Tech Question
The Beautiful Darkness
02-03-2007, 08:14
After the fun of being hacked, I was wondering if anyone here could offer any advice as to programs I could use to stop it happening again. I've had a lot of conflicting advice, so I'm a bit confused (yeah, I know asking here may not help that :p).
Any how, as it stands, I've made sure Windows firewall is working, and installed free versions of "Spybot - Search & Destroy", AVG and Ad-aware.
To be honest, I have no idea how useful these are or if there are any better free (or not too expensive) products I could use.
Basically, I want a good firewall, anti-virus and spyware detector thingy, so it is to NSG I appeal for help! :p
an important question is what are you protecting?
A single Computer?
A small home network?
A Small home business network?
anything bigger it should have more expensive stuff already :D
After the fun of being hacked, I was wondering if anyone here could offer any advice as to programs I could use to stop it happening again. I've had a lot of conflicting advice, so I'm a bit confused (yeah, I know asking here may not help that :p).
Any how, as it stands, I've made sure Windows firewall is working, and installed free versions of "Spybot - Search & Destroy", AVG and Ad-aware.
To be honest, I have no idea how useful these are or if there are any better free (or not too expensive) products I could use.
Basically, I want a good firewall, anti-virus and spyware detector thingy, so it is to NSG I appeal for help! :p
Telegram UpwardThrust. He'd be able to help you better than anyone else on this forum.
Deep World
02-03-2007, 08:35
http://www.zapatopi.net/mindguard/ :D
The Beautiful Darkness
02-03-2007, 08:40
an important question is what are you protecting?
A single Computer?
A small home network?
A Small home business network?
anything bigger it should have more expensive stuff already :D
Lol, it's just for my personal computer.
Telegram UpwardThrust. He'd be able to help you better than anyone else on this forum.
Ok, will do. Thanks.
just one computer you probably have enough...
just keep the AV updated and the firewall as strong as you need
The Beautiful Darkness
02-03-2007, 08:47
just one computer you probably have enough...
just keep the AV updated and the firewall as strong as you need
Ok, I was a little unsure if the Windows firewall would be sufficient, as a few people have told me it's not very good. But if it is, that makes life easier for me. :D
Thanks.
Deep World
02-03-2007, 08:53
Common sense and caution. The two most powerful tools out there. Even the best AV software can only catch about 20% of the bugs and it's always playing catch-up.
well i turned my windows one off but use the hardware one on my main board, if you have access to that it should do :D
i am however not an expert... and if you leave your computer on for long periods unattended with the same IP address you may want to do stuff with your modem/router/switch if you can.
The Beautiful Darkness
02-03-2007, 08:58
Common sense and caution. The two most powerful tools out there. Even the best AV software can only catch about 20% of the bugs and it's always playing catch-up.
Yeah, but it's not like I was doing anything really dumb to begin with though...
well i turned my windows one off but use the hardware one on my main board, if you have access to that it should do :D
i am however not an expert... and if you leave your computer on for long periods unattended with the same IP address you may want to do stuff with your modem/router/switch if you can.
Forgive my ignorance, but you've lost me... Hardware firewall? :confused:
Similization
02-03-2007, 09:40
Lol, it's just for my personal computer.If you don't know what you're doing & don't care to learn, I suggest you install a Bit Torrent client on your machine & download a pirated version of Kaspersky. It's very, very good & probably the most userfriendly & fool-proof software I've had the pleasure of comming across. I suggest you disable the WinXP firewall if you do this.
If you have some idea what you're doing, or feel inclined to learn, I'd suggest a combination of a 3rd party firewall, IP blocklists, IP monitoring & tracking software & a free AV.
3rd party firewalls offer vastly more protection & functionality than the WinXP thing does. I'd recommend Outpost, as it's very efficient, regularly updated & has a shitload of handy features.
IP blocklists are useful for a lot of things, including blocking anti-P2P agents & advertising. Some 3rd party firewalls have build-in blocklist managers (Outpost, for example). If your FW of choice doesn't, there's a couple of independent blocklist managers out there. Peer Guardian, for example.
IP tracking & monitoring software's not nessecary but quite useful for keeping track of & blocking traffic to & from certain IPs. Some 3rd party FWs (like Outpost.. No, they're really not paying me :p ) offers the same functionality.
