Greenstead
04-13-2004, 10:28 AM
I thought to start a thread which summarises the full range of practical network security measures that are worth considering for your home or SOHO network.
A prompter for me on this subject was that whilst I already have quite good security it didn't prevent me being invaded by an adware infestation and spending all night cutting it out by hand.
So, as a summary list of possibilities:
- So called 'edge protection'. Could be as simple as ICS or a NAT router or proxy with firewall. SPI technology is necesary these days due to the NAT penetration abilities of modern hackers and virus. Protects from unsolicited intrusion from the internet. Essential for internet connections.
- Secondary protection (free). A firewall on each PC e.g. free zone alarm or whatever you prefer. Provides secondary protection from intrusion and also detects unexpected outgoing connection from virus/trojan/adware. Can be problematic and sometimes causes internal problems. Not essential if good edge protection and virus protection is in place.
- Anti Virus. A reputable AV solution with automatic (daily) signature updates and weekly full PC scans. Not an option - must have.
- E-mail. The AV solution should (must) include e-mail scanning.
Note Outlook 2003 has additional security features such as junk mail filter and page image control.
- I.E. settings (free). Use Security and Privacy settings to prevent intrusion of ActivX. Also inhibit all 3rd party cookies and allow only trusted cookies. Block all adware cookies. Popup blocker also useful, such as google bar.
- MS Windows security updates (free). Automatic updates for the operating system and key tools. Essential. Note some updates for more obscure tools have to be manually retrieved. Subscribe to MS security bulletins. Use MS MBSA to scan for missing updates.
Note upcoming XP SP2 with new security features.
- MS Office security updates (free). Essential if you recieve files from others.
- Adware and Spyware protection (free). From my own experience. Can be unintentionally installed by Malware downloads. May not be detected at installation by AV solution. Requires removal tools such as Spybot or Ad Aware. I recommend the later.
If you don't know how wide spread this problem is read this:
http://news.zdnet.co.uk/internet/security/0,39020375,39145496,00.htm
Do a full (deep) scan every day.
Whilst some of the above are primarily PC protection, if a PC is compromised then the whole network is at risk. I consider all the above essential really and a small cost for network security.
Thats a start.
Comments / more ideas invited.
A prompter for me on this subject was that whilst I already have quite good security it didn't prevent me being invaded by an adware infestation and spending all night cutting it out by hand.
So, as a summary list of possibilities:
- So called 'edge protection'. Could be as simple as ICS or a NAT router or proxy with firewall. SPI technology is necesary these days due to the NAT penetration abilities of modern hackers and virus. Protects from unsolicited intrusion from the internet. Essential for internet connections.
- Secondary protection (free). A firewall on each PC e.g. free zone alarm or whatever you prefer. Provides secondary protection from intrusion and also detects unexpected outgoing connection from virus/trojan/adware. Can be problematic and sometimes causes internal problems. Not essential if good edge protection and virus protection is in place.
- Anti Virus. A reputable AV solution with automatic (daily) signature updates and weekly full PC scans. Not an option - must have.
- E-mail. The AV solution should (must) include e-mail scanning.
Note Outlook 2003 has additional security features such as junk mail filter and page image control.
- I.E. settings (free). Use Security and Privacy settings to prevent intrusion of ActivX. Also inhibit all 3rd party cookies and allow only trusted cookies. Block all adware cookies. Popup blocker also useful, such as google bar.
- MS Windows security updates (free). Automatic updates for the operating system and key tools. Essential. Note some updates for more obscure tools have to be manually retrieved. Subscribe to MS security bulletins. Use MS MBSA to scan for missing updates.
Note upcoming XP SP2 with new security features.
- MS Office security updates (free). Essential if you recieve files from others.
- Adware and Spyware protection (free). From my own experience. Can be unintentionally installed by Malware downloads. May not be detected at installation by AV solution. Requires removal tools such as Spybot or Ad Aware. I recommend the later.
If you don't know how wide spread this problem is read this:
http://news.zdnet.co.uk/internet/security/0,39020375,39145496,00.htm
Do a full (deep) scan every day.
Whilst some of the above are primarily PC protection, if a PC is compromised then the whole network is at risk. I consider all the above essential really and a small cost for network security.
Thats a start.
Comments / more ideas invited.