Step 2: Tighten Configuration Settings

Windows configuration -- important -- applies to basic, strong and robust tracks
[specific instructions]

Windows is too smart for its own good. Bill wants Windows to be all things to all people. The result is that Windows is too lax, if not loose. For one thing, there are too many useless (for most people) Windows processes running in the background. A few of them create some of the biggest PC security holes. You can fix things with the right configuration settings though.

Make sure you have installed SP2 (after 2004 any new computer should have come with SP2 pre-installed) before you make changes to Windows XP configuration. The most important changes made by SP2 are security related configuration changes.

Browser settings -- all tracks
[specific instructions]

Most of what you do on the Internet flows through your browser -- even email for most people. It's important to set your browser up so that it's not open to attacks. A few of the changes you make may restrict your activity on the Internet. There are ways to work around those restrictions though.

Make all the changes for Internet Explorer no matter which track you're on -- basic, strong or robust -- even if you use another browser. They're just too important to not fix because IE is so tightly integrated with Windows. If it's too confusing to make the changes get some help, but don't pass them by.

Make similar changes for any other the browser that you use. You'll find recommendations for Firefox on the instructions page, as an example.

Email settings -- all tracks
[specific instructions]

It's easy to create malicious email messages that act entirely on their own. Vigilance won't help here. Changes in the way your email client (program) is set up may be the only thing that will protect you from some malicious messages.

The biggest security risk from email is still attachments however. Better configuration will help, but it's still important to be informed and stay vigilant to protect yourself from attachments.

Other software -- strong/robust tracks

Macromedia Flash, RealPlayer and even Adobe Reader are a good examples of programs that hooligans have used to attack computers. First, you should keep software up to date. Beyond that you may want to use the most secure options/preferences for any Internet facing software. For example, you can tighten the settings for Macromedia Flash by choosing the most restrictive options. You can access them by using the Flash Player Settings Manager.

• map of security section

• vulnerabilities: windows; internet explorer; firefox
• tighten configuration settings: windows; >disable windows services; browser; email clients
• Step 7: patch and upgrade
• 7-step security plan: 1: install a firewall; 2: tighten configurations; 3: install anti-virus; 4: install anti-malware; 5: back up your data and more; 6: dodge the dangers; 7: patch and upgrade software
• the best anti-malware programs
• special plan for new computers
• bonus: double your security
• *links to more on the web*

• email security
• web smarts
• catalog of threats
• elements of defense
• security software
• strong passwords
• 7 steps to security
• bullet-proof security
• WiFi and hotspot security
• how to wipe your hard drive
• how to remove malware

• attack vectors: deception: the #1 threat; spam and scams; phishing; bogus and booby-trapped webpages; poisoned ads, comments, etc.; popup warnings; drive-by email; attachments; downloads; social and p2p networks; hackers and worms
• malicious content: spyware; viruses and worms; trojans

Never stand between a fire hydrant and a dog. --Curmudgeon