Recently, a friend asked me for advice on internet and laptop security and that got me thinking about all the security habits I've picked up over the years.
The following are some of the best products and services I've used that I can't live without because they work so well and are free or very affordable.
The first thing I did when I recently re-installed the OS on my netbook, was to set the BIOS to only boot from the hardrive and then password protect the BIOS.
Next, in the BIOS, I locked the hardrive and password protected it.
The benefit of these first two steps is that if my netbook is stolen, someone can't just turn it on and easily brows my files and other information or re-install the operating system.
Next, I used Truecrypt to encrypt the entire drive with triple layer 256 bit encryption. This ensures that if someone pulls the drive out of the machine they still won't be able to access my information.
Then, I set a user password.
To protect myself online I use ESET's Nod 32 anti-virus, which I love because it works amazingly well, is small and takes up very few resources while requiring very little hands on maintenance or tweaking.
When surfing online I will often use Sandboxie, a sandbox program, that allows me to surf in a virtual environment. This way, even if I do pick up a virus, everything stays in the sandbox and I can simply delete the sandbox when I have finished surfing. Thus, deleting any and all viruses and malware that I may have come across.
I use Firefox for browsing and have a master password enabled to protect the passwords I use online. However, I don't save important passwords in Firefox. Instead, I use a technique where I create easy to remember passwords by using ordinary English words translated into L337 or Leet, which is an underground computer language. I then have a different password for each category of online use, such as Email, forums and hardware.
When logging in using a wireless hotspot I often use a VPN. I like HotspotVPN as a paid service but as a broke student I use Logmein to remotely access my home computer or I use Logmein Hamachi free VPN.
I hope that you find these tips to be helpful and if you know a product or service that you love, please let me know so I can test it out and possibly add it to the list.
Truecrypt: http://www.truecrypt.org/
Sandboxie:http://www.sandboxie.com/
Leet Translator: http://www.albinoblacksheep.com/text/leet
HotspotVPN: http://www.hotspotvpn.com/
Logmein: https://secure.logmein.com/
Monday, July 12, 2010
Friday, April 9, 2010
Well I'm back. Finally.
If your wondering why this blog has been sitting here inactive for so long let me explain. I had my senior thesis to write, an internship to complete and to top it off halfway through the term I wiped out on my Yamaha xvs 1100 going over wet railroad tracks in Lake Oswego.
Thankfully I'm smart enough to throw myself under the bike so the bike is fine except for a broken brake lever. I on the other hand have been limping around for the last month or so but as I said. I'm back.
In the next few weeks I plan on playing around with several new Linux distros as well as virtual machines, Backtrack 4 and who knows what else.
Stay tuned :)
Monday, September 14, 2009
How do you recover your Windows password if you forget it?
Ever wake up and decide that today you're going to beef up your digital security? Maybe you heard about all the scary crackers and identity thieves out there and decided to give your laptop a really strong password...except now you can't remember what it is and your locked out of your own computer. So, what do you do? Take it to a professional and pay $50.00 while waiting 24 hours? Not me...
All you need to do (if you're running Windows) is go to http://ophcrack.sourceforge.net/ and download the ISO file for either (or both) Windows Vista or XP in the LIVE CD version.
All you need to do (if you're running Windows) is go to http://ophcrack.sourceforge.net/ and download the ISO file for either (or both) Windows Vista or XP in the LIVE CD version.
Check the hash with Winmd5sum which can be found here http://www.nullriver.com/products/winmd5sum by right-clicking the ISO file then:
It's important to verify the hash after downloading the file because of the possibility of errors during the download process. It is a very good idea to run an MD5 hash comparison check when you have a file like an operating system install CD that has to be 100% correct.
Cryptographic hashes such as MD5 allow you to verify that the data you have downloaded is the original file and hasn't been altered, corrupted or poisoned in any way... (as long as the hash you use for comparison comes from a trusted source) you can verify the status of a file downloaded from anywhere.
