Mobile and Secure.Com

Occasionally I’m asked to secure a Windows PC or laptop as the owner has no idea about computer security, but they heard that they need it as they would like to access the internet to shop for these great deals they keep hearing about, or chat with friends (Messenger/Skype).

The main problem I encounter when I go around to their home with CD/USB stick in hand containing free security software, is that it’s easy enough for me to install and configure the software, but teaching them how to use it, that’s the hard part. Security software is not as transparent as we would all like it to be.

For instance, the software I tend to get the most comeback from is personal firewalls. When I used to religiously install ZoneAlarm on every PC that had no firewall installed already, I ended up spending a lot of time showing the client how to teach the firewall what software could or could not have permission to access the internet. I tried to reduce the amount of phone calls and emails I’d get on this topic by starting up all the software they used and showing them how to say yes or no to the firewall alerts, and when to tick the “remember my answer� tick box.

This tended to work until the client installed new software or upgraded existing software and the firewall would then generate more pop-ups, which then prompted the client to pick up the phone and call me to ask if it was ok to allow program X to access the internet (if in doubt say no, and if something stops working say yes the next time it asks, and if it keeps asking click the “remember my answer� tick box).

This problem quadrupled if you install the latest Comodo firewall with IPS. For the first week it nags you about every little process as it continues to learn what process is permitted to access what resource. This annoyance was fine for me as I was evaluating the software - and I admit I kinda like Comodo now that it has stopped asking me a million questions - but recommending Comodo to a non-techie client? Although Comodo is better than ZoneAlarm in my opinion, I don’t know if I could deal with the amount of support calls I’d get.

Something I have to explain a lot is why I’m installing something they already have. I.e. when I’m installing the Firefox browser and they already have Internet Explorer installed and they are used to it.

I have to explain that although yes, IE does do a good job as a browser, it’s a Microsoft product, and as such it regularly comes under attack and is therefore not worth the hassle from a security point of view, in my own opinion, other than for Windows Update.

After they understand that Firefox is safer to use when surfing, I make it the default browser, tell IE not to check that it’s the default browser, and remove any IE shortcuts from their desktop and taskbar because no matter how many times I’ve told them to click the orange circle (Firefox), they always manage to click on the blue one (IE).

If I know the client is very likely to do a lot of surfing (especially on-line banking or shopping) then I install the NOSCRIPT plug-in for Firefox and teach them how to use it. This usually involves five minutes of explaining what adware and spyware is, followed by why I’m giving them control of authorizing the use of scripting on each and every web site that they visit.

I also always configure Firefox to delete it’s cache, cookies, and history upon closure, and to never remember passwords, and I install CleanUp! for clients that do a lot of online banking and shopping, and use their PC for business.

I have to explain that there is a trade-off when it comes to computer security and peace of mind when surfing on today’s internet. You have to get used to your security software asking you questions until it learns the answers. It can be annoying, but at least you are more secure than the average surfer.

Most of my clients end up learning about computer security from the process of watching me install the security software, and from their own use of the software. A few have even gone on to secure their friends and relatives computers using what they have learned.

Spybot Search & Destroy used to be easy software to demonstrate to a client. I’d install it and show them how to run updates and immunize once a week. Then every once in a while, all they had to do was start a scan of their PC for malware and go make a cuppa while it runs. Easy right?

Well it was until version 1.5 of Spybot. This version introduced a few ‘quirks’. For instance, not all updates download successfully and the user has to try again for the updates that failed. Plus the addition of the new look bells-and-whistles has made the immunization process slow and tedious. Combine that with a large definition database and your cuppa soon turns into an hour or two of daytime TV, depending on your hard drive size of course.

That’s probably why I tend to find that on my next visit, Spybot’s definition database hasn’t been updated in some time, and no scans have been run. Yet I still recommend Spybot to client’s as the best personal anti-malware software.

Not running Spybot shouldn’t be too much of a problem though as long as the client has their software firewall running, plus an up-to-date anti-virus solution, and is surfing with Firefox.

Note: Spybot has a very useful feature, which adds a list of known dodgy web sites to your hosts file so they are sent to 127.0.0.1. You can edit this yourself and add additional sites that you do not want your computer to have access to such as adult content sites. You can find lists of such sites online rather than visiting them first (accidentally?) and then adding them to the block list later.

You can also use your hardware router’s built-in firewall block list to restrict access to specific web sites. Note that you can only enter as many as your router’s memory will allow, which is usually not that many.

If a client is not yet connected to the internet but they are thinking about it, the one hardware recommendation I do make is that if at all possible, they should opt for a router rather than a USB modem. I avoid the technical talk about the advantages of NAT, freeing up a USB port by using Ethernet instead, etc, and just say that it gives them much better security and they are not that expensive. If they do buy one, I will configure it for them and turn off Wi-Fi (if available and not required by the client).

The process I tend to go through when securing a new client’s PC is as follows:

1. Ascertain the operating system that they are using. If it’s XP and it’s only at SP1, I bring my SP2 CD along in order to upgrade it to SP2 first.
2. Next I install the software firewall and configure it.
3. I install anti-virus software (AVG or customers own licensed anti-virus solution) and Spybot next. I bring along copies of the latest definition files on a USB stick and run both virus and spyware scans especially if the client has been online before (most have used dial-up).
4. Next I install and configure Firefox (NOSCRIPT is optional, as is CleanUp!).
5. I then configure the router/modem.
6. I take a system snapshot and backup the registry before connecting to the internet.
7. The first thing I do when connected to the internet is to run Windows Update and install all critical updates. This may take some time (it’s useful to have a CD of all critical updates since XP SP2 was released to save on bandwidth/time).
8. There are some additional tweaks I do to harden the Operating System depending on how the client intends to use the computer, and what services/software they need.

If all goes well, then I usually don’t hear from the client until it’s time for a check-up or software upgrade. Most of the calls/emails I do get tend to be about software or hardware they wish to purchase next and they are wanting to know if it will work with their setup, or if I could suggest something better.