..And free AVs are just nice. AVG is every bit as good as anything you can buy & you don't have to worry about paying or looking for pirated updates.
The combination of the AdAware, Spybot S&D and HijackThis anti-malware programs offers the best protection from & removal of random crap infesting your machine. Familiarizing yourself with the Windows registry may seem like a daunting task, but ultimately it's the tool for solving PC problems. Anti-malware basically just attempts to handle the registry for you, and having no brains, they're at a distinct disadvantage.
Finally, a modicum of common sense is important. The most common cause of PC troubles is users uncritically installing malware on their own machines, because they've downloaded something funny & don't fathom it comes with a bunch of junk that'll cripple their machines. Don't uncritically click every "OK" button you're presented with.Forgive my ignorance, but you've lost me... Hardware firewall? Firewalls inspect traffic to & from your computer (the WinXP FW doesn't inspect traffic from your machine). A software firewall does this after the traffic's reached you & is run by your PC. A hardware firewall runs independently of your PC & usually inspects the traffic before it reaches your computer. All types of hardware firewalls have the advantage of not slowing down your machine, but they aren't per definition better at what they do. Most mainboard based firewalls (like nVidia's) are no better or worse than software firewalls.
Divine Imaginary Fluff
02-03-2007, 10:28
If you want a hardware firewall, a simple router can do well. You could get yourself a cheap D-Link one, for example.
Kryozerkia
02-03-2007, 14:12
If you want a hardware firewall, a simple router can do well. You could get yourself a cheap D-Link one, for example.
And if you want a router that works, use an SMC.
You may always want to consider that the Windows Firewall is a joke and that there are better ones out there, such as Sygate and Komodo.
If you want a hardware firewall, a simple router can do well. You could get yourself a cheap D-Link one, for example.
No! Don't! Never buy a D-Link product.
Imperial isa
02-03-2007, 14:19
No! Don't! Never buy a D-Link product.
please tell that to optus
please tell that to optus
Why? I'm on Optus and I have a Netgear router.
EDIT - curses, I am foiled by the damn modem.
Well...never buy a D-Link router. :P
Divine Imaginary Fluff
02-03-2007, 14:26
No! Don't! Never buy a D-Link product.Too late.
It's worked well thus far, though.
I take it you (and others) have had some unfortunate experience with them?
Imperial isa
02-03-2007, 14:27
Why? I'm on Optus and I have a Netgear router.
EDIT - curses, I am foiled by the damn modem.
Well...never buy a D-Link router. :P
only have what Optus has given me and i can't get on xbox live through the D-Link modem
Compulsive Depression
02-03-2007, 14:36
Well...never buy a D-Link router. :P
Mine (a DGL-4300) is a brilliant bit of kit.
To the OP:
Anyway, the most important ways to avoid getting nasty things are:
1) Keep all your software that goes near the network up to date. This, especially, includes IE and Windows (Use Automatic Updates! Do not put them off!) because they're such popular targets.
2) Remember: Careless clicking costs lives.
It's a good idea to get a router with a hardware firewall in it, just to be safe. And don't leave passwords on computers, routers, anything, as the default value or blank. Or obvious things like "password"; keep them a decent length (8+ characters for anything important), use letters, numbers, symbols and upper and lower case. Most "hacking" is done because the user does something stupid (um... no offense), rather than because the "hacker" is particularly clever or ingenious.
'Course, you're not going to 100% avoid something nasty happening to your computer even by unplugging everything, putting it in a lead box, encasing it in reinforced concrete and dumping it in the Mariana Trench. So keep backups :)
Teh_pantless_hero
02-03-2007, 14:36
Get a router.
PS. Except D-link.
Imperial isa
02-03-2007, 14:38
Get a router.
PS. Except D-link.
if i had the money i would get a new PC, a router, 360 and ps3
Similization
02-03-2007, 14:50
And if you want a router that works, use an SMC.The best router's the one that does what the user needs. D-Links suffer mostly from two problems; ignorant endusers & misapplication. Neither says anything about the brand. If any of you are having router trouble, I suggest you visit PortForward (www.portforward.com)You may always want to consider that the Windows Firewall is a joke and that there are better ones out there, such as Sygate and Komodo.Yes & no. The problem isn't so much that the WinXP firewall's bad. It's not the best in the world, but it's pretty solid. The problem is it only does half of what people expect from a firewall. It's more of a firehedge, really.