After you have checked the hash and seen that the two hash files match go to Sourceforge at http://sourceforge.net/apps/mediawiki/ophcrack/index.php?title=Frequently_Asked_Questions#How_to_installl_the_LiveCD_on_a_USB_stick.3F and download tazusb by clicking on the link about halfway down the page under the heading “How to installl the LiveCD on a USB stick?” Then connect your USB, launch tazusb.exe and follow the directions.
Tazusb will create bootable usb media with a few simple commands. It can also compress and backup the entire current file system to the media, thus preserving all modifications for future use. You will also download SliTaz which is a free operating system, working completely in RAM and booting from removable media such as a cdrom or USB key.
Once this is finished just decompress the iso file you downloaded to the root of the USB stick with your favorite decompression software (like 7-zip). There should be two directories on your USB stick (boot and ophcrack).
Execute the script bootinst.bat that is in the boot directory.
Reboot your computer and make sure it boots from the stick.
Easy Peasy. Now all you need to do is plunk it in your computer, turn your computer on, log into the BIOS and change the boot order to boot from your USB drive and then continue the boot process. Slitaz will load automatically and you can even have Ophcrack run automatically.
Within minutes pwdump will have given you the password hashes and Ophcrack will be cracking away. (note: Vista is much, much harder to crack so use a dictionary attack not brute force)
Tuesday, September 8, 2009
How to install Mac OSX on a PC without dual boot
How to install Mac OSX on a PC without dual boot
This is why I love Linux. You can find a tutorial to do almost anything and if there isn't a tutorial you just need to get creative and write a soloution yourself.
That, and that the EULA agreements and instructions in Linux are a hoot! You can tell it's going to be a difficult install when step 8 is a reminder to breathe and step 12 is your almost done and to rejoice and hump everything in sight :)
This is why I love Linux. You can find a tutorial to do almost anything and if there isn't a tutorial you just need to get creative and write a soloution yourself.
That, and that the EULA agreements and instructions in Linux are a hoot! You can tell it's going to be a difficult install when step 8 is a reminder to breathe and step 12 is your almost done and to rejoice and hump everything in sight :)
Tuesday, July 21, 2009
And We're Back to Windows
I love EeeBuntu. That said, I'm letting Jas borrow my lappy for AIT and he insists on Windows so we're back to Windows again. The $74.00 Chinese battery I mentioned in an earlier post lasted about 8 solid hours under linux with WiFi on and lasts around 9 1/2 on windows so not a whole lot of difference.
All in all, the reinstall disk that comes with the Eee pc is pretty good. They used Ghost and the install only took two hours to get all the updates etc. (This is why I prefer Linux, NO RE_BOOTING)
I kept it simple and only added FireFox, Netstumbler, a VPN and NOD32. I'll password protect the BIOS before I give it to him and maybe incrypt the drive with TruCrypt (or at least add a hidden encrypted drive for movie storage :)
It will be interesting to see how the lappy handles military life in Oklahoma heat...
Wednesday, July 8, 2009
EeeBuntu
Well, I finaly have an OS I'm happy with.
I decided that over my week long break between classes I would try out Linux on my Eee PC 1000h netbook.
First I installed Ubuntu's Jaunty Jackalope using a bootable flashdrive and an image file. I liked the distro and everything worked out of the box with the exception of my Netgear router not wanting to connect (every other wireless router I tried to connect to had no problem though).
Next, I burned an EeeBunto ISO file to disk with ImgBurn and WOW. The install took about 45 minutes including downloading all the updates and I didn't have to reboot once. (Apparently you don't re-boot with Linux, YAY) Everything works including my wireless and I've never been so damn happy :)
Next, I'm going to try out Skype and my new aftermarket battery from China. Supposedly it lasts 9-11 hours so, well see.
I decided that over my week long break between classes I would try out Linux on my Eee PC 1000h netbook.
First I installed Ubuntu's Jaunty Jackalope using a bootable flashdrive and an image file. I liked the distro and everything worked out of the box with the exception of my Netgear router not wanting to connect (every other wireless router I tried to connect to had no problem though).
