Klarinet Archive - Posting 000352.txt from 2003/08

From: Jeremy A Schiffer <schiffer@-----.edu>
Subj: Re: [kl] <W32.Blaster.worm>
Date: Wed, 13 Aug 2003 12:12:39 -0400

There is one important point that is completely being missed here.

Allow me to put on my work hat for a moment; I deal with these things for
a living so I will not so humbly say that I know exactly what I'm talking
about.

The problem, for those who are not aware, has nothing to do with
Anti-Virus Software. The most updated definition in the world will NOT
protect you from MSBlaster (well, they may now, but not when it was first
introduced and spread around the world in a matter of hours).

The problem is that users don't update their OS patches. You MUST run
http://windowsupdate.microsoft.com on a regular basis if you own a
Windows computer. In fact, you can configure your computer (Win2K and
WinXP) to download the updates automatically so you don't have to be
bothered with it!

If you don't update your patches, it won't matter how good your Anti-Virus
definitions are, or how strong of a firewall you use. YOU WILL BE HACKED
at some point. I guarantee it.

Now, updating said patches is not an iron-clad guarantee of security, but
if you don't do it, it's an iron-clad guarantee of INsecurity.

There's a lot more to security than just patches and Anti-Virus, but a few
simple steps will protect you from nearly every possible invasion:

1) Update your patches religiously using windowsupdate

2) Run Anti-Virus software and keep your definitions up to date

3) Use strong passwords for your computer (when you log-in to your system
in XP/2K/NT, you have to put in a password; if you leave it blank or
put in something that can be guessed easily (a dictionary word, for
example), your systems is basically open to the entire world.

4) Be judicious about the websites you visit. Just viewing a webpage
can infect you with a lot of things. For extra security, disable
automatic downloading of 'cookies' in your browser.

5) Don't use filesharing software. In addition to the legal ramification,
there are tons of trojan programs and viruses on the filesharing
networks. I once did an experiment where I downloaded ten .zip files
supposedly containing porn. 7 of the 10 contained programs that would
allow a malicious user access to my entire computer!

----------------------------------------------------------------
Jeremy A. Schiffer
AcIS Security Administrator
Columbia University
212-854-2903

Please direct all computer security related queries to
security@-----.

---------------------------------------------------------------------
Klarinet is supported by Woodwind.Org, http://www.woodwind.org/

    
     Copyright © Woodwind.Org, Inc. All Rights Reserved    Privacy Policy    Contact charette@woodwind.org