Ultraviolent Radiation
02-03-2007, 15:11
In case no-one has mentioned it yet, ZoneAlarm is quite good.
http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp?dc=12bms&ctry=GB&lang=en
Kryozerkia
02-03-2007, 15:11
The best router's the one that does what the user needs. D-Links suffer mostly from two problems; ignorant endusers & misapplication. Neither says anything about the brand. If any of you are having router trouble, I suggest you visit PortForward (www.portforward.com)
I have used two types of routers, my old SMC and this new D-Link and I only did away with my SMC because it was aged and the hardware was dated. My SMC router didn't drop my connection. The D-Link however has failed to keep my link up steadily.
Because of this, I was forced to switch from my DHCP reliance and take on a static 192.168.x.x IP so that when the connection did drop, I could have my connection restored quickly.
I never had to use port forwarding on my old SMC router unless it was for remote desktop and one or two LAN-based games. SMC didn't need any drivers installed, or the like. It just functioned; no fuss, no muss.
The D-Link has given me more trouble in the first few months of ownership than my SMC did in the four years I used it. That's not to say that D-Link is the worse.
Now, I only got the D-Link because it was the only model that met my needs when my SMC router went on the fritz.
My D-Link is my first D-Link router. However, I share my place with someone who has had three D-Link routers in the past and they were all inadequate in some way.
I consider it a good week for my D-Link if we only have to reset it twice. My SMC I never had to reset.
Cluichstan
02-03-2007, 15:21
I suggest you stop visiting all those sketchy porn sites, TBD. :p
Too late.
It's worked well thus far, though.
I take it you (and others) have had some unfortunate experience with them?
I can only speak for my wireless receiver, which likes to randomly boot me off the internet (there seems to be a problem with it assigning me an IP address), is susceptible to interference from the microwave oven, and has a habit of "locking up" if too many simultaneous connections occur (and yet, it doesn't happen always - let's say 30% of the time, and usually only after the offending program has been running for at least 10 minutes). This makes applications such as bittorrent and online games difficult, needless to say. The only way to fix it when it locks up like that is to reset the thing, and sometimes it'll take several hours with the lights flashing away before it functions (the former problem of it booting me off randomly is fixed simply by removing the power cable and plugging it back in). Very disappointing. It crashed three times last night. I usually only have problems once every second night, though, and tonight it seems to be fine.
My brother's Netgear receiver, however, has none of these problems and works flawlessly without nearly any interaction on my behalf. From what I have heard from him and other users, their routers are just as problematic.
only have what Optus has given me and i can't get on xbox live through the D-Link modem
We got the original xbox live working through ours.
I suggest you stop visiting all those sketchy porn sites, TBD. :p
I think we all know that won't be happening.
The Beautiful Darkness
02-03-2007, 15:47
I think we all know that won't be happening.
Yes, because I wasn't visiting sketchy sites (porn or otherwise) to begin with. I almost wish I was, 'cause then I might have gotten something nice to compensate me. :rolleyes: :p
The power transformer in my D-link router blew up twice in a year and we had to get it replaced. Is that a sign of using the internet too much? :p
Yes, because I wasn't visiting sketchy sites (porn or otherwise) to begin with. I almost wish I was, 'cause then I might have gotten something nice to compensate me. :rolleyes: :p
I dunno, NSG is pretty sketchy now and then. ;):p
Similization
02-03-2007, 15:52
I'm guessing it's one of two things. Either you've misconfigured your network, or you're a P2Per and haven't figured out that routers can only handle so many connections & lines choked in overhead at once, without overheating.
Both problems can be solved by properly configuring your shit, though if the latter's the reason, your real problem is that you're trying to - to use an analogy - build a skyscraper out of duplo. You should've gotten a model designed to handle the workload.
If you're really not using the router in a way it's not meant to be used, then I'd suggest you shove it down the throat of the nearest D-Link peddler, rob their register & buy something that works... But having spend about a year & a half dealing with other people's router problems, I suspect the root of your troubles is you. No offence.
