Chuck
Tue Jun 29 16:13:05 CDT 2004
On Tue, 29 Jun 2004 13:01:02 -0700, "Helen" <Helen@discussions.microsoft.com>
wrote:
>Using MN-700, and wireless network between a desktop (Win98se) and laptop (Win XP).
>I assume both computers are protected with the firewall in the MN700? Right?
>
>Do I need virus protection on each computer?
>I have McAfee online antivirus protection on the desktop which is connected to the modem and basestation.
>A Norton trial antivirus program came with the laptop.
>Should I keep it? Add the laptop to the McAfee coverage??
>Thanks. I'm new to this networking stuff. Would appreciate any suggestions.
Helen,
To specifically answer your second question, you absolutely need antivirus
protection, and more, on each computer.
IMHO, McAfee vs Symantec is like Coke vs Pepsi - there are arguments for both
sides - with no end to the arguments. There are several factors which I
consider when choosing an antivirus:
1) On demand scanning - individual files and whole system.
2) Regular, scheduled scanning - whole system.
3) Real time protection, triggered by activity - individual files.
4) Regular, and frequent, signature file update.
I, personally, decided Norton / Symantec provides all of the above best. Others
would choose McAfee. Some would say Neither, but would choose an alternate
product. There are frequent discussions in alt.computer.virus, and
microsoft.public.security.virus.
Decide how important each of the above factors is to you. Then compare the two
products, based upon those factors.
In answer to your first question, you need multiple products of security
protection. Antivirus protection is a small, but significant, component in your
protection strategy.
When you think security, think layers of it. You need layers, with redundant
components. Each layer is necessary because no layer produces complete
protection.
The first layer is a NAT router or hardware firewall. If you have broadband
internet, or PPP-compatible dialup internet, you can and should use a hardware
firewall.
The second layer is a software firewall, or a port monitor like Port Explorer
(free) from <
http://www.diamondcs.com.au/portexplorer/index.php?page=home>. See
various discussions in comp.security.firewall for good advice on choosing a
firewall.
The third layer is good software. This layer has multiple components.
AntiVirus protection. Realtime, plus a regularly scheduled virus scan.
Regularly updated.
Adware / spyware protection. Realtime, plus a regularly run adware / spyware
scan. Regularly updated.
Complete instructions, using Spybot S&D and HijackThis (both free) are here:
<
http://forums.spywareinfo.com/index.php?showtopic=227>.
Harden your browser. There are various websites which will check for
vulnerabilities, here are three which I use.
http://www.jasons-toolbox.com/BrowserSecurity/
http://bcheck.scanit.be/bcheck/
https://testzone.secunia.com/browser_checker/
Block Internet Explorer ActiveX scripting from hostile websites (Restricted
Zone).
<https://netfiles.uiuc.edu/ehowes/www/main.htm> (IE-SpyAd)
Set up blocking of known dangerous scripts from installing.
<
http://www.javacoolsoftware.com/spywareblaster.html>
Block known spyware from installing.
<
http://www.wilderssecurity.net/spywareguard.html>
Harden your operating system. Check at least monthly for security updates.
http://windowsupdate.microsoft.com/
Block possibly dangerous websites with a Hosts file. Three Hosts file sources I
use:
http://www.accs-net.com/hosts/get_hosts.html
http://www.mvps.org/winhelp2002/hosts.htm
(The third is included, and updated, with Spybot (see above)).
Maintain your Hosts file (merge / eliminate duplicate entries) with:
eDexter <
http://www.accs-net.com/hosts/get_hosts.html>
Hostess <
http://accs-net.com/hostess/>
Secure your operating system, and applications. Don't use, or leave activated,
any accounts with names or passwords with trivial (guessable) values. Don't use
an account with administrative authority, except when you're intentionally doing
administrative tasks.
The fourth layer is common sense. Yours. Don't install software based upon
advice from unknown sources. Don't install free software, without researching
it carefully. Don't open email unless you know who it's from, and how and why
it was sent.
The fifth layer is education. Know what the risks are. Stay informed. Read
Usenet, and various web pages that discuss security problems. Check the logs
from the other layers regularly, look for things that don't belong, and take
action when necessary.
Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.