june 2008 surf safely with a clean computer roger thornburn
TRANSCRIPT
June 2008
Surf Safely with a “Clean” ComputerSurf Safely with a “Clean” Computer
Roger Thornburn
June 2008
2 Surf Safely with a Clean Computer
Roger Thornburn
Seminar GoalsSeminar Goals
Internet Security Background on internet security threats How to protect your computer Using a “Sandbox”
A Clean Computer Using CCleaner
To clean out temporary filesTo clean the registry
Disk defrag Scheduling these tasks
June 2008
3 Surf Safely with a Clean Computer
Roger Thornburn
Unwanted Visitors!Unwanted Visitors!
The Four Main Threats to Your Computer Hackers Viruses, worms & trojans Spyware and hijacks Operating System/Apps
security “holes”
Annoyances Email Spam Adware Pop-up Ads
See Wikipedia (http://en.wikipedia.org/wiki/Malware) or handout
June 2008
4 Surf Safely with a Clean Computer
Roger Thornburn
Dealing With the ThreatsDealing With the Threats
Hackers Use a Firewall. Windows XP and Vista both have a
good built-in software firewall If on broadband, then use a router with a h/w firewall
Viruses Use ONE Anti-Virus tool
Spyware Use ONE real time Anti-Spyware tool
Can use more than one anti-spyware scanner
June 2008
5 Surf Safely with a Clean Computer
Roger Thornburn
So, Are You Safe Now?So, Are You Safe Now?
Better – but not completely Security holes not yet patched.
Not yet acknowledged by software suplierNo fix yet availableHaven’t updated all your programs
Pop up windows requiring user actionStandard “Window” with a question or offer, with Yes/No
buttons
So, still at risk from: “Drive-by” that exploits a software security hole Malicious java script, Flash animations, etc.
Both exploit weaknesses in poorly written software that enable Spyware, Hijacks, Worms, Bots, etc. to be put on your computer, directly from a Webpage
June 2008
6 Surf Safely with a Clean Computer
Roger Thornburn
The Answer Is ….The Answer Is ….
A “sandbox” is a special software program that isolates any application running inside it, from the rest of your computer.
After running your application, delete the sandbox and all traces of the application are also deleted.
So, if we open our Internet Browser inside a sandbox, then any malware that tries to enter our computer, either by accidentally “clicking” the wrong thing, or by a drive-by, will be trapped inside.
The sandbox I will show you today, is a freeware program called Sandboxie
Can be downloaded from www.sandboxie.com
A Sandbox!A Sandbox!
June 2008
7 Surf Safely with a Clean Computer
Roger Thornburn
How Sandboxie worksHow Sandboxie works
Hard Drive Hard Drive
Without Sandboxie
Using Sandboxie
Reads
Writes
Sandboxietemporary storage
ReadsWrites
For a complete explanation, see http://www.sandboxie.com/index.php?FrequentlyAskedQuestions
June 2008
8 Surf Safely with a Clean Computer
Roger Thornburn
SandboxieSandboxie
Basics All programs can be opened sandboxed
Main use is for your Internet Browser and email clientCan also be used to run downloaded or other programs to
“test” without leaving any traces on your computer
Email attachments opened inside the sandbox Files you want to keep can be copied from the sandbox
Do I still need A-V and A-S? Yes.
Sandboxie will stop any program or software being written to your hard drive.
It does not do any virus or Spyware checking
June 2008
9 Surf Safely with a Clean Computer
Roger Thornburn
Using SandboxieUsing Sandboxie
Good tutorial. Open Sandboxie, click Help>Getting Started Tutorial
Sandboxie automatically creates a desktop icon that opens your default browser in a sandbox (e.g. Internet Explorer)Just double click this icon
Use “Right Click” and select “Open Sandboxed” to open any other program in a sandboxUse for email – Outlook Express, Windows Mail, etc.Also for “testing” new programs.