The Beautiful Darkness
02-03-2007, 15:52
I dunno, NSG is pretty sketchy now and then. ;):p
See? I'll have to cut down more! :p
Imperial isa
02-03-2007, 15:56
We got the original xbox live working through ours.
you have given me one more thing to hate you for :p
See? I'll have to cut down more! :p
Pfft, you can't leave. Nobody leaves.
I'm guessing it's one of two things. Either you've misconfigured your network, or you're a P2Per and haven't figured out that routers can only handle so many connections & lines choked in overhead at once, without overheating.
Both problems can be solved by properly configuring your shit, though if the latter's the reason, your real problem is that you're trying to - to use an analogy - build a skyscraper out of duplo. You should've gotten a model designed to handle the workload.
If you're really not using the router in a way it's not meant to be used, then I'd suggest you shove it down the throat of the nearest D-Link peddler, rob their register & buy something that works... But having spend about a year & a half dealing with other people's router problems, I suspect the root of your troubles is you. No offence.
If you're referring to me, I only have a 512k connection and I don't exactly abuse it. This wireless receiver (not the router - the router is fine) should be able to handle the workload. Substituting it for a virtually identical receiver from a different company solves all of the problems. This one wasn't exactly cheap, either - if it actually can't handle the workload, in my opinion, it should.
you have given me one more thing to hate you for :p
What were the others? :P
Rubiconic Crossings
02-03-2007, 16:15
If you want a hardware firewall, a simple router can do well. You could get yourself a cheap D-Link one, for example.
Only if it is a NAT router.
Also the XP firewall is rubbish unless you have sp2.
If you have SP2 then you may as well use the inbuilt firewall. If you are technical then you may as well use a 3rd party app...and keep track of what apps are accessing the interwebtubesnet.
Kaspersky is no longer respected since their blip btw. Great lab work though...but not a touch on f-secure. If you want to keep track of AV shit then http://www.virusbtn.com/ is a good site.
Hardware firewall...if you want to go that route .. you don't need a mega machine...whack on BSD of some form and take it from there...if you are not techie don't bother.
Imperial isa
02-03-2007, 16:21
What were the others? :P
as if i need to say :p
as if i need to say :p
Sure you do. You want to tell me. I'm your friend, aren't I?
*gets out phonebook and holds it menacingly*
Imperial isa
02-03-2007, 16:27
Sure you do. You want to tell me. I'm your friend, aren't I?
*gets out phonebook and holds it menacingly*
i just call a exSAS friend i know and ask if its ok to tell you :p
Whereyouthinkyougoing
02-03-2007, 16:29
You may always want to consider that the Windows Firewall is a joke and that there are better ones out there, such as Sygate and Komodo.
I'm using the Sygate Personal Firewall and it's great. Haven't had any problems whatsoever yet - and I'm an absolutely computer illiterate person, so it can't have been because of some brilliant configuration I did. :p
You can download it for free.
Additionally, I have Avira AntiVir Personal Edition Classic, i.e. the free version of AntiVir. It's also working very well (judging again from never having had any problems despite being online most of the day, every day) but it gets on my nerves with the "Updating" pop-ups and the "Notifier" that I have to tell every time anew that it won't get access to the internet. Oh well, it's free, so I shouldn't complain.
i just call a exSAS friend i know and ask if its ok to tell you :p
Haha. I know someone currently in the SAS. :P
Compulsive Depression
02-03-2007, 16:38
Also the XP firewall is rubbish unless you have sp2.
And if you don't, you're fucked anyway. So don't worry :)
(Edit: With the obvious exception of XPx64, which only has one service pack so far, being newer and different to XP 32-bit.)
Imperial isa
02-03-2007, 16:40
Haha. I know someone currently in the SAS. :P
cool
thats one lot you got to watch what kin of jokes you say
After the fun of being hacked, I was wondering if anyone here could offer any advice as to programs I could use to stop it happening again.
:eek:
That doesn't sound nice! Happened recently?
The best way to not being hacked again is to dig a hole in the ground and to get a hose, a bottle of syrup, a bottle of ketchup, three fountain pens, a piece of string and a piece of cheese, in addition to a litter of kittens...
'course, you'll have to get your hands on the kid that hacked you, which can be a drag... And it really only works on one hacker at the time, so...
um...
Nevermind.
I'm using the Sygate Personal Firewall and it's great. Haven't had any problems whatsoever yet - and I'm an absolutely computer illiterate person, so it can't have been because of some brilliant configuration I did. :p
You can download it for free.
