Web & Wireless Security Tips
Web
Use unique passwords that you can remember. Use at least eight characters and include capital letters, numbers and symbols in passwords. For example: "h4dW4re" is easy to remember, contains both numbers and a capital W. Don't use obvious passwords such as your husband/wife, children, or pet's names.
Create a "web birthday" that's close to your real birthday, and provide fake/vague address information (unless required to by law). If someone does obtain this information, it will turn up bunk when they attempt to cross-reference it.
Download programs and files only from trusted sources.
Turn on your browser's built-in security features. Make sure you are prompted before any file is downloaded. Also verify your Active X controls are set to "prompt" in your browser's security settings. Many malware and spyware programs are launched by ActiveX controls.
Movie files (AVI, WMV), screensavers (SCR) and more recently picture files (BMP, JPG) can contain hidden code too. Other file types to avoid downloading/running are .exe, .com, .bat, or .vbs -- all can contain malicious code.
Don't click on links in popup windows, at the very least use a pop-up blocking toolbar such as google toolbar. Pay close attention to the information you allow them to collect when you download it.
Consider using an alternative Web browser like Firefox or Opera, because hackers often target popular browsers, like Microsoft's Internet Explorer.
Read the terms of service. The 5-10 minutes it may take will be worth loads of aggravation down the line.
Use a web-based email address for surveys, contests, or forums you may sign up for. Treat this as your "junk-mail" address, as the more you sign up for, the more spam you will receive.
Wireless
Change your default network name (SSID) to something unique.
Change the default password needed to access a wireless device. For wireless products such as access points and routers, you will be asked for a password when you want to change their settings. These devices have a default password set by the factory. (ie: The Linksys default username is blank, password is admin.) Hackers know these defaults and will try them to access your wireless device and change your network settings. To thwart any unauthorized changes, customize the device's password so it will be hard to guess.
Enable MAC address filtering so that you specify only computers that are allowed to connect to your network, you can find the MAC address via Start=>Run=>CMD then hit OK. Type IPCONFIG /all to get the applicable information on each machine's unique MAC identifier.
Disable SSID broadcast so that most scanners won't "see" your network. Otherwise anyone with a detector will pick up the signal and be able to see your access point/router's SSID. From there it's only a matter of getting the 'secret code' and your router could be hijacked.
Enable WEP or WPA encryption. Most wireless equipment comes with encryption technology -- be sure to activate it before using. If you have a wireless router and won't be actively using the wireless feature, be sure it's off. You can always reactivate it when you need it.
0 Comments:
Post a Comment
<< Home