UCSD Department of Computer Science and Engineering - Personal, Internet, and Computer Security


		Academic Affairs

		Faculty/Staff Intranet

		Financial Affairs

		Human Resources

		Computing Support
		Services
		Resources for TAs & Instructors
		Facilities
		Request Help
		Other Resources
		Windows Resources
		Computing Policy

		Facilities

		Computing FAQ


	Home»Department Administration»Computing Support»Windows Resources»Security
	Personal, Internet, and Computer Security

	The following are suggestions to augment existing security measures which you may have implemented to increase personal privacy and computing security in their varied forms. Microsoft Hotfix & Security Bulletin Service (alt) - Microsoft Security Best Practices - Microsoft Security Microsoft Service Packs EveningStar's Summary of Microsoft Security Bulletins National Infrastructure Protection Center Computer Incident Advisory Capability Counterexploitation Microsoft Baseline Security Analyzer v1.1 Microsoft Education Security Portal Spam laws of the U.S. & the World - Spamdemic Map Poster - Spam solutions from Unisog PacketStorm Security Tools - Windows - Unix UCSD/ACS Campus-wide Desktop Computing Support Software Update Server Replace W9x installs with Windows 2000 or WinXP- Set LanManager security levels to NTLMv2 Install a cable/dsl NAT router with advanced 'packet inspection' - Install ZoneAlarm Pro - Personal Firewall. Config to disallow all incoming & outgoing protocols and ports, then open as necessary. - Potential 'Outbound' security issue -- XP Firewall article Microsoft ports info (3389 is the XP Remote Control Port) Port monitors - ActivePorts Install Cookie Muncher - utility automatically eliminates cookies as quickly as they arrive. Install The Cleaner - detect, prevent, and remove trojans Install Norton AntiVirus - set Live Update to 'daily', & at some point overnight. Prescan all attachments Install Ad-Aware new version 6 - Scans computer for 'spyware' Install BHO Cop - Scan & disable 'Browser Helper Objects' Information on WebBugs -- (A.K.A. Web Beacons on Yahoo) - here, here, and here. Limit personal information entered in browser preferences. Use campus web proxy http://webproxy.ucsd.edu/proxy.pl in browser proxy settings. Occasionally test your system network security - Gibson Finjan Symantec PrivacyNet FreedomNet - Sygate Visit Microsoft WindowsUpdate and OfficeUpdate often for O/S & Office security issues. Microsoft SPCheck - Tool to Determine the Service Pack Level of Components CNet also has a free service for S/W updates and Security Fixes - CatchUp Test NT and Windows2000 for security updates here. Use fictitious or secondary (e.g. hotmail, yahoo) email addresses in online webforms, newsgroup postings, etc. For temporary disposable email accounts use Spamgourmet Limit usage of Instant Messaging software. Close IM programs when not in use. Never use 'clear text' protocols [Telnet, FTP] on unsecured channels (Internet) - Consider a VPN or IPSec Configure email clients to use secure connections - APOP, SSL (client <-> server) --- Use PGP or S/MIME for message encryption. Practice safe networking over wireless lans - which are notoriously insecure. Limit passwords exposure. Wireless Security Articles & here & here & here - Consider a VPN or IPSec Set Windows2000 'Local Security Policy/Local-Policies/Security-Options' to 'NTLMv2 Only' Info regarding ethernet switch sniffing vulnerability - here - here - & here CyberScrub - Completely remove evidence of online activity BrowserSPY - tell you all kinds of detailed information about you and your browser. UCSD Network Security Article on 'Do-it-yourself Internet anonymity' If MS Outlook HTML rendering has you concerned consider the NoHTML plugin. Good article on Internet anonymity for Windows for Power Users. NTFS Alternate Data Streams - vulnerabilities (new virus using streams) Article on How to Bypass BIOS Passwords Article from PC Magazine - April 2002 - 'Are You Being Watched?' Article from ExtremeTech - Privacy & Security on Your PC Article on IRC and backdoor ftp servers - Article on Intrusion Analysis Internet Storm Centers: (Submit firewall logs; summerizes hacker/cracker activity on internet) www.incidents.org - www.dshield.org - www.mynetwatchman.com Securing Window NT, Windows 2000, and Internet Information Service (IIS5): Install Windows 2000 Service Pack 3 either via IE6 Windows Update or download Securing Windows 2000 Server -- html -- PDFs/Scripts/Templates/Job_Aids Run the Microsoft IIS5 'hotfix checker' - new version 3.2- download. Qchain - Install Multiple Hotfixes with Only One Reboot - W2K & NT Qfecheck - Verifies the Installation of Windows 2000 Hotfixes Network Security Hotfix Checker (Hfnetchk.exe). New V3.3 NSA Windows 2000 Security Recommendations Guides. Windows NT ServicePack6a-Rollup (collection of post SP6a updates) Web based test NT and Windows2000 for security updates - Microsoft Personal Security Advisor. URLScan - screens all incoming requests to webserver - new version 2.5 Microsoft's IIS Lockdown Tool v2.1provides configuration options for greater security. Microsoft Security Tool Kit A collection of all tools. Windows 2000 post-ServicePack3 - Windows Updater (via IE6) Information on IIS4 & IIS5 Security: For Windows NT 4.0, IIS 4.0: For Windows 2000, IIS 5.0: 10 April 2002 Cumulative Patch for IIS IIS5 Support Center Windows XP See 'News' entry for Dec 26th, 2001 for UPnP exploit Steve Gibson's 'UnPlug n' Pray' WindowsXP Service Pack 1 - Windows Updater (via IE6)
	back to top ^

9500 Gilman Drive, La Jolla, CA 92093-0404