I'm very happy with my Sysgate firewall too, and with an updated Ad-Aware, Spybot and anti-virus it all seems to go well :)
Oh, and I'm very happy to have a computer-savvy brother and some knowledgable friends around to help me set up everything, mask my open ports and generally secure my surfing :p
Divine Imaginary Fluff
02-03-2007, 23:00
Kanabia: I don't use wireless at home, and have a simple DI-604, so the only issue I'd have to deal with would be strictly router-related. And that works well.
The Beautiful Darkness
03-03-2007, 12:46
Thanks for all your help, I've formatted my computer to make sure I get rid of whatever was on there, and I've downloaded most of the recommended software. :p
Thanks again, 'twas appreciated. :)
Compulsive Depression
03-03-2007, 12:55
Just remember: No amount of security software can save you from yourself ;)
It's a good idea not to run as an Administrator most of the time, too; quite a lot of things can't get a foothold if you're just a lowly User. Set up a "general use" account, and only use your Admin account for installing finickity stuff (that you know is safe, no FREE SCREENSAVERS! or nonsense) that requires Admin.
Try colouring your Admin account's desktop background/windows/etc. a really, really horrible colour so you won't use it ;)
Rubiconic Crossings
03-03-2007, 13:06
And if you don't, you're fucked anyway. So don't worry :)
LOL!!! Spot on!
Harlesburg
04-03-2007, 04:00
I suggest you stop visiting all those sketchy porn sites, TBD. :p
There are non-sketchy porn sites?:eek:
*Contributes*
Johnny B Goode
04-03-2007, 04:01
After the fun of being hacked, I was wondering if anyone here could offer any advice as to programs I could use to stop it happening again. I've had a lot of conflicting advice, so I'm a bit confused (yeah, I know asking here may not help that :p).
Any how, as it stands, I've made sure Windows firewall is working, and installed free versions of "Spybot - Search & Destroy", AVG and Ad-aware.
To be honest, I have no idea how useful these are or if there are any better free (or not too expensive) products I could use.
Basically, I want a good firewall, anti-virus and spyware detector thingy, so it is to NSG I appeal for help! :p
TBD! Good to see ya back. I use McAfee and NOD 32 myself. NOD costs money, but I don't know about McAfee.
UpwardThrust
30-03-2007, 13:08
After the fun of being hacked, I was wondering if anyone here could offer any advice as to programs I could use to stop it happening again. I've had a lot of conflicting advice, so I'm a bit confused (yeah, I know asking here may not help that :p).
Any how, as it stands, I've made sure Windows firewall is working, and installed free versions of "Spybot - Search & Destroy", AVG and Ad-aware.
To be honest, I have no idea how useful these are or if there are any better free (or not too expensive) products I could use.
Basically, I want a good firewall, anti-virus and spyware detector thingy, so it is to NSG I appeal for help! :p
All good first steps
Now hardening a system is a many level step process it starts first with OS choice and updates, do not give them a foothold on your system so patches (both critical and other all the way up). Also make sure passwords are set across the board (and good passwords) use Alpha AND numaric Capitals and lowercase and Special Chars ... the more you can combine them the better off you are.
Also change your passwords, industry standard is 90 days
Watch what software you use, anything that uses the network has more potential for vulnerabilities. Anything LISTNING on the network has a higher risk of vulnerability so turn things like RDC off and anything else that acts as a server process
Then comes the AV Spyware Protection and Firewalls (I like your choices for the most part) you may also want to check out 3rd party firewalls like Sygate Kerio or Zone Alarm, all a bit more advanced then the windows one (not that it is BAD just less interactive and configurable then some of the others)
Also a good choice is a router with built in filtering (or a standalone hardware firewall) this can help a lot actually this extra step often thwarts some of your sneekier Port Scans
And in the end be smart do not give out pass words do not use shaky software and keep yourself to the safer parts of the internet.
UpwardThrust
30-03-2007, 13:14
Just remember: No amount of security software can save you from yourself ;)
It's a good idea not to run as an Administrator most of the time, too; quite a lot of things can't get a foothold if you're just a lowly User. Set up a "general use" account, and only use your Admin account for installing finickity stuff (that you know is safe, no FREE SCREENSAVERS! or nonsense) that requires Admin.
