FYI: Security Basic Guide

ermik · Apr 18, 2012

Been reading some threads about people getting their computers hacked and thought id make a basic "Keep in mind" thread to help secure the basics of you computer enviroment.

Entropia security
------------------
Get a gold card, everything else you do security wise depends on this.
Use common sense, if something someone tells you inside EU feels to good to be true it probably is.
Use a strong password to everything Entropia related, keep separate passwords for your entropia account and your forum accounts.

Network security
-----------------
Make sure to break your home network into segments, using a appliance firewall as the outer perimeter of defense, then place your computer(s) behind that firewall.

Secure your wireless network to make sure noone can enter your network that way, once someone gets inside your network, its a walk in the park to grab your login cookies or whatever floats around on your network.

Computer security
------------------
Use software firewall on your machine, even if you have a appliance firewall, the more layers of defense the harder to attack.
Use a antivirus program.
Patch your OS reguarly.
DONT RUN YOUR OS AS AN ADMINISTRATOR! This has been the major reason for windows "bad security" during the last 15 years. Switch to admin account if you need to do something that requires higher priveliges.

Usage security
----------------------
Dont trust anyone!
If possible use SSL for connections where you login, such as facebook, twitter etc. Try using https:// when connecting to see if that website offers SSL encryption as an alternative.
Dont download and install things you cant verify, alot of the programs and games out there on torrentsites are binded with bad code.

If anyone have more to add please do, this was just a basic overview on things to consider when connecting to the internet

If anyone have questions on more specific security issues , send me a pm.

cheers

ermik

Talania · Apr 18, 2012

Be careful of using voice using someone's privately owned service since they will be able to see your IP. Same with online music streaming. If someone offers it in game they will know who in game is logging on to listen and can then use the IP to hack you.

goodgrief999 · Apr 18, 2012

ermik said:
Dont download and install things you cant verify, alot of the programs and games out there on torrentsites are binded with bad code.

cheers

ermik

Ever since napster I considered it an occupational hazard to use (thus) bittorrents and privately share files. In the early days I would have to re-install Windows around once a week! After the advent of software like avast! it's more like once every three years.
'Firstload' and 'usenet' are very suspicious file sharing viruses.
Boo
p.s. thanks for the summary and a great thread.

aia · Apr 18, 2012

Talania said:
Be careful of using voice using someone's privately owned service since they will be able to see your IP. Same with online music streaming. If someone offers it in game they will know who in game is logging on to listen and can then use the IP to hack you.

Another thing is that someone sending you links could do that because the links directly (through some vulnerability) or indirectly (by posing it's some other kind of software like "hunting bots) is "malware", like keyloggers (to pick up your password) or trojans (someone who wants to turn your computer into a spam server) - some people doing this combine this with social engineering, they might join your soc for a few months before and gaining trust trying to trick people.

Unfortunately it's nearly impossible to know if a software that is announced here on the forum is legitemate (it does what it say it does), or if it's an attempt to scam you out of your inventory and skills.

A goldcard is good, but don't become careless with it. If someone manages to get your username and password, and they know you have a goldcard; if they managed to get you to install a keylogger on your system it's not unlikely they might get you to somehow give them a working "entrynumber".

And when you're ingame, don't trust anyone.
An oldtime uber might suddently have (unofficially) sold his avatar as a "bulk sale" and a scammer is running around with it. Or it might be an avatar that's shared between different people and one of the "physical" players doesn't want to take responsibility of what another "physical" player does when he's using the avatar. ("You lent me your gun, yes, but my former boyfriend TTd the gun so I can't give it back. Sorry. <lange nase>*")

Steve_saber · Apr 18, 2012

Good thread

ermik · Apr 19, 2012

aia said:
Another thing is that someone sending you links could do that because the links directly (through some vulnerability) or indirectly (by posing it's some other kind of software like "hunting bots) is "malware", like keyloggers (to pick up your password) or trojans (someone who wants to turn your computer into a spam server) - some people doing this combine this with social engineering, they might join your soc for a few months before and gaining trust trying to trick people.

