Login 
 Tech Tips & Tricks |
 Search | |
| |
08-Jun-2007, 09:31 AM
#1 | ||||||
| How To Lock Down and Secure the Information on Computer I would like to hear from the Security Specialists, a step by step procedure on locking down sensitive files and folders, tightening up any possible leaks, closing any possible back-ways-in and cleaning up any corners where sensitive information could be lying around. Most of us know about firewalls and anti-malware software, maybe we could concentrate on good habits/best practices. These days, if you watch any television at all the writers of some of those shows would have the public believe that anyone that uses encryption probably is a criminal/pervert and that if one were honest one would not have anything to hide. I disagree with that, as with most of what I see on the vegimatic. I use two products; True Crypt, http://www.truecrypt.org/ and AIRoboform, http://www.roboform.com/ True Crypt is freeware and Roboform is free in limited usage. I like Roboform so much I bought the software only because I have and use more than ten different passwords nine to !tHiR1t3EEn?~ characters long. BACKGROUND: I was under the illusion that sensitive information was or could be stored in the page/scratch file. I've since learned that was not the case. I'm sure that I'm not the only one that labors under false impressions of one sort or another. So let us hear from the Security MVP's and the Guru's of Code, or anyone that has an hard won nugget of information 
__________________ "I know that most men, including those at ease with problems of the greatest complexity, can seldom accept even the simplest and most obvious truth, if it be such as would oblige them to admit the falsity of conclusions which they have delighted in explaining to colleagues, which they have proudly taught to others, and which they have woven thread by thread, into the fabric of their lives". Leo Tolstoy |
| |
08-Jun-2007, 09:46 AM
#2 | |||||
| My serious route was to keep sensitive material on a computer that has no network access, meaning no internet connectivity in my case. That comp is located in my home and access is limited to my usage. I figure that's the best I can do while still remaining rational about security. BTW....I'm not a security specialist, but for home protection ...'Roscoe is my Friend'  |
08-Jun-2007, 09:56 AM
#5 | ||||||
| Quote:
I'm wondering though, if you have any online accounts, you don't do any banking or internet buying? |
08-Jun-2007, 09:57 AM
#6 | ||||||
|
__________________ Microsoft M.V.P. - Windows IT Professional | M.C.S.A. | M.C.P. - MS Server 2k3 | blog | rate me "Ask Bill why the string in function 9 is terminated by a dollar sign. Ask him, because he can't answer. Only I know that". - Gary Kildall |
08-Jun-2007, 10:13 AM
#8 | |||||
| Quote:
I do not keep those records in my online machine, nor the account number. I do realize there is risk there even the way I minimally use the card. I do no banking on line and definitely no stock market transactions. I view the addition expense as the cost of security. Some people accept that, many don't and operate their finances from their online computer. I made the decision on this some years ago when I first got a computer because I didn't understand the risks. Something to think about today..........from some of the discussions from the 'experts' I've read, it's now possible for malicious script to be injected into a web site that can add code to the firm ware of a connected computer's hardware. That in essence means, there exists the possibility to flash into your hardware a rootkit only dependent on that hardware being attached to your computer. It ( the rootkit) survives a reboot after removal from memory or the hard drive and it survives a re-format. Grim, eh? I am glad I am not in business and dependent on having to accept the above exposure. |
08-Jun-2007, 10:31 AM
#12 | ||||||
|
__________________ "I know that most men, including those at ease with problems of the greatest complexity, can seldom accept even the simplest and most obvious truth, if it be such as would oblige them to admit the falsity of conclusions which they have delighted in explaining to colleagues, which they have proudly taught to others, and which they have woven thread by thread, into the fabric of their lives". Leo Tolstoy |
08-Jun-2007, 10:48 AM
#13 | |||||
| Quote:
Something to consider, though.......I've heard that some malware/spyware/trojans have the ability to turn off that firewall or alter the rule sets with out the owner being aware. So if you are infected, there exists the possibility of outbound security being compromised. And you won't know this in a leak test against your router. So security is a combination of all aspects, from infection to the ability to control connections....as one concept. Not separate concerns. I did have a Norton firewall compromised in much this manner some years ago, which made me a lot more alert( you could read paranoid), as you can see Currently I an using Kerio, but there are others that are excellent. Firefox is a wise choice of browsers.....imo......  I use adblock, flashblock and noscript extensions. Firewall routers are a good first line of defense against unwanted connections. Have you changed the default password in your router? |
08-Jun-2007, 10:57 AM
#14 | ||||||
| Quote:
A quote from the GNU: "Who should your computer take its orders from? Most people think their computers should obey them, not obey someone else. With a plan they call “trusted computing”, large media corporations (including the movie companies and record companies), together with computer companies such as Microsoft and Intel, are planning to make your computer obey them instead of you. (Microsoft's version of this scheme is called “Palladium”.) Proprietary programs have included malicious features before, but this plan would make it universal. "Proprietary software means, fundamentally, that you don't control what it does; you can't study the source code, or change it. It's not surprising that clever businessmen find ways to use their control to put you at a disadvantage. Microsoft has done this several times: one version of Windows was designed to report to Microsoft all the software on your hard disk; a recent “security” upgrade in Windows Media Player required users to agree to new restrictions. But Microsoft is not alone: the KaZaa music-sharing software is designed so that KaZaa's business partner can rent out the use of your computer to their clients. These malicious features are often secret, but even once you know about them it is hard to remove them, since you don't have the source code." The threat maybe real as you say, but I would question that article just because it is slanted towards selling the "Trusted Computing" platform. I'm believing that this discourse will bring out alternatives other than giving up control of my life to Microsoft and "those who intend to govern" and still being able to confidently go about my day to day business. But then, I've been wrong before. Edit: I don't mean this to sound confrontational.
__________________ "I know that most men, including those at ease with problems of the greatest complexity, can seldom accept even the simplest and most obvious truth, if it be such as would oblige them to admit the falsity of conclusions which they have delighted in explaining to colleagues, which they have proudly taught to others, and which they have woven thread by thread, into the fabric of their lives". Leo Tolstoy Last edited by neos1; 08-Jun-2007 at 11:05 AM.. |
08-Jun-2007, 11:00 AM
#15 | |||||
| Quote:
You've been told ................... |
 |
| |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| |
| You Are Using:  |
Advertisements do not imply our endorsement of that product or service. All times are GMT -4. The time now is 09:47 AM. Copyright © 1996 - 2011 TechGuy, Inc. All rights reserved. |  |
.....guess that kinda dates me age wise 
Facebook
Twitter
TechGuy.tv
TSG Mobile