[Salo]

A great article about computer security.

[Salo]

Paging Dr. Penguin.

[Salo]

Tech list ping.

[agitator]

[an amused spectator]

I'm working on a PC protection CD that I can distribute to my friends & family.

AVG anti-virus freeware (www.grisoft.com)

Zonealarm freeware - firewall

Of course, the many toys at Gibson Research (www.grc.com)

[Cboldt]

Good article. I was "forced" into learning more about firewalls and security shortly after I started to use Linux. RH 7.2, IIRC. Was on a dilup, and some script kiddies found my IP address and were able to crash my system. About 2 weeks later I discovered the logs. My reaction was "Holy Cow!!!!, I better learn about this."

Anyway, my simple point being that security issues are not limited to MS. Now I sit behind a SOHO firewall (cable router). I'm impressed by the small footprint it shows the outside world. I think the "education" solution won't work. The concepts are tough enough, and implementation is even more difficult. Instead, I would suggest that widepread use of hardware firewalls will effectively reduce the rate of system compromize. I have to concede that dialup users have the chore of being more software savy.

[MarkL]

Our answer to every problem can't be "Run Linux!" or our other favorite operating system (unless the individual we're talking to is interested in such a solution, then by all means, go for it).

Run CPM-80!!!

Mark

[FreedomPoster]

1) Regular operating system updates.

2) Regular antivirus updates, weekly full system scans plus normal checking.

3) Hardware router so PC isn't directly connected to the Internet.

4) Personal firewall program to detect any Trojan Horse programs that might sneak in.

5) Spyware removers run bi-weekly. I use 2, Ad-Aware and Spybot Search and Destroy.

[general_re]

I agree - a good article. The best OS security scheme in the world is useless if people don't use it or don't understand it. There's something of a paradigm shift going on in the Windows world, wherein people are gradually moving from a totally insecure single-user operating system to a fundamentally more secure regime, but that's meaningless if people don't understand why it needs to be done, and don't get the education they need in order to implement it properly. Someone who doesn't do these things is not going to be protected by changing operating systems - a person who understands why system security is important, and takes responsibility for learning about it, is going to be reasonably safe regardless of operating system. Conversely, a person who does not understand why sometimes convenience must take a back seat to security, and does not make the effort to protect themselves, is not going to be safe, no matter what OS they use.

No OS in the world can really protect users from themselves in the long run - some can make it more difficult to shoot yourself in the foot, but eventually, a careless person will always get burned, no matter what. You could replace every single Windows desktop in the world with Linux tomorrow, and you'd still be faced with the problem of educating people about how and why they should protect themselves. Basic operating system security has to become a fundamental part of learning how to use a personal computer, in just the same way that knowing how to use a turn signal is a fundamental part of learning to drive a car.

[Lee'sGhost]

OK, what's THE best anti-virus software? I was using McAfee but it was not very user friendly and have been told it's not as good as Norton -- but would love to what my Freeper IT friends think.

Thanks in advance.

[E Rocc]

The gradient of computer knowledge is tremendous. Perhaps 90% of the people I know look at me like I'm an expert, but our IT guys know stuff I have no clue about.

Sometimes I think they prefer the fully ignorant users, and not just for job-security reasons. Those of us who know what we're doing sometimes know enough to be dangerous. >:)

-Eric

[Hatteras]

We've got to educate our parents, our other family members, our boyfriends and girlfriends, our wives and husbands and partners, our in-laws, our friends and acquaintances, our co-workers, and even the people we just bump into for a few moments at parties.

Hmmm, tried to slip this one by us, huh?

[txzman]

I refloozle my friend's computer hossenblobbets with tinklewickets all the time.

Fortunately they are nice enough to do things like buy me dinner gift certificates to nice restaurants after I completely rework their machines to make them useable again.

[Hatteras]

Here's the problem in a nutshell. Computer weenies are using acronyms and abbreviations that they themselves haven't even taken the time to learn what the letters stand for and in developing computers and computer products they are using words that already have enough real definitions. Case in point:

Define "patch".