Unfortunately it's nearly impossible to know if a software that is announced here on the forum is legitemate (it does what it say it does), or if it's an attempt to scam you out of your inventory and skills.

A goldcard is good, but don't become careless with it. If someone manages to get your username and password, and they know you have a goldcard; if they managed to get you to install a keylogger on your system it's not unlikely they might get you to somehow give them a working "entrynumber".

yes goldcard adds another layer of security, but its by no means 100% safe, far from.

cheers

ermik

xaph · Apr 19, 2012

goodgrief999 said:
'Firstload' and 'usenet' are very suspicious file sharing viruses.

Do you regard NZB's a threat via usenet on encrypted VPN. (Audio Visual only). As far as I understand malicious programming cannot be embedded nor requesting IP compromised with this method.

And dont forget Malwarebytes fully subscribed for assistance

dr3w · Apr 19, 2012

A little bit of reality: (I don't want to say that security is bad!)

Many layers of protection can render your PC into useless, slow piece of sheep.

1. Keep in mind, that your GC reader can broke, or battery worn out, or etc. This is perfect method of security, but if it will fail - you lose access to EU, until you will get replacement/change battery.
2. Antiviruses. Oh yes, my favorite part. Very often, they checking each file which system is accessing, thus, degrading performance of your PC. There even is some enthusiasts, who putting TWO antiviruses simultaneously.
3. Same about "extra" firewalls. It's very easy, when you can select "wrong" one, and after installation you simply lose connectivity to internet.

If you're not sure (paranoid) about your safety - the best way is to find someone (specialst) whom you trust, and ask for help in fine-tuning of your system. In other case, you have high risk to shoot yourself in the foot.

You decide to visit your favorite Zoo. Well, you know that anything could happen, and you take your favorite bullet-proof vest, couple of desert eagles, one uzi, some grenades, night-vision goggles and go in armored minivan. Guards running in front of you and behind, small helicopter above controlling whole area. But soon, you feel yourself not too good, since all your gear was too heavy and there was too hot on the streets, so you decided to go back home.

Then you receive security bill and got heart attack.

goodgrief999 · Apr 19, 2012

xaph said:
Do you regard NZB's a threat via usenet on encrypted VPN. (Audio Visual only). As far as I understand malicious programming cannot be embedded nor requesting IP compromised with this method.

And dont forget Malwarebytes fully subscribed for assistance

I'm sorry, i don't fully understand the question. I'm saying that usenet can be used for malicious purposes. It has happened to me.
I bought a piece of software and a usenet/firstload file sharing sytem, thoroughly corrupted and dangerous, was delivered in the software's place.
Boo.

ermik · Apr 19, 2012

dr3w said:
A little bit of reality: (I don't want to say that security is bad!)

Many layers of protection can render your PC into useless, slow piece of sheep.

1. Keep in mind, that your GC reader can broke, or battery worn out, or etc. This is perfect method of security, but if it will fail - you lose access to EU, until you will get replacement/change battery.
2. Antiviruses. Oh yes, my favorite part. Very often, they checking each file which system is accessing, thus, degrading performance of your PC. There even is some enthusiasts, who putting TWO antiviruses simultaneously.
3. Same about "extra" firewalls. It's very easy, when you can select "wrong" one, and after installation you simply lose connectivity to internet.

If you're not sure (paranoid) about your safety - the best way is to find someone (specialst) whom you trust, and ask for help in fine-tuning of your system. In other case, you have high risk to shoot yourself in the foot.

You decide to visit your favorite Zoo. Well, you know that anything could happen, and you take your favorite bullet-proof vest, couple of desert eagles, one uzi, some grenades, night-vision goggles and go in armored minivan. Guards running in front of you and behind, small helicopter above controlling whole area. But soon, you feel yourself not too good, since all your gear was too heavy and there was too hot on the streets, so you decided to go back home.