Next, I burned an EeeBunto ISO file to disk with ImgBurn and WOW. The install took about 45 minutes including downloading all the updates and I didn't have to reboot once. (Apparently you don't re-boot with Linux, YAY) Everything works including my wireless and I've never been so damn happy :)
Next, I'm going to try out Skype and my new aftermarket battery from China. Supposedly it lasts 9-11 hours so, well see.
Tuesday, May 26, 2009
Insane message
I don't normally post the ramblings of crazy people but after someone left this on my door, my car, AND my motorcycle, I got curious.
Is this organize craziness?
Is it a cult or a sect?
Anyone know?
The scans were a little fuzzy so here it is in a nutshell.
At the present time, computer-assisted biometric identification systems are being developed rapidly and have been readily accepted into our society. Miniature computer chips, using RFID (Radio Frequency Identification) technology, have already been embedded within electronic appliances, retail goods, livestock, and human beings. This is not tomorrow's science fiction
- it is happening today.
In many parts of the world, Applied Digital Corporation's human implanted RFID microchip (VeriChip) is used to help diagnose Alzheimer's disease, mental illness, Diabetes, heart problems and it also helps to prevent kidnappings. In the near future, this type of biochip will be widely accepted and implanted for personal identification, protection, monitoring, tracking, commerce, and other uses not yet imagined.
Unfortunately, such biochips store personal identification and the information generated from its use will be stored and maintained in a computer database. Your body becomes a tagged asset that is monitored and whose behavior will be tracked. Implanting the microchip in the body alters a person's physically, mentally and ultimately - spiritually. The problem that arises from the use of biochip in humans is more than an aesthetic, medical, political, or legal issue.
Satan works in the world and he shapes people and society to achieve his goals. Knowingly or not, anti-christ will force people to follow and obey an agenda that appears to be in the best interest of its people but, in following the pattern of human history and man's rebellion to God, will bring about pain and suffering until Christ comes again.
ETC................................
Is this organize craziness?
Is it a cult or a sect?
Anyone know?
The scans were a little fuzzy so here it is in a nutshell.
MARK OF THE BEAST (666)
RFID
"He required everyone - great and small, rich and poor, slave and free - to be given a mark on the right hand or on the forehead. And no one could buy or sell anything without that mark, which was either the name of the beast or the number representing his name. Wisdom is needed to understanding this. Let the one who has understanding solve the number of the beast, for it is the number of a man. His number is 666" (Rev. 13:16-18 New Living Translation).RFID
666 IS A SYSTEM OF THE ONE WORLD GOVERNMENT
At the present time, computer-assisted biometric identification systems are being developed rapidly and have been readily accepted into our society. Miniature computer chips, using RFID (Radio Frequency Identification) technology, have already been embedded within electronic appliances, retail goods, livestock, and human beings. This is not tomorrow's science fiction
- it is happening today.
In many parts of the world, Applied Digital Corporation's human implanted RFID microchip (VeriChip) is used to help diagnose Alzheimer's disease, mental illness, Diabetes, heart problems and it also helps to prevent kidnappings. In the near future, this type of biochip will be widely accepted and implanted for personal identification, protection, monitoring, tracking, commerce, and other uses not yet imagined.
Unfortunately, such biochips store personal identification and the information generated from its use will be stored and maintained in a computer database. Your body becomes a tagged asset that is monitored and whose behavior will be tracked. Implanting the microchip in the body alters a person's physically, mentally and ultimately - spiritually. The problem that arises from the use of biochip in humans is more than an aesthetic, medical, political, or legal issue.
Satan works in the world and he shapes people and society to achieve his goals. Knowingly or not, anti-christ will force people to follow and obey an agenda that appears to be in the best interest of its people but, in following the pattern of human history and man's rebellion to God, will bring about pain and suffering until Christ comes again.
ETC................................
Subscribe to:
Posts (Atom)