 |
![]()
Internet and Computer Security Package....
Advanced Computer Configuration and Consulting has put together a very detailed Security Package for home PC users and small business owners which includes several programs, utilities and configurations that enhance and control security issues, without introducing any appreciable "slowdown" of your PC's speed. In other words, this package will not be a resource hog like most of the commercial software already available and will not, therefore, use appreciable amounts of valuable system resouces like CPU cycles and memory. Commercial software also, if not configured properly (and they are difficult to understand and configure), hinders the internet experience by introducing many annoying unanticipated website "lockouts". In fact, many of Advanced CCC's customers have so much difficulty with their present internet security software and as a result, they turn it off. What happens then? They are exposed to very high internet security threats. Our package is a result of 10 years of study on the subject of Internet and PC security.
(Its best for you to be serious about your personal Security and consider the possibility of one day opening your door at your home to the FBI and having to explain and later prove to them that it was not your PC that hacked into a US Government agency and stole secret information....or all of a sudden you get a certified letter in your mail from your Bank asking to explain why your account has been depleted.....Or, that you are being sued by your client who claims his crucial private information was stolen from your PC and his identity has been compromised....Yes, the burdon of proof is on your shoulders in all of these cases! And whats really dangerous is that you will not even know your PC is hacked! READ MORE HERE ABOUT THESE NEW EXTREMELY DANGEROUS TYPES OF ATTACKS. ALSO READ HERE)
So, what does the commercial software do that our software avoids?
it significanty slows down your computer
it is a resource hog
difficult to understand and configure
hinders the internet experience with annoying unanticipated lockouts
People turn the software off, due to all the problems it creates
As a result of 10 years of study on this subject, our internet security package has been put through the scrutiny of all the common problems and annoyances described above that the other commercial software products produce. Not only are the typical "annoyances" of other software seriously adjusted for, but our package also is skillfully put together in a "Layer by Layer" type defence. What is a Layer by Layer type defence? How does a Layer by Layer type defence perform its abilities? Read ahead......
One of the earliest ways of making yourself safe in the Internet was not letting yourself be seen. There are many forms of Security By Obscurity, and they all sound logical.
Security By Obscurity, which may or may not be a good idea, does not replace a good layered defense. Each layer is necessary, because no single layer can produce complete protection. And consider each component carefully, and uniquely, for each network or person being protected.
Now if you're just getting started here, this advice may seem like a lot to take in at once. And it is just that, so take your time reading. Consider one layer at a time.
What is a layered defense?
Start by considering a typical medieval castle - classically, one of those would have:
A moat - a wide and deep ditch, filled with water.
High and thick castle walls.
Guard towers, small castles in themselves, in key portions of the castle walls, but more fortified.
Small, narrow windows that were used for thru shooting outwardly.
An inner sanctum, typically called a "keep", that was a small fortified castle in itself.
Each one of these elements was designed to be enough to protect the inhabitants against intruders. Frequently, though, the intruders would breach the outer defenses, and the inner defenses were needed to protect the owners (though not all the inhabitants) of the castle.
A layered defense for your computer and network is similar to a castle in concept. The outer layers should be sufficient, but in case an intruder gets thru one layer, you have another layer protecting you. Better too much protection than not enough. Ahead are the Layers Advanced CCC recommends:
Layer 1 - Perimeter Network Protection
First, you need to protect your perimeter - the outer edge of your network. Perimeter protection, such as a NAT router, is the first layer in a good layered defense.
A NAT router acts as a firewall, in that it passes only requested traffic back to the computer that requested it. It won't selectively filter traffic from hostile addresses, nor selectively filter bad protocols or programs, however. Some NAT routers also contain firewall components, but they will probably not be as comprehensive, or as configurable, as an ICSA certified firewall.
Please don't confuse the perimeter firewall, which is hardware based, with a personal firewall, which is generally software based. Personal firewalls are discussed in Layer2.
One firewall or NAT router protects your entire LAN, and is a good idea even if your LAN consists of only one computer. A NAT router today is equivalent in concept to perimeter protection, which was considered sufficient 5 years ago. Now we know to use multi-layered defense (aka layered defense).
Although Advanced CCC does not include a router or the configuration of a router in this security package, we recommend that you invest in a router. Routers are very inexpensive these days.
Layer 2 - Individual Network Protection
Besides protecting the outer edges of your network, you need to protect its interior components. Interior (individual computer) protection requires a port monitor and or a personal firewall.
A port monitor lets you see what network traffic is active on your computer.
Advanced CCC offers a port monitor with this security package.
A personal firewall lets you actively control what network traffic is allowed to reach your computer. In some cases, it will also be used to control what traffic is allowed to exit it, directed towards other computers on your local network, or towards the Internet itself.