Then you receive security bill and got heart attack.

well you can always choose to ignore security, but dont expect any sympathy when you get hacked.

Another piece of reality is, that a couple of years ago the biggest threat was to get some scriptkiddie playing around in your computer without really any harm.

Today, 2012 , organized criminal organisations make big business of gathering vital information from millions of computers all over the world. Selling all kinds of information to highest bidder.

When you recieve a phonecall and the guy at the other end expects a wire transfer of 500 euro in exchange for him not to wipe your drive and publishing those private family albums on the internet its a different story, and it happens everyday , trust me on that.

The criminals dont have to make outrageous demands these days, because the infected systems are so many in numbers , that if you get a small chunk of cash ( resonable enough for the victim to pay ) the numbers of victims make the activity lucrative enough anyway....

Let alone all the CC frauds etc , getting fed with cards from home computers all over the world.

A better comparison would be you walking naked into the lions cage at the zoo, just because they offer free pizza in the middle for anyone to grab ( torrents... )

You dont have to be paraoid, but simple precautions can get you far enough to not having to worry about your computer enviroment that much.

And yes, if i have a streaming server, and clients connect to me and listening to whatever i broadcast , i could use technical and social skills to infect them with whatever i like.

All it takes for me is that 1 guy think like you in that case.

xaph · Apr 19, 2012

goodgrief999 said:
I'm sorry, i don't fully understand the question. I'm saying that usenet can be used for malicious purposes. It has happened to me.
I bought a piece of software and a usenet/firstload file sharing sytem, thoroughly corrupted and dangerous, was delivered in the software's place.
Boo.

No worries mate have a look at

http://en.wikipedia.org/wiki/NZB

NZB's (news groups) generally dont have headers that hold malicious executables however you still have to be careful. NZB's merely list what is available however via a community thats interested in free access and clean access.

Your tool for obtaining the files via usenet...'Grabit' is free and comes to mind. your usenet acount details configure to this tool.

usernet files may be risk but seldom via NZB files that point that way.

http://nzbmatrix.com/faq.php

Usually the only issue is headers on the NZB file list like IMDB links and Malwarebytes Pro works treat along with a decent firewall

Running a VPN such as Proxpn or proxy via router will increase anonimity.

Back to the point:
Ermik encapsulates it pretty well listen to him

All I add is Malwarebytes well worth its weight in gold as a Pro package$$ but cheap

dr3w · Apr 19, 2012

ermik said:
well you can always choose to ignore security, but dont expect any sympathy when you get hacked.

Another piece of reality is, that a couple of years ago the biggest threat was to get some scriptkiddie playing around in your computer without really any harm.

Today, 2012 , organized criminal organisations make big business of gathering vital information from millions of computers all over the world. Selling all kinds of information to highest bidder.

When you recieve a phonecall and the guy at the other end expects a wire transfer of 500 euro in exchange for him not to wipe your drive and publishing those private family albums on the internet its a different story, and it happens everyday , trust me on that.

The criminals dont have to make outrageous demands these days, because the infected systems are so many in numbers , that if you get a small chunk of cash ( resonable enough for the victim to pay ) the numbers of victims make the activity lucrative enough anyway....

Let alone all the CC frauds etc , getting fed with cards from home computers all over the world.

A better comparison would be you walking naked into the lions cage at the zoo, just because they offer free pizza in the middle for anyone to grab ( torrents... )

You dont have to be paraoid, but simple precautions can get you far enough to not having to worry about your computer enviroment that much.

And yes, if i have a streaming server, and clients connect to me and listening to whatever i broadcast , i could use technical and social skills to infect them with whatever i like.

All it takes for me is that 1 guy think like you in that case.

As I already said: I DON'T SAY - IGNORE SECURITY. Or should I write it in bold?

Next: leave this "scary shit" about "hacking" for others. I working in IT (literally from the end of past century), and my pc is without firewall and without antivirus, my whole life. I just know what I doing.

