OOC… some protection

Hey all some very nasty things making there way across the Internet.  SO while i am so desperately waiting for info from EVE FF 2009, I thought I’d share some protections with you:

Browser Stuff

For firefox 3.5.3 ( yes you need to stay up to date on this)

  • Run the “noscript” add-on found here ~ the allows YOU to determine if you wish to run Javascript in your browser rather than have the browser just run it all
  • Run the ‘better privacy” add-on found here ~ LSO objects are tracking cookies based on flash…in 4 weeks of use I have blocked over 457 of them…again lets you control what information someone else gets from you.
  • Run the “TACO” add-on here

For IE7/IE8

  • Pray…. these two browsers are highly insecure and I do not use them.  Period.

Client Stuff

Run an AV client

  • AVG Free is decent and free
  • Kasperky is not free but very good
  • Vipre is excellent and fully functional 30 day trial

Run an AS client

Run a Firewall ( either host based or separate appliance) but run one

**** if you do nothing else to protect you please do look at this info! ****

  • block Port 445 ( at home) here is why
  • block port 139 ( at home) here is why
  • Disable SMB2 Here is how ~ little MS tool to fix the problem.

MISC

Use this cool to make sure your software is up to date…from secunia.com

  • Secunia.com PSI scanner get it here it is free for personal use

WordPress stuff

  1. Change your table names from the default
  2. Make sure your password for the database is complex and difficult to guess or access
  3. Have backups run and kept off the server, keep these somewhere else that you trust
  4. The following plug-ins may help:
    1. AskApache password protect” BE warned do not just click this one and hope all works well…the module i  had problems with in the past is the protect wp-login/protect wp-admin, they function now but if you screw those two modules up restore from a backup/ restore from a saved .htacess file….
    2. Login Lockdown
    3. Secure WP
    4. WordPress Exploit Scanner
    5. WordPress Firewall

Yes this is a fair number of plug-ins and yes AskApache can cause issues if you run into problems with it check here : http://codex.wordpress.org/Hardening_WordPress

Windows Tips

Windows folks make sure you check the following:

c:\windows\system32\drivers\etc\

look for your hosts file it should look like this:

# Copyright (c) 1993-2009 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a ‘#’ symbol.
#
# For example:
#
#      102.54.94.97     rhino.acme.com          # source server
#       38.25.63.10     x.acme.com              # x client host

# localhost name resolution is handled within DNS itself.
#    127.0.0.1       localhost
#    ::1             localhost

If it does NOT look like this ( you might be using Spybot S&D which will blacklist known bad guys) but it should not HURT anything to replace it with the file above.

Use the firewall with your system, it is better than nothing.

This is NOT an exhaustive post to protect you from everything, just a start in helping you!

Advertisements

~ by Manasiv5 on October 1, 2009.

2 Responses to “OOC… some protection”

  1. If you have a router then you have a hardware firewall right there so you will not need your windows firewall running. Just make sure that you have those ports blocked on the router. Though if you have a laptop you will need to remember to turn on the firewall before you connect to any network that you are not a 100% sure of.

    you might not see this: "# ::1 localhost" line on your host file if your system is not setup to support IPv6.

Comments are closed.

 
%d bloggers like this: