Great 'Easy Computer Security and Privacy Tips' Hunt

MSE_Martin

While anti-virus software is crucial (read a full article on how to get it free), how you operate your computer is key too when making site it is protected.

So what are your top tips for keeping your PC safe? How do you check the validity of websites or emails? What links would or wouldn't you click? Let's compile all MoneySavers' collective top tips.

Please post below to share you ideas.

gaming_guy

i use mozilla firefox with the siteadvisor plugin and Adblock Plus

siteadvisor is also available for internet explorer HERE

OK_Sauce

If you are worried about 'keylogging' spyware/viruses. i.e. malicious programs that record your key presses to get your vital information, try doing this.
Start-->Run--> type OSK <return>. This brings up the on screen keyboard. Use this to type in sensitive information using the mouse instead of the keyboard.

albertross_2

A software keylogger would probably still pick up the keypresses.

A upto date resident virus scanner, (scanning all files) with the commonsense plug-in has protected me sofar.

GreenNotM

MS already picked up this tip in Vista - use a non-admin account for general surfing.

You can use the "run as" service or log in using an admin account to do updates etc.

Password protect all accounts.

bluseychris

Don't reply to "unlist" links in spam emails, that just confirms that your email addy exists leaving you open to more spam.

Don't open unknown email attachments, if you weren't expecting it it's probably malware.

Don't use Outlook Express, Thunderbird or any other email client if you can help it as they automatically download emails and attachments. Use a web based email where possible (i.e. Hotmail, Yahoo!, Gmail) as everything is displayed as a webpage instead of being downloaded. Attachments are downloaded when you want them.

Use alphanumeric passwords as they are harder to crack e.g. Jehova374 as opposed to Jehova. Even better is using the "L33t speak" way of substituting letters for numbers e.g. J3h0va as opposed to Jehova. Typically use the following key:

a/A = 4
e/E = 3
t/T = 7
i/I = 1
s/S = 5

Also keep passwords longer than 6 characters, the longer they are the harder to crack. Password hints should be cryptic. If I had "psychedelichamster" as a password I'd have something like "Rodent Acid" as a hint (Hamster is a rodent and Acid is a slang term for LSD which is a drug linked psychedelia).

If it's not being used shut it down! If I have a messaging program I'm not using I'm not going to leave it open as a) it advertises my presence and b) it uses up useful processing power (save a little gain a lot). Just because you don't know how to get hold of random peoples usernames and exploit program bugs doesn't mean someone else can't.

Unless you know what it is, don't accept things over an IM program. It's a great way of getting trojans on to a computer.

If there is a patch relevent to your operating system/program software get it! That insignificant 2kb file could have some code that closes off an exploit.

Makesure you password/encrypt any wireless internet connection. Wireless doesn't make hacking any easier (you still need the same methods to do it), but it does make it more flexible as you don't need a physical link to a wireless computer to hack it. Lock it down!

Checkout security websites such as http://www.astalavista.com/ and security search engines http://astalavista.box.sk/ . Yeah, they're started by hackers, who do you think are the security experts? There's nothing wrong with using the information they have to lockdown your PC. They will often have information on loopholes in software long before groups such as Microsoft will announce and patch them. Why do you think MS and such have to patch security issues?

If you don't know what a program is and you didn't/don't remember installing it it could be malware. Google the program/process name and find out what it is.

Slimeball20

When buying stuff on the Net, use http://www.shopsafe.co.uk/ to check the safety of buying from particular websites.

The site details websites that are safe to buy from.

Aiadi

And for the ultimate way to protect your computer, use a PC virtualisation product:
https://www.sandboxie.com

one click and all the viruses, spywares, trojans..... etc are history.

Read detailed review here (4th product on the list):
http://www.techsupportalert.com/best_46_free_utilities.htm#4

cwaring

bluseychris wrote: »

Don't use Outlook Express, Thunderbird or any other email clienti f you can help it as they automatically download emails and attachments.

Sorry but I would disagree. I have been using OE now for years without problems. Downloading attachments isn't a problem; 'running' or loading them is!

Like you said, if you receive an email with an attatchment from someone you don't know; bin it.

Checkout security websites such as..

Nope, I wouldn't. They are sites that list hacks for software. At least, the were last time I looked. All sorts of lethal pop-ups and nasty stuff could be lurking.

Try https://www.grc.com instead.

Why do you think MS and such have to patch security issues?

Because people exploit them un-necessarily? Seriously, if people didn't go around looking for ways to do illegal hacking there wouldn't be any problems.

Simplistic and naieve maybe, but am I wrong?

The rest of your post I completely agree with.

kondormid

I use ubuntu not windows so you would think my security was very good, and I suppose it is, sort of.

But how many of us have all our passwords ect sitting on a computer on the net? I am talking about webmail like gmail ect. Now they are very good, do not get me wrong, and as far as I can tell Gmail is head and shoulders above other free email systems as you actually can get your account back if it is hacked (not so with hotmail usually).

So what should we be doing?

Well it is obvious really, we should print out any email that contains a password, file it safely, and delete it off our email accounts. At the moment I think it has become a common habbit to leave emails containing passwords on a webmail server incase we ever need it. Its a bad habit. One password and a hacker opens your email account and gets all your goodies along with it.

While I am on the subject we should have two email accounts. One known to your social group with less secure information. The other for stuff involving money.

For windows I used to use the free avast virus checker and free comodo firewall.

Slimeball20

Downloading the MVPS Hosts file, Spyware Blaster and Spyware Guard and installing them will prevent you from visiting sites that contain viruses.

Make sure to keep them all updated.


http://www.mvps.org/winhelp2002/hosts.htm

http://www.javacoolsoftware.com/spywareblaster.html

http://www.javacoolsoftware.com/spywareguard.html