Also, repeat - leave this tech shit for yellow newspapers, please. I can argue also with that: IF some "pros" will want really something from you - there no firewalls or antiviruses that will prevent them simply to break into your house (where you live - it's not a secret for them obv), they will do that in such way - that you'll never know that there they even was.

Oh, cryptography? Of course. As you're specialist, - your all data is crypted by TrueCrypt or similar shit, so you feel safe anyway, if it will be physically stolen. You know, there is a method even against this, called: thermo-rectal cryptoanalisys.

"A method for obtaining the encryption key, by inserting a soldering iron in the anus and its inclusion in the socket.
Cheap method, requiring a minimum of special equipment;
Data leakage begins to occur, usually after twenty seconds."

goodgrief999 · Apr 19, 2012

ermik · Apr 19, 2012

dr3w said:
Next: leave this "scary shit" about "hacking" for others. I working in IT (literally from the end of past century), and my pc is without firewall and without antivirus, my whole life. I just know what I doing.

this thread was created to help people who havent worked "in IT" since they were born, and trust me they are many, atleast given the numbers of bots in the nets ive seen live setup for testing purposes and proof of concept. ( down and cleaned now btw if anyone would be curious )

you obviously dont need that kind of help, maybe other help but thats not in my line of profession to judge.

Problem is you cant see outside your own sphere, just because you are the 1337 of all times doesent mean all ppl are, they could actually benefit from a few simple tips.

anyway, either bring something constructive to the table or take your ego out of this thread please, no offense intended but i urge you to consider these options.

dr3w · Apr 19, 2012

ermik said:
this thread was created to help people who havent worked "in IT" since they were born, and trust me they are many, atleast given the numbers of bots in the nets ive seen live setup for testing purposes and proof of concept. ( down and cleaned now btw if anyone would be curious )

you obviously dont need that kind of help, maybe other help but thats not in my line of profession to judge.

Problem is you cant see outside your own sphere, just because you are the 1337 of all times doesent mean all ppl are, they could actually benefit from a few simple tips.

anyway, either bring something constructive to the table or take your ego out of this thread please, no offense intended but i urge you to consider these options.

Still failed to read? What ego? Isn't my first post in that thread was about just "balanced" security, i.e. - with help of specialist, just because putting firewalls-antiviruses with default setting 100% will DEGRADE performance?

And then, just cuz of paranoia, user will get nice gaming station, where EU eats most of resources, - and as a bonus - those "good" software (which will not help from 0-day, rootkits and such stuff anyway) in addition.

Well, okay, if so.

RobBuona · Apr 19, 2012

dr3w said:
my pc is without firewall and without antivirus, my whole life. I just know what I doing.

Me too.

Well, not my whole life, but it is now.

ermik said:
this thread was created to help people who havent worked "in IT" since they were born, and trust me they are many, atleast given the numbers of bots in the nets ive seen live setup for testing purposes and proof of concept. ( down and cleaned now btw if anyone would be curious )

you obviously dont need that kind of help, maybe other help but thats not in my line of profession to judge.

Problem is you cant see outside your own sphere, just because you are the 1337 of all times doesent mean all ppl are, they could actually benefit from a few simple tips.

anyway, either bring something constructive to the table or take your ego out of this thread please, no offense intended but i urge you to consider these options.

You take his posts too seriously, mate.

Ace Flyster · Apr 19, 2012

Windows firewall and microsoft security essentials is enough for me

The rest of the time i am just careful what i download and run, if i am not sure i have a virtual ubuntu machine to test stuff first

Rgds

Ace

Search

Search

FYI: Security Basic Guide

ermik

Elite

Talania

Stalker

goodgrief999

Old Alpha

aia

Marauder

Steve_saber

Self-Requested Deactivation

ermik

Elite

xaph

Elite

dr3w

Elite

goodgrief999

Old Alpha

ermik

Elite

xaph

Elite

dr3w

Elite

goodgrief999

Old Alpha

ermik

Elite

dr3w

Elite

RobBuona

Elite

Ace Flyster

Marauder