You need a personal firewall on each computer in your LAN; in case one computer gets infected, a personal firewall on the others could save you a lot of trouble. Note that traditionally, a personal firewall would be software based. Now, there is also the possibility of a hardware firewall, sitting inside your computer. The nVidia nForce is probably the first, but surely not the last, device of this type (this would be if you had a motherboard with this nvidia component).
Relying solely upon a personal firewall or a port monitor, to protect you against hostile outgoing network activity, has not completed this layered approach to PC security.
Advanced CCC offers a personal software firewall and its configuration with this security package.
Layer 3 - Software Protection
Perimeter and individual network protection protects you against malicious network traffic. You also need to protect yourself against malicious content. Properly chosen content protection, on each individual computer, complements network based protection. Content protection has many components, to counter the many ways the bad guys will try to take control of your computer.
Layer 3 -- Activity related protection.
AntiVirus protection. Ours includes real time (on demand) scanning, plus a regularly scheduled complete system scan, and makes sure that it's regularly updated.
Adware / Spyware / Malicious software protection. Ours includes real time (on demand) scanning, plus a regularly scheduled complete system scan, and makes sure that it's regularly updated.
We will provide an On-demand trojan scanner. This utility works great if you are in the habbit of downloading files or software and do not trust if they are secure, scan them before activating them, to search for trojans are other malware.
Layer 3 -- Component related protection.
If you feel up to it, we will provide the hijackthis utility, but you'll have to learn to interpret a HijackThis log - on your own, or with carefully chosen assistance. Many It Tech sites provide free analysis for the hijackthis utility.
We will Harden your browser.
We Harden Internet Explorer - We will block ActiveX scripts from malicious websites and Populate the Restricted Zone database.
We will Block known dangerous scripts from running, and possibly installing spyware.
We will Harden your operating system through comprehensive configurations.
After we perform the above steps, there are various websites which will check for vulnerabilities; I use and recommend this one:
Scanit.
Layer 3 --
Web site related protection.
We will Block traffic to possibly hostile websites with a Hosts file.
Layer 4 - Common Sense, Advanced CCC recommends:
Use common sense when installing software, and when using your computer.
Don't install software based upon advice from unknown sources.
Don't install free software, without researching it carefully.
Don't open email unless you know who it's from, how and why it was sent, and that it was sent intentionally.
The most critical tool, in your defense, is right between your ears. Keep your Chair To Keyboard Interface carefully tuned. If you're playing music, and a EULA pops up, ask why you're seeing a EULA.
Lastly, we will provide Exhaustive Real-time HIPS Protection (Host Intrusion Protection System).
We install kernel mode protection that detects and prevents attacks in real-time. It can be trained to isolate malicious activity. This will ensure the integrity of the operating system by blocking and reporting any suspicious activity, including the following:
Launching of malicious applications and processes. This option allows the user to put restrictions on what applications execute on her machine.
Terminating of critical security applications (e.g. Firewall, Anti-virus, and Anti-spyware software).
Loading of suspicious DLLs (e.g. IE Browser Helper Objects, ActiveX components, COM objects).
Execution of code in a remote program (e.g. Trojans or Malware modifying the memory space of an external application and executing malicious code).
Remote injection of code through standard Win32 API calls to the CreateRemoteThread() API or other native APIs called from within Rootkits.
Installation of Kernel Device Drivers (Kernel Rootkits) that integrate and then maliciously alter the Windows operating system.
Registration of programs for loading on PC start-up or when the user logs on to the system.
Registration of Initialisation DLLs that load each time a new application starts.
Installation of system-wide Windows hooks by using standard Win32 APIs or native APIs.
Attaching a debugger to another process.
The Real-time HIPS Protection System we install has very unique attributes:
Provides kernel mode protection.
It does not rely on lists of known Malware, so no updates are required!
No connection to a server or the internet is required - the protection is virtually built into the operating system!
You are protected immediately from all new threats - no lag-time for updates to be published!
It is complementary with all other computer protection systems including anti-virus, firewall, and anti-spyware systems. It even protects these systems from malicious attack!
This system blocks first, and then asks second. Prevention is better than cure!
It is optimised for the Microsoft Windows environment and has no noticeable impact on system performance.
This security package will also include your choice of several temp. file, history file, index.dat file, recent file list, MRU, prefetch and other cleaners.
This very complete security package can be installed and configured on your PC at a fraction of what it can cost you if you become a target of the types of malicious software and what a hacker can do (see here for details). Advanced CCC's fee for this security package is $150.00. Please note that in order for a PC to be configured for this type of security, it first must be in a pristene condition. If your PC is not ready for this software, Advanced CCC can prepare it at an additional fee. Please see our rates here.
In addition, Advanced CCC also offers deeper training and tutoring about Computer and internet security and for the understanding, in detail, of how these security utilities and measures work. This tutoring is an additional fee, please see here for details about tutoring...and here for details about our fees.
Advanced Computer Home Page
AdvancedCCC at 352-999-0796
|
|
