WARNING: This is for those with Win XP

[Tylhandras]

Being as I am a college student and the school's IT desk is fairly up on current computer threats, I have a warning to convey.

It has been spread around that the source code for Windows XP has been compromised.  It is highly suggested that the windows updater be run to insure that your computer won't fall victim to any attempts at intrusion.

-Tyl

[Greymist]

Unless more code had been leaked it was the Win2k/NT core, still some of that code is also in Windows XP so I wouldn't be surprised if the exploits that come about from the leaked Win2k/NT code affect XP also.

Personally I don't think the leaking should prompt updates, people should do it anyway and if they don't they deserve to get hit :p

[Spec8472]

As per Greymist's comments...

From memory: the majority of the code leaked was apparently from MS Paint (you know, the program that lets you draw dodgey pictures, it comes by default with all versions of windows), so you might find that people find a few exploits for that.

Anyhow, as a general rule: you should ALWAYS check for the latest "critical updates" and "service packs" from the Windows Update site.

Two ways to access it:
Click on Start, then Windows Update, or
From some versions of Internet Explorer: Click on Tools, then Windows Update.

Additionally, you should also run an Antivirus program, McAfee and Symantec Norton Antivirus, and use the inbuilt "virus definition update" (aka LiveUpdate in Symantec products) to ensure you're protected against the latest viruses.

If you don't update your PC and Antivirus Software regularly (once a week isn't hard, and you can schedule the software to do it automaticly), then you may as well not bother at all.

EVERYONE using a Windows based PC should be following these basic precautions whilever you use an internet-connected PC, regardless of whether you THINK you're at risk.

For those of you who think you're never going to be infected, you should be aware that many of the newer viruses simply require you to be connected to the internet to be infected (assuming you dont protect your PC).

Additional precautions you should take:
(1) If you recieve an email with any sort of attachment, and you wern't expecting it -- reply to the sender asking them what it is. Often a virus will send a copy of itself to all the people on your "address book" (aka Contact List), and the sender will not have any knowledge of this. A quick email can save being infected by a virus.

(2) If possible, configure your antivirus software to scan all emails you recieve, and files that you open. If you can't do this, or don't know how -- there are usually in built "help files" with the software, if you're still not able to do it, you might consider asking a local techie to help.

(3) Update your antivirus software regularly. Check the help files or ask a techie how to do this.

(4) See #3

(5) Incase you blinked or skipped past the previous points: Update your Antivirus Software regularly.

(6) Yes, I'm ranting, but I can't say it often enough: Update your Antivirus software regularly!


- Your local ranting mostly-friendly psychotic techie.

[Taltos]

nice tutorial spec.. nothing to add...
besides:
Get a Firewall, too.. Zonealarm is nice. (http://www.zonelabs.com iirc)

Taltos

[Lochar]

Also, just for giggles, those of you that code programs and things like that and participate in the shared source program with MS should NOT look at the code, otherwise it could compromise your ability to code based only on what you are supposed to have seen.

[Shadowhawk]

"Shared Source: A Dangerous Virus" at http://www.opensource.org. I know it is biased...

[Lochar]

Biased yes, but wrong no.  They had pretty much only facts in there with a few opinions, but the way they said it...  I agree with them on their points though.  I may use MS but it doesn't mean I like them.

[Natasha]

I cant over emphasise the importance of anti virus. However one thing that many people dont realise is that having an anti virus program running is pointless if they dont update the Virus definitions on a regular basis. at the very least once a weak. Your anti virus is only as good as its last update. I have seen companies infected and lose a heap of time and money because they failed to do this.

If you dont want to spend the $ to buy an anti virus program I recomend going here.

http://www.grisoft.com/us/us_dwnl_free.php

This is AVG free edition and is perfect for the single machine Home user. it is about as Idiot proof as I have seen and will automaticaly update itself and run anti virus sweeps without your having to prompt it. It provides full protection including scanning both incoming and outgoing emails.

In todays world of of high virus threats it is not only the individual who is effected by a virus. Many of the viruses floating around out there are designed to attack specific web sites or generaly clutter up the net trafic once they infect you. it is YOUR responsability to see that you are not adding to this problem.

Natasha

[Spec8472]

it is YOUR responsability to see that you are not adding to this problem.

Truer words were never spoken.

[Spec8472]

Saw this one on the Work Newsgroups:

Free Windows Security Update CD
http://www.microsoft.com/asia/security/ordercd.asp
----------------xx--------------------------------
The Windows Security Update CD will be shipped to you free of charge. This
CD includes Microsoft critical updates released through October 2003 and
information to help you protect your PC. In addition, you will also receive
free antivirus and firewall trial software.

This CD is only available for Windows XP, Windows Me, Windows 2000, Windows
98, and Windows 98 Second Edition (SE).

Please allow 2-4 weeks for delivery. However, the first shipment would not
start until early March 2004.
---------------------xx------------------------------

[Tylhandras]

Sorry, if I blew that out of proportion.  Being as I am a computer engineer with a bent for IT stuff, I just thought I should let you all know about that.

-Tyl

[Lochar]

Ty, I know what you mean.  It's like pulling teeth to get people to update their computers where I work.  We set up the Automatic Updates to download and install so that people don't have to click anything, and people still cancel the install.  

Sorry, if I blew that out of proportion.

It wasn't that much out of proportion. ;D

[Shadowhawk]

Like do I care (much).

Code: Select all

1000:jnareb@roke:~> uname -a
Linux roke.D-201 2.4.20-19.9 #1 Tue Jul 15 17:03:30 EDT 2003 i686 athlon i386 GNU/Linux
1001:jnareb@roke:~> grep IPADDR /etc/sysconfig/network-scripts/ifcfg-eth0
IPADDR='192.168.110.10'

Please notice that the IP address are in reserved private network allocations as defined in RFC1597. This means I'm behind router/firewall.

Take also into consideration that whole code of my operating system (Linux) and my web browser (Mozilla) are available for all to see. And both are believed to be more secure than its proprietary rivals (MS Windows and Internet Explorer) --- some may say that's because they are less popular.... That is something to say to attempts to increase security by obscurity.

I still make security updates via <tt>up2date</tt> though.

[Greymist]

Code: Select all

# uname -a
FreeBSD spongebob 5.1-RELEASE FreeBSD 5.1-RELEASE #0: Wed Aug 20 13:06:03 NZST 2003     karl@spongebob:/usr/obj/usr/src/sys/SPONGEBOBKERNEL  i386
# ifconfig
ed0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        inet 10.10.10.150 netmask 0xffffff00 broadcast 10.10.10.255
        inet6 fe80::5054:5ff:fee4:e069%ed0 prefixlen 64 scopeid 0x1
        ether 52:54:05:e4:e0:69
# uptime
4:20PM  up 152 days, 21:22, 3 users, load averages: 0.06, 0.17, 0.22

Can I win, can I can I? :p

[Spec8472]

Hey, look mah, I can do that too!

Code: Select all

will@palindrome:~$ sudo ifconfig
eth0      Link encap:Ethernet  HWaddr 00:00:E8:89:BD:15
          inet addr:192.168.0.91  Bcast:192.168.0.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:3622118 errors:0 dropped:0 overruns:0 frame:0
          TX packets:4404634 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:100
          RX bytes:628764902 (599.6 MiB)  TX bytes:4265607541 (3.9 GiB)
          Interrupt:12 Base address:0xd400
will@palindrome:~$ uptime
 11:45:30 up 10 days, 23:51,  1 user,  load average: 0.00, 0.00, 0.00