Quote:
dogscoff said:
Contact the ISP and ask them to change all passwords. Then back up all data, pull the network plug on the machine, format the HD and re-install Windows (or better yet, install something more secure, like Linux ).
|
Just be aware that Ubuntu isn't the only Linux.
Many people are boosting it because it's relatively easy to install, but it doesn't necessarily have everything you would want/need. Some other major versions are:
Debian (One of the oldest and most respected versions.)
Fedora (formerly Redhat)
SUSE (the 'free' version of Novell's enterprise Linux)
These are a little bit harder to setup, but you get much more stuff right on the disks and not everyone finds 'Gnome' desktop to be the best way to use Linux.
Quote:
dogscoff said:
If applicable, change the password on her router while you're at it. If it's wireless, change the SSID and WEP passwords (or enable WEP if it wasn't already), and set it to non-broadcast mode. Enable MAC address filtering if available.
|
If at all possible, just
don't use wireless. What does it save you to have a box five feet away from your computer not need a cable? Internet cafes might find it useful to let people connect with their own laptops and not have to manage plugs or cables. Ordinary home users are usually paying for their own exclusive connection. Even with encryption,
wireless networks are not secure. It's just a little extra effort to crack the encryption, as has been demonstrated by quite a few hackers. In other words, encryption works like the locks on our house or car doors, it keeps honest people honest. It doesn't stop real criminals. Given that this guy seems pretty motivated, the smart thing to do is use a shielded cable and disable the wireless.
Quote:
dogscoff said:
Configure the OS to require a password on bootup. Ideally, you'd also change the BIOS to disable boot-from-other-media and then password-protect the BIOS setup screen. Install all security updates for your OS as quickly as possible. This is especially important for Windows. If possible, do the updates offline (ie, download updates from a different PC and save them to a CD, so that you don't have to connect an unpatched PC to the internet).
|
Windows can be 'caught up' very quickly and easily by downloading the appropriate
Autopatcher and burning it to CD before reformatting.
Quote:
dogscoff said:
Now you can install some anti-virus/ anti-spyware (if using Windows. I'm not sure Linux even *needs* anti-virus..?)
Here is the basic freebie suite to keep your average Windows machine mostly secure:
AVG antivirus
Spybot Search & Destroy
Spywareblaster
Firefox
I'll let someone else recommend a good freebie firewall.
|
Microsoft's own
Windows Defender is probably the best anti-spyware now. It comes from the authors of the OS, after all.
Firewalls for Windows XP? The average unsophisticated user is probably better off to just use the integrated firewall. If she's willing to learn a bit, or someone else is willing to help her configure it (this will require repeat visits for several days or weeks as her usage patterns are figured out),
Ghostwall is a good supplement to the built-in firewall.