When using a sandboxed browser or email client, nothing is saved:Cookies, temporary internet files, favoritesNew add-ons (e.g. Flash plug-in)Downloaded files or programsSaved attachments
June 2008
10 Surf Safely with a Clean Computer
Roger Thornburn
Using SandboxieUsing Sandboxie
Saving files from the sandbox Download to “My Documents” or Desktop’
Sandboxie will allow you to “recover” these filesOther folders can be added to be recovered
Online banking, credit card, brokerage or other “trusted” website. As cookies will not be saved, these hi-security sites
may require you to answer a security questionGo to these sites once, outside the sandbox, login and the
cookie will be saved
Other By default, favorites will not be saved
Can make a change in the Sandbox Settings
June 2008
11 Surf Safely with a Clean Computer
Roger Thornburn
Sandboxie SettingsSandboxie Settings
Open Sandboxie Default Settings Open Sandboxie Control click Sandbox>DefaultBox>Sandbox Settings
Recovery foldersclick Recovery>Quick Recovery. Add folders if necessary
Automatically delete sandbox when no longer activeclick Delete. Check “Automatically delete…..
Enable web browser favorites:click Applications>Web Browser. Check “Allow Direct
Access to ….. And/or for FirefoxAlso check “Allow Full Access to Protected…. If you use
saved password. Enable email client:
click Applications>Email Reader. Check the appropriate check box for you email client.
June 2008
12 Surf Safely with a Clean Computer
Roger Thornburn
Summary for Safe SurfingSummary for Safe Surfing
Use a Firewall – Windows XP/Vista is fine Keep your Windows and internet enabled apps
patched/updated Use ONE Anti-Virus program Use a ONE real time Anti-Spyware program Consider using a combined A-V & A-S, e.g. AVG 8,
Norton AV, Kapersky AV, Webroot, Avast, etc.A total internet suite is not a necessity.
Use an email/ISP service that scans ALL your emailYahoo, Excite, Google, Dell, etc.
Only download programs from known sites Don’t accept programs on CD from unknown people Use Sandboxie for surfing the web and email
June 2008
13 Surf Safely with a Clean Computer
Roger Thornburn
Let’s do some more demos
Let’s do some more demos
June 2008
14 Surf Safely with a Clean Computer
Roger Thornburn
Cleaning Up Your ComputerCleaning Up Your Computer
Use CCleaner Removes all temporary files
InternetLogsWindows
Removes cookiesSelect those to keep
Registry cleanup
Defragment your Hard Drive Combines fragmented files Speeds up disk operations Slightly different interface XP to Vista
June 2008
15 Surf Safely with a Clean Computer
Roger Thornburn
Suggested SequenceSuggested Sequence Download and install Sandboxie & CCleaner In CCleaner, select items to clean, include all cookies Run CCleaner including the Registry cleaner Open non-sandoxed browser, and login to all your hi-
security sites (bank, credit card, etc.) and any customized page (e.g. Yahoo)
Reopen CCleaner, in Options>Cookies, move all cookies to “Cookies To Keep”
Change settings to default SandboxApplications>Web Browser
Check to Allow Direct Access to Internet Explorer FavoritesCheck to Allow Access to Protected Storage
Applications>Email ReaderDelete>Invocation and check Automatically delete contents
Now can run browser in sandbox and run CCleaner
June 2008
16 Surf Safely with a Clean Computer
Roger Thornburn
Scheduling the CleanupScheduling the CleanupVista
Defragmenter includes a schedulerSelect daily/weekly and time (computer needs to be on)
Use Task Scheduler for CCleanerControl Panel>Administrative Tools>Task SchedulerAction>Basic task – set day and time (computer needs to be on)
Select CCleaner and type /auto for the argument
Windows XP Create a batch file (c:\cleanup.bat)
“c:\program files\ccleaner\ccleaner.exe” /auto“c:\windows\system32\defrag.exe” c:
Use Scheduled Tasks to run this batch fileControl Panel>Scheduled Tasks>Add scheduled taskSelect c:\cleanup.bat – set day and timeCheck “Open advanced…” and check “Run only..”
June 2008
Enjoy Your Surfing ExperienceEnjoy Your Surfing Experience