Secure your PC based on how you use It

By
Tech Guy Chris
November 17, 2011Posted in: Security, Uncategorized

Is your computer OVERLY secured of completely insecure?That answer determines on how you use your computer. There is much confusion on how to properly secure your PC. One size fits all security is not the answer. Maximum security is never a bad thing, but it can require high maintenance. I have compiled a list of  for novice, intermediate and advanced users. If you are an intermediate user or advanced user, you may have already implemented whats in the guide below.

This guide is intended for people running under a Windows based PC. However, some of this stuff may be able to be of use to Linux or Mac Users as well. The security levels are determined based on what and how you use

your computer.

Novice Users - Users with little to no computer knowledge / internet browsing, facebook, etc

  • Run as a “standard User”
  • Install internet Security Suite (Many are free) Comodo is a great one
  • Clear browsing history each week
  • Keep your computer updated with security updates, and software and hardware updates
  • Use strong passwords – “K3B0arD!”  is a bad example. !K3YbOArD! is a good example.
  • Do not store your paswords on your computer

Intermediate Users – Users who like to tweak settings, try new software, use torrents etc.

  • Do everything in Beginners level
  • Use the most secure browser when browsing the internet (Currently I.E 9)
  • Keep “administrator” account disabled.
  • Lock machine when not in use
  • Mark certain folders and files private (This does not technically increase the level of security because a hacker can easily see all files on your computer if using a command prompt, even if they are hidden. It can thrwart beginner hackers though)

Advanced Users – People who program, have extremely sensitive information, test software etc, performs simple haacking, goes to numerous underground sites or are more likely to get hacked, or overall just wants to show off.

  • Do everything in Intermediate Level
  • reconfigure your network to include a stand alone firewall separate from your machine and make
  • that firewall the default gateway (Smoothwall is a great piece)
  • Use Windows Encrypting File System (Windows EFS) or a 3rd party suite such as TrueCrypt and place important information in the folders you have encrypted
  • Always browse in Private Mode
  • Install an Opt Out software to prevent 3rd party sites like Google, Microsoft etc from tracking your search history ( An example:  Google Advertising Cookie Opt Out)
  • Rename the built in Administrator account to something other than Administrator
  • Set your router rules to automatically disable Intenet access at times you KNOW you wont be using your PC. Example 1:am-6:00am (This way you dont have to turn off your computer)
  • Install a Virtual PC program and create a virtualized machine to use for internet browsing and such
  • Use Group Policy as needed. (Not really required for home use or recommended. See notes and Warning section) Or, if using LInux or a Mac operating system, use something equivalent.
  • Use Bitlocker of Intel Safeboot. (This elminates the need to use a Bios passcode, but if you dont have the option of using these or anything equivalent, then use a bios passcode)

Notes and warnings

  • These tips are to protect your information that is stored on your  local computer only. A future post on how to protect yourself in the cloud is coming later.
  • Files that you have encrypted with Truecrypt or Windows EFS will become decrypted if you upload them to services such as DropBox, or Google or Microsoft Skydrive etc. This is because, you grant Windows the permission to upload the file. It decrypts and then uploads. If you use a different user account and try this, you will get an access denied error.
  • If  a file that is encrypted using EFS or Truecrypt is put on a Flash drive, the data is decrypted if the flash drive is not NTFS formatted
  • You must have the certificate that you created when setting up EFS installed on each computer to make those files accessible
  • You must back up your Truecrypt or EFS keys. If your computer crashes, and you dont have the keys, the data is lost. (A different PC will not be able to read these files, even if you take “ownership” of these files.)
  • You can permanently lose files if you use Truecrypt incorrectly
  • Group Policy is HIGHLY recommended only if you are an I.T consultant, and you have a mid size network in your home. Otherwise, you may forget what you set your settings to and it can cause a multitude of problems.
Tags:
avatar

About Tech Guy Chris

Tech Guy Chris's main hobbies are computer networking, Cybersecurity, videogames, and databases. Non tech hobbies include weight lifting, jogging, and playing with his dog and being social!