1. A small piece of material affixed to another, larger piece to conceal, reinforce, or repair a worn area, hole, or tear.
2. A small piece of cloth used for patchwork.
3. A small cloth badge affixed to a garment as a decoration or an insignia, as of a military unit.
4. A dressing or covering applied to protect a wound or sore.
5. A pad or shield of cloth worn over an eye socket or an injured eye.
6. A transdermal patch.(See beauty spot.)
7. A small piece, part, or section, especially that which differs from or contrasts with the whole: a patch of thin ice; patches of sunlight.
8. A small plot or piece of land, especially one that produces or is used for growing specific vegetation: a briar patch; a bean patch.
9. An indefinite period of time; a spell: weathered a difficult patch after losing his job.
10. A temporary, removable electronic connection, as one between two components in a communications system.

And now, they want us to add another definition to the word "patch".

11. Computer Science. A piece of code added to software in order to fix a bug, especially as a temporary correction between two releases.

Hey, I learned how to "google" something, I can learn other new words. Just don't tell me to download a "patch". A patch is made of denim and my momma used to sew them on the knees of my pants.

[cookcounty]

Why the fuss? Get some exercise, walk down to the bank, and do your finances in person.

As for fear of viruses. Hey, you're going to get a new cheap computer every 36 months anyway, so if some virus takes it down, that's how you know it's time to shop. All these software add-ons cost more than the computer is worth.

As for teaching computer classes, unfortunately, from my experience, the world seems to be composed of two types of humans:
Those who can communicate in clear, simple language, and those who are good at computers. Rarely are both skills found in a single individual. Hopefully you're the exception.

[2 Kool 2 Be 4-Gotten]

The article is a good one. I would just take it one step further. It's not just that Joe Average User is clueless about security. It's that he is clueless about damn near everything. We can put the blame on microsoft, the educational system, or sunspots, but the fact remains that people cannot understand or troubleshoot the complex systems that modern PC's have become.

This situation could be addressed by building dumb clients and putting all the smarts in the network, but this idea has been trotted out every few years and it never seems to gain traction. I imagine there is a business opportunity for ISP's here. Your ISP in theory *could* become like the administrator of a corporate LAN. They could become your network admin, provide better firewall services, anti-spam services, security updates, software services etc. etc. They could differentiate themselves by providing the most friendly, helpful, and efficient support desks. This is feasible as the users in the corporate world are just as clueless as the ones at home - they just have better support.

I don't know if this will happen or not, but it seems that their is a value proposition here - I think most people would gladly pay a reasonable monthly fee to insure that the damn thing works all the time the way it should, and that they won't be vulnerable to the latest virus or worm or what have you. Whether this industry is willing to provide a service such as this remains to be seen.

[Semi Civil Servant]

I have used Windows for 12 years. I have never been a Microsoft hater, but I've come to the conclusion that Microsoft is incapable of dealing with security issues. It is also incapable of writing anything but bloated, gigantic code for even the simplest applications.

On the bloated code: I had a word processor, data base, spread sheet (+ some other whistles and bells) running on my ancient Commodore 64 (Berkley Software--can't remember the program name). Not quite true multitasking, but a close simulation of it. That was running on 64 K!

My "multi-tasking" Windows PC runs out of memory (256 megs) all the time! The "Works" word processor must be gigantic. It doesn't like to play with my other programs, either.

Update Windows? Oh, sure. With my dial-up connection it would take days (weeks?) to find and load all the "updates" and patches for the various Microsoft products on my computer.

I sit behind Zone alarm, de-virus, and never open odd looking email.

But the next computer I purchase will be a Mac. Just having a lower profile in the virus wars makes it a smart move for me.

All new Mac software? Sure. Why not? A big chunk of my Windows software is disabled by something another program did to SOMETHING -- don't get me started on that.

The move to Mac will not be Nirvana. But I'm tired of the Windows world's various failings and Microsoft's inability to solve those problems.

I better stop before I get the blue screen of death.

[Fishrrman]

I'm a Mac user -- been one since 1987. I use nothing else.

Never had a virus -- not a single one.

Never had a worm -- not a single one

Never had a trojan -- not a single one

I don't even use "virus protection software". Got tired of scanning and finding nothing there.

Of course, I still get junk email. But I use "POPMonintor" to scan incoming email at the server level, and delete it before I download email to my computer.

What's all the problems with viruses, worms, trojans, etc.?

Cheers!
- John

[Xenalyte]

Oh, my God, someone interviewed Xena's Mom!

[Pan_Yans Wife]

ping

[swarthyguy]

Puh-lease? Who can keep up with all the crap. People have lives and don't want to spend their half their life downloading patches and then more patches to fix the updates.

It's a tool, not a high maintenance chick.

Misguided - Windows is to blame, not the users.