Share Security Tips

barneysplash

Hi all

I thought it would be nice to share some bite-size security tips.

We've all read detailed articles and whatnot that people have posted,
but I'd like to exchange some small practical tips we can all use.

So to get the ball rolling :

Wireless
I don't use wireless networking at all. It is just not safe.

For every "new super secure" version of wireless networking,
there are hackers out there who have broken the codes
used to scramble your information, and can get a look at
what your are doing online.

Public wi-fi hot-spots in cafes, hotels and open places like train stations
are a hackers dream. In these economically difficult times,
business are under pressure to save money any way they can,
but at the same, customers expect free wi-fi.

One way to save money this is to stop paying for an IT vendor to provide
security updates to your wireless equipment, thus leaving ageing
systems open to exploitation. Often the attitude of business people is :
"Sure if my customers can get on the internet, that's all that matters."


I have disabled the wi-fi card in my laptop, in the device manager profile.
So I cannot receive wireless signals at all. This means that I cannot
connect to a wireless source, be it a legitimate one or one set up to steal
information.


Unplugging Connection

At home I use a network cable to connect my computer to my
boradband modem. Whenever I am using the computer, but am not online,
I remove the cable from the network port in my laptop.

I also turn off my broadband modem when it is not in use.


Credit Cards

Every few months I ring my bank and tell them to give me new a new credit card
and a new laser card. I explicitly tell them that I want new card numbers.

This prevents valid and exploitable card numbers from being out in cyberspace for
months or even years on end.

This kills three birds with one stone - the attacks that can come through your
internet shopping, use of ATM machines and using your cards to pay for
items in a shop.

If I have been away on holiday, or have used my cards frequently ( like at Christmas)
I also get new numbers.


Post up some tips yourself!

FruitLover

OK Ted, there's a healthy security mindset, and then there's paranoia...

barneysplash

I get that a lot, no offence taken.

Only a few years ago, people used to laugh at me for shredding my bank statements.

I see Lidl have a nice shredder on special from Thursday,
it's amazing how quickly things change.

BaconZombie

dlofnep

Telling someone to not use Wireless isn't viable. In many cases, it makes perfect sense to use a wireless solution. It makes more sense to use WPA2, along with a long, non-dictionary based password (13 characters at least) and a random SSID. This is more than apt to keep a wireless network secure. You could also setup the DHCP server to only assign a specific pool of addresses that match the number of systems on your network. You could also setup a MAC access list. A combination of all of the above is a sure way to keep your network secure, even from the most savvy hacker.

LoLth

+1 what dlofnep says.

If you want to be really really secure you could never conenct your PC to the internet, never isntall any software on it that you are not 100% on its origins (could one of the programmers on a commercial team have left a backdoor), never import data from any other source (by USB, CD, Floppy or other media) as the originating source may be infected or maliscious.

thing is, then you've got a PC that doesnt do much. The idea of security is not to stop people using technology but rather it is there to allow people to use technology securely. Yes, hardening a system or process is a pain and yes, it does detract from its efficiency and user friendliness but thats the balancing act all security techs have to work at and it constantly shifts focus ( conficker gets reported on the news and suddenly managers and users dont care that the AV may slow down a machine, they want it now! and they want is airtight! even though the security team already got told off for slowign down systems when they went to roll out the conficker patches necessary to rpevent infection a month prior to the news report)

dlofnep

Agreed. There is a tradeoff between security and usability.

ifah

I think that this topic started off just a bit too paranoid but maybe we should startup a Top Tips topic for people who just want to be able to use their computers in relative security.

Things like -

- Use a second email address for registering on forums/web sites etc.
- Don't use the same password to register on forums as your email address
- Use WPA at a minimum for Wireless connections
- Enable PIN Lock on your mobile phone/pda
- BIOS password on your pc/laptop
- Try mimimise the amount of PI you give out on-line
- Ensure you personally know everyone you friend on FB / LinkedIn etc

etc

what you guys think

whirlpool

*wonders if the OP drives a bulletproof car with blacked-out windows and refuses to go anywhere without a circle of armed bodyguards