ONLINE VERSION OF THIS HANDOUT
http://edu-observatory.org/hcs/index.html
http://edu-observatory.org/olli/hcs/index.html
Internet Service Provider (ISP)
|
| Cable/Phone Line
| \
+--------------------+ |
| Cable/DSL Modem | |
+--------------------+ |
| | Sometimes combined
+--------------------+ |
| Router | |
| Local Area Network | |
+--------------------+ |
| /
| Wired/Wireless
|
iPhone/iPad/iPod/Andoid Devices
Computers
Apple TV
Hubs/Switches/Access Points
ESSENTIALS
http://www.us-cert.gov/security-publications/
http://www.us-cert.gov/cas/tips/
http://www.nsa.gov/ia/_files/factsheets/Best_Practices_Datasheets.pdf
http://www.nsa.gov/ia/Media_Center/index.shtml (25 min)
BASICS
Keep all applications, including your operating system, patched
https://browsercheck.qualys.com/
http://krebsonsecurity.com/2013/03/help-keep-threats-at-bay-with-click-to-play/
Turn on hardware and software firewalls
https://www.grc.com/x/ne.dll?bh0bkyd2
http://www.derkeiler.com/Service/PortScan/
http://nmap-online.com/
http://isc.sans.edu/diary.html?storyid=4789 (Never disable your firewall)
Run antivirus software
http://free.avg.com/us-en/download.prd-afh.line-2012
http://www.sophos.com/en-us/products/free-tools/sophos-antivirus-for-mac-home-edition.aspx
Make regular backups of critical data
http://www.us-cert.gov/reading_room/data_backup_options.pdf
BEHAVIOR
http://krebsonsecurity.com/2011/05/krebss-3-basic-rules-for-online-safety/
http://krebsonsecurity.com/2013/03/help-keep-threats-at-bay-with-click-to-play/
http://www.us-cert.gov/cas/tips/
http://www.us-cert.gov/cas/tips/ST04-009.html
http://www.sans.org/tip_of_the_day.php
MAC OS X SECURITY CONFIGURATION GUIDES
http://www.nsa.gov/ia/_files/factsheets/macosx_10_6_hardeningtips.pdf
http://www.apple.com/support/security/guides/
http://www.macshadows.com/kb/index.php?title=Hardening_Mac_OS_X
http://osxdaily.com/2012/03/04/mac-maintenance-tips/
http://edu-observatory.org/mac/index.html
SECURITY THREATS NEWS - KEEPING UP2DATE
http://threatpost.com/en_us
http://seclists.org/isn/
http://krebsonsecurity.com/
http://www.us-cert.gov/current/ via IP
http://isc.sans.edu/ via IP
TOOLS AND ANALYSIS
AM I ONLINE? WHAT'S MY BANDWIDTH?
http://chicago.il.speedtest.frontier.com
http://speedtest.wdc01.softlayer.com/speedtest/
http://speedtest.silverstar.com/
http://www.speedtest.net
ARE THERE INTERNET PROBLEMS?
http://downrightnow.com/
http://www.apple.com/support/icloud/systemstatus/
http://www.google.com/appsstatus
http://isc.sans.edu/links.html via IP
INTERNET STATUS
http://isc.sans.edu/ via IP
http://isc.sans.edu/links.html via IP
http://www.dshield.org/links.html via IP
http://www.dshield.org/ via IP
http://downrightnow.com/
http://www.google.com/appsstatus
http://www.apple.com/support/icloud/systemstatus/
http://www.internetpulse.net/ via IP
IS MY COMPUTER PART OF A BOTNET?
http://www.rbltest.com/
http://isc.sans.edu/ipinfo.html (See: Reports and Targets)
http://dns-changer.eu
OUTBOUND FIREWALLS
In a nutshell, an "outbound firewall" monitors all the traffic and
requests leaving your computer, allowing you to ensure that nothing
malicious is happening and that no sensitive data is being sent
without your approval.
ZoneAlarmŽ Free Firewall (Outbound Firewall for PCs)
http://www.zonealarm.com/security/en-us/zonealarm-pc-security-free-firewall.htm
Little Snitch (Outbound Firewall for Mac OS X)
http://www.obdev.at/products/littlesnitch/index.html
WHAT PROCESSES ARE RUNNING ON MY COMPUTER
http://en.wikipedia.org/wiki/Control-Alt-Delete Windows: Ctrl+Alt+Del ==> Task Manager
http://en.wikipedia.org/wiki/Top_(software) OS X/Unix/Linux: Terminal ==> top, ps aux, ps ef
ONLINE VIRUS SCAN
http://www.eset.com/us/online-scanner/
http://www.microsoft.com/security/scanner/en-us/default.aspx
SCAN A FILE - quick detection of malware
http://www.virustotal.com/
http://isc.sans.edu/diary.html?storyid=10366
DOMAIN NAME SERVER (DNS) STATUS
http://www.cymru.com/monitoring/dnssumm/index.html via IP
http://code.google.com/p/namebench/downloads/list (Find best DNS in my area)
ANALYSIS TOOLS
http://code.google.com/p/namebench/downloads/list
http://www.infosniper.net/index.php
http://www.ipaddresslocation.org/
http://centralops.net/co/
http://www.dshield.org/tools/
REMOTE ACCRESS
http://showmypc.com/
SHOULD I CHANGE MY PASSWORD (not a bad idea)
http://www.xkcd.org/936/
http://isc.sans.edu/diary.html?storyid=11350
http://www.us-cert.gov/cas/tips/ST04-002.html
https://shouldichangemypassword.com/
EMAIL ADDRESS CHECK
http://centralops.net/co/EmailDossier.aspx
http://hq42.net/net_tools/test_email_addr.php
http://isc.sans.edu/diary.html?n&storyid=11026
http://www.ip-address.org/tracker/trace-email.php (from email header)
COMPUTER SERVICES
HomeTown Tech
http://www.hometowntech.com/Ask%20A%20Tech
(Wed. 9-11am at Cafe Diem, 323 Main St Ames, IA)
Iowa Computer Guys
http://iowacomputerguys.com/Ames.aspx
Heartland Technology Solutions
http://www.heartlandtechnologies.com/
515-233-4807
RECYCLING OLD COMPUTERS
Howard McPhail picks up old computers for recycling. They wipe
the hard drives... rebuild what needs rebuilt and make the
computers available to MICA (Mid-Iowa Community Action, Inc).
Howard B Mcphail - (515) 232-1293 - 2103 Hunziker Dr, Ames, IA 50010
sam.wormley@gmail.com