On Thursday 12 January 2006 08:31, Al Active wrote:
On Thu, 2006-01-12 at 07:00 -0600, Stan Glasoe wrote:
Please post it here also. Most of us need this information. I second that suggestion ... most of us *have to* support Win Boxes in Networks ...
OK, All, I can't believe I'm doing this on my beloved SUSE list, but I'm
getting (and responding to) direct requests, too.
- Carl
Here's the info:
Sign up and download the .pdf "Securing Windows XP":
http://www.abxzone.com/forums/showthread.php?t=83570
Read it completely before implementing any suggestions.
More valuable info is available at these resources:
http://www.markusjansson.net/exp.html
http://www.tweakhound.com/xp/security/page_1.htm
http://csrc.nist.gov/itsec/guidance_WinXP.html
http://www.dwheeler.com/essays/securing-windows.html
If the system has already been connected to the internet, you should wipe it
clean and reinstall XP while the system is *not* connected to the Internet.
The procedure is described in the document you downloaded, above.
Additional Software:
Spybot Search & Destroy (Google "download Spybot Search & Destroy")
Install, configure and run Spybot Search & Destroy. Don't be rushed... take
your time and use *all* the tools. It's like a Swiss Army Knife full of
useful/important stuff that stays hidden until it's noticed and pulled up. If
you invest the hours to explore and learn it, the effort will pay off in
spades. Specifically:
- 'deselect' any "ignore products" under "Tools"
- install the Spybot S&D hosts file
- enable all of the IE 'tweaks'
- change all IE start/search pages to Google or another safe site
- Use the "Immunize" function
- view and check unknown processes in the process explorer
- view, export and delete (careful!) unwanted items in the startup viewer
- remove unwanted/suspect Active-X controls (Browser Helper Objects)
- Verify only authorized/desired network connections are configured
(no phantoms; keep the 'green checkmark' items)
Ad-Aware Personal (Google "download Ad Aware Personal")
Install and run this scan, too.
Spywareblaster (Google "download Spywareblaster")
Install and enable all protections.
Trojan Hunter (Google "download Trojan Hunter")
Download, install and run the free 30 day trial. If you do a lot of surfing
(don't!) and you also do e-mail (don't!) on XP, the paid subscription is
definitely worth it.
Grisoft's AVG Free (This is a PITA to find; keep digging, it's there.)
This is a great anti-virus program. In the years I've used it (since day one)
I've only had one or two config 'hiccups' to iron out after virus
definition /and/ program updates. They've done a great job of making it as
painless as possible.
Zone Alarm Free (Google "download ZoneAlarm Free")
You turn OFF the built-in XP firewall and ICS (Internet Connection Sharing)