring your anti-virus software go to: Sophos Antivirus Installation Instructions.

    NEVER give out your password, account numbers, or other sensitive personal information (name, address, phone), in an e-mail message, newsgroup posting, or in a chat or instant message session. Your information can easily be intercepted, forwarded, or redirected without your knowledge, and you really have no way of knowing who is listening in on your electronic conversations. Never write down your password.

    Use strong passwords. Don't use simple, obvious or predictable passwords. Use 6 to 16 characters -a minimum of 8 is best- that include at least one number and one special character. Change your password frequently, at least once per semester. For tips on choosing strong passwords that you will remember, please visit good passwords.

    NEVER enter sensitive or private personal information on a web page until you trust the company hosting it. Build trust by reviewing the company’s privacy and security policies on their web site, and by insisting on a secure connection (look for the closed lock or a key in the lower corner of your browser window). Know what their policies are regarding reuse, sharing or selling your personal information.

    REMEMBER that when you post something on Facebook, MySpace or the web that it can and will be viewed by many people you do not know. Don't post anything anywhere on the web that you would not wantstrangerss to see or read. Online activities have a tendency to feel a lot more anonymous than they actually are. Use the samediscretionn online that you use in the "real world."

    Backup your important files. Hard drives do crash and can be corrupted (usually at the worst possible time). Copy files to your network folder, a DVD/CD or external hard drive, and store them in a secure location. Pay particular attention to making backups of your personal data files and custom configuration files on a regular basis.

    NEVER open ane-maill attachment or execute a program if you do not know and trust the source. Attachments that end with two extensions, such as .txt.doc, or .xls.exe, or any combination of file extensions almost always contains a virus. DO NOT OPEN IT!Attachmentss that end with .VBS also almost always indicate a virus or worm program. Even if you receive such a file from someone you know, DO NOT OPEN IT! before verifying with the sender that it is a legitimate file.

    If you receive an unexpected e-mail saying an account will be closed unless you confirm your billing information, DO NOT reply or click on any links. If you are uncertain about the information, contact the company through an address or telephone number you know to be genuine. If you unknowingly supplied personal or financial information, contact your bank and credit card company immediately.

    Combat and remove spyware. Spyware is programming that is installed or placed on your computer to secretly gather information about you and relay that information to advertisers, companies, or individuals interested in your internet surfing habits. Spyware is often installed without the user's consent through a software virus, as a sneak-in download, or as the result of clicking some option in a deceptive pop-up window. Be sure to read carefully the licensing agreements for free software that you download – some may contain spyware. To combat and remove spyware you may want to use a product such as Spybot. Caution: Spybot and Adaware do not always work together properly and you should install only one or the other of them on your machine.

    If you need to enable file and print sharing, allow access only to authorized users. Review sharing options in the network settings of the control panel. If your computer is “always-on”, disable file and print sharing.

    Disable guest accounts. Users running Windows XP may have set up guest accounts on their computer.

    Don't set your computer for automatic login. Users running Windows XP may have set their computer for automatic login. Before completing this task ensure that you know the username and password to the administrator account and your personal account on the computer. If you are not sure or would like to create a password or make changes click on “Start”, click on “Control Panel”, click on “User Accounts” and click on the icon representing your account. Select either “Create a password” or “Change my password” and enter in the requested information. To disable the automatic login option go to the Windows desktop and click on “Start”, click on “Control Panel”, click on “User Accounts”. Under category “Pick a task” in the User Accounts window click on “Change the way users log on or off.” Under “Select logon and logoff options” uncheck “Use the Welcome screen" and “Use Fast User Switching” and click “Apply Options” button.

    Turn off all network services (programs) that you do not need or intend to use. Familiarize yourself with the services you have configured for your machine in the control panel. Do you have a web server or a file transfer server running that you don't know about?

    Keep your confidential files in a nondescript or hidden location, or on a portable storage device e.g.g, a floppy, CD, flash drive or portable hard drive). Make sure that folder location is not shared. You may want to invest in some encryption software.

    Consider clearing your web browser’s cache storage file after visiting web sites where you entered sensitive information, such as a credit card number, or an account and password, as this information is often stored in your browser too. (Do you select “remember this password” for ease of use in your browser?) If your machine is broken into, account information in your cache files could be used for fraudulent activity or identity theft.

    Consider installing or using personal firewall software on your computer. A firewall is software that can be configured to let you access the Internet (out) while blocking Internet access to your workstation (in). Windows XP SP2, Windows Vista and Mac OS X come with firewall software. Some other firewall packages are: ZoneAlarm at http://www.zonelabs.com/ (free), BlackICE PC Protection http://www.iss.net ($39.95), McAfee Personal Firewall Plus http://www.mcafee.com/ ($39.95), Norton Internet Security 2004 http://www.symantec.com/ ($39.95), Sygate Personal Firewall http://www.sygate.com/ (free), or Tiny Personal Firewall at http://www.tinysoftware.com/ (free).

    Turn off your computer when not in use. To keep hackers from accessing your machine, turn it off when you are not using it. [Note: if your computer is turned off at the time of a scheduled anti-virus scan, the scan will automatically start the next time you turn the computer on. While you can work on your computer during a scan, your system may run more slowly during the scan. You may want to leave your computer on during the scheduled time of the scan.]

     

     
    rnd_border