Simple Steps to Protect Your Computer

There are some simple steps you can take to protect your computer. They aren't hard, but they are important. These steps will help protect your computer against viruses, worms, hackers, and other nefarious people. They are not full protection. I've done this to my family's computers, and they are at less risk because of it.
>> You should do this to your computer.
>> You should do this to your family's computer.
>> You should do this to your neighbor's computer.
>> You should do this to any new computer you purchase.
>> You should share this information with others.

Firewall
The first step is to disconnect your computer from the Internet. Then set up a firewall to protect you against hackers. If you don't have a firewall, your computer will be 'found' by hackers in well under 20 minutes (probably less).
If you have Windows XP with SP2, enable the Windows firewall. It's not perfect, but it's better than nothing. (Look in the Windows Help screens to get started.)
A better firewall alternative is to get a router from your favorite computer store. It will be placed between your computer and your cable/DSL modem. (If you have dial-up access to the Internet, you don't need a hardware firewall. but you do need a software-based firewall.) I like the D-Link, NetGear, and LinkSys brands. They work, and are fairly easy to set up. Most will allow you to connect four computers, so they can all get to the Internet.
If you have high-speed access (cable/DSL modem), then you must get a hardware firewall. The cost is under $50, and worth it. (Think of the cost of replacing your data on the computer -- and the time involved -- if your computer gets hacked. Fifty bucks is cheap compared to that.) The box that you got from your cable company or phone company probably doesn't have a firewall to protect you.
If you plan on using a wireless connection, then get a wireless router. It will also have a firewall built-in. Again, D-Link, NetGear, or LinkSys are good.
An alternative to a hardware firewall is a software one. You can use the free ZoneAlarm software (www.zonealarm.com), or a commercial product. When you get it installed (and reconnect to the 'net), go to www.grc.com and do the "ShieldsUp" test. The results should be "Stealth" (best) or "closed". If you get "open" ports, your firewall is not working.
The point is to get a firewall. At home, we have a hardware firewall in our wireless router. The Windows 2000 computer also has ZoneAlarm. The Windows XP computer has ZoneAlarm and Windows firewall. Belts and suspenders here.
A note about the setup of your router/firewall. Change the default user name and password; the defaults are well known. If you get a wireless router, enable the 128-bit "WEP" encryption key for more protection. Without it, your neighbors could connect to your wireless network. Mine don't.
Windows Update
Now that you got the firewall going, you can reconnect to the Internet and get the Windows operating system current. The easiest way is through Automatic Updates. Set them up for "automatic download and install".
You can set that up manually. But go to www.microsoft.com/protect , and use their wizards to set it up. (The wizards will also set up Windows Firewall, if you have XP.)
Install all the 'critical updates'. The other updates can be installed, but the 'critical' ones are critical. Take the time to do it. If you have dial-up, start the download process when you go to bed -- use the phone line for the updates a night while you are sleeping. If you have broadband (high-speed) access, it will be faster. It may take several hours, depending on how far behind you are. Spend the time. It's important.
Once all the updates are installed, make sure your automatic updates are set for daily checks. The Microsoft site will help you do that.

Anti-Virus
This is important, just like everything else. Install an anti-virus program. Make sure it is kept current. Updates are usually once a week, although they can come daily during periods of heavy viral attacks.
I use the McAfee VirusScan program. Symantec/Norton is also good (although there have been some reports lately about problems with Symantec/Norton programs). There are others, including some that are free. Just make sure that you get one that keeps things current.
Once installed, configure it to check all files, all incoming/downloaded files, and email checking. And set the 'check for updates' schedule for a daily check.
Once everything is current, do a full scan of your computer. It will take a while. Do it. It's important. If any viruses are found, delete; repairing isn't always totally successful.
Spyware/Adware
If you 'surf the net', then you will get spyware and adware. If you (or your teenagers) share files, or do instant messaging, then you will get spyware and adware faster.
There are many programs that claim to get rid of this junk (let's call it 'scumware'). Some of it comes vial email or web patch ads. Don't fall for those pitches -- why would you buy anti-scumware from spammers?
I like two programs: Ad-Aware (www.ad-aware.com), and "Spybot Search and Destroy" (www.downloads.com). And Microsoft has their Anti-Spyware program (www.microsoft.com/protect); even though it's still in 'beta' form, I've used it for many months without problems. I put all three on my computers. Download them, install them, update them, and run them about every one-two weeks. Perhaps more often if you have young users or teenagers.

Other Updates
The programs that you use need updates. Check for them once a month.
Many people use Microsoft Office. Office updates are not automatically installed through the Automatic Update process. Go to the www.microsoft.com/protect site, click on the link for "Office Family", then download and install the updates.
Do the same for the other programs you use. Just go to their web site to get the updates.

Safe Computing
You've probably heard these tips before. But here they are again.
Never install software that comes via an email or web page pop-up. It's probably dangerous.
Never open up files attached to your email messages, even if it's from someone you know. It's probably a virus. If you think the attachment is OK, first save it to a separate folder, then run a virus check.
Install a pop-up blocker on your browser. The XP-SP2 update to Internet Explorer has one. Or install the Google Toolbar. Or use an alternate browser that has a pop-up blocker built in.
Be very careful with file sharing programs. They are a great way to get a virus or worm. (We don't allow that around here. It's not worth the risk.) Instant messaging can be an attack vector. Be careful.
Don't fall for 'phishing attacks'. These are the emails you get that tell you that your bank wants to verify your credit card number. Think about it. Doesn't your bank already have your credit card number? Why would you give your PIN number to the bank? Or your social security number? They already know that information! (See our 'phishing report' for more info.)
Be careful with your passwords. If you get a 'login screen', try a wrong password first. A 'good' site will tell you you have a bad password. A 'bad' site will accept anything as a password.
Get a shredder. Shred all those credit card offers. Shred old checks, bank or credit card statements, and anything with your personal information.
Get a locking mailbox. Put outgoing mail in a real US mail collection box.
Don't carry your social security card in your wallet or purse. And don't give it to anyone.
Minimize the credit cards you carry around. And make a copy of the front and back of your credit cards in case they do get lost or stolen.

"Let's be careful out there" (Sergeant Phil Esterhaus [Michael Conrad], "Hill Street Blues", 1981-1984). Not everyone on the 'net is a nice person.
Lock your doors. Take your keys. Eat your vegetables. Hug your spouse and children. Call your mother.
Rick Hellewell / http://www.digitalchoke.com/daynotes/reports/simple-steps.php