Try colouring your Admin account's desktop background/windows/etc. a really, really horrible colour so you won't use it ;)
Good advice too ... Runing as a limited user can reduce the rights of malicious software that you initiate ( as it often inherits your user rights)
Peepelonia
30-03-2007, 14:15
Ok, I was a little unsure if the Windows firewall would be sufficient, as a few people have told me it's not very good. But if it is, that makes life easier for me. :D
Thanks.
The thing about firewalls, is it's really no good unless you learn a little about IP, Ports, etc.. keep it set to all the defualts and you just have problems conecting to certian things, switch them off and you leave your self open.
Velka Morava
30-03-2007, 18:25
My two cents:
Log as Admin only when it is inevitable.
Use different and hard to guess passwords and user names for your computer, mail, games, forum accounts (the admin account can be renamed too) and change them at least yearly.
Update often your system, expecially the critical updates. I, personally, prefer auto notification and manual update from the win update website but automatic updates are fine as well.
Use a good antivirus ad update it frequently (at least once a day). I usually reccommend Avast! (there's a free home user licence of it).
Altough the built in firewall in Win is not bad i usually reccommend ZoneAlarm, someone provided the link already.
If you have a router check out some programmer forums about it, sometimes they have default factory superuser accounts whose ID and password are widely known (edit: but not mentioned in the user manuals).
Don't open mail from unknown senders or suspect websites (sounds obvious but it's the way most troyans/viruses get around).
That's about all, unless...
If you have the time and will check out the bastion host concept ;)
Hunter S Thompsonia
30-03-2007, 18:37
My advice?
http://fedoraproject.org/wiki/
The Alma Mater
30-03-2007, 19:09
TBD! Good to see ya back. I use McAfee and NOD 32 myself. NOD costs money, but I don't know about McAfee.
So does McAfee, though there are dozens of legal ways to get the whole suite for under E 20 a year.
The userinterface for McAfee is quite poorly designed though, and the programs themselves take up far more system resources than necessary.
Slaughterhouse five
30-03-2007, 19:15
you were hacked? are there now naked pictures of you on the internet?
do i have to do a google search?
either way, there are simple things you can do to protect yourself. buy a copy of a software firewall that will be updated. if you are connected all the time with a cable connection or other type of connection i would also suggest in buying a router with a firewall. but just so you know that any of these measures can still be "hacked" if there is someone out there willing to invest the time in getting into your computer.
Slaughterhouse five
30-03-2007, 19:18
My advice?
http://fedoraproject.org/wiki/
can still be "hacked" the only reason why its more "secure" is because less people use it and generally the people using it know a bit more of what they are doing then the average windows user.
Hunter S Thompsonia
30-03-2007, 19:27
can still be "hacked" the only reason why its more "secure" is because less people use it and generally the people using it know a bit more of what they are doing then the average windows user.
Still has inherent bonuses securitywise, such as forcing users not to run as root, meaning any damage that can be done is very limited.
UpwardThrust
01-04-2007, 18:42
My two cents:
Log as Admin only when it is inevitable.
Use different and hard to guess passwords and user names for your computer, mail, games, forum accounts (the admin account can be renamed too) and change them at least yearly.
Update often your system, expecially the critical updates. I, personally, prefer auto notification and manual update from the win update website but automatic updates are fine as well.
Use a good antivirus ad update it frequently (at least once a day). I usually reccommend Avast! (there's a free home user licence of it).
Altough the built in firewall in Win is not bad i usually reccommend ZoneAlarm, someone provided the link already.
If you have a router check out some programmer forums about it, sometimes they have default factory superuser accounts whose ID and password are widely known (edit: but not mentioned in the user manuals).
Don't open mail from unknown senders or suspect websites (sounds obvious but it's the way most troyans/viruses get around).
That's about all, unless...
If you have the time and will check out the bastion host concept ;)
I would do a "hardware" firewall system before a bastion host in a home users case ... would be a tone more effective for their user of interaction
UpwardThrust
01-04-2007, 18:44
Still has inherent bonuses securitywise, such as forcing users not to run as root, meaning any damage that can be done is very limited.
No that means some attacks damage can be reduced ... not all
Fedora is a hog anyways, bloated and insecure there are a tone better Distro's out there (security and usability wise)