MS08-067
http://www.microsoft.com/technet/security/Bulletin/ms08-067.mspx
- or -
http://support.microsoft.com/kb/958644
Everyone should go to this website and update their Windows systems if you haven't already. There is a vulnerability in Windows that allows an attacker to take over your system without you knowing it.
For more info...
http://blogs.techrepublic.com.com/networking/?p=751&tag=nl.e102
If you haven't updated your system by now, maybe you should have someone keep it up to date for you. The people at Networthy Systems can keep an eye on your systems for you. We test updates and patch systems on a daily basis. If you would like more information, give us a call.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+Lead EngineerNetworthy Systems6950 College Street Ste. GBeaumont, Texas 77707(409) 861-4450
http://www.networthysystems.com
Monday, December 8, 2008
Thursday, November 13, 2008
Too Many IT Guys In One Place.
Have you ever been in a situation where there are too many people trying to take charge? Let's say you are in charge of purchasing, and there are a couple more people in your company that make purchases without telling you. One day, you notice that you are low on widgets, you order a case and three cases show up. You just found out that two other people ordered a case as well.
This happens in the IT industry way too often. Someone will have an issue with their computer and try to fix it themselves. Little did they know, the setting they changed will not let them open anymore spreadsheets. A couple days later, they try to open a spreadsheet, call the help desk and the IT guy is spending a couple hours trying to figure out what happened.
What should they have done? Call the help desk first! Your IT guy will know how to fix it. If not, he'll do some research to find the fix. He will also research for issues that may arise from applying the fix.
One of the great things about IT guys is that we document everything we do whether right or wrong. This gives the next guy who has the same problem something to go on. I know that when I am trying to find out how to fix something, the first thing I do is try to find someone that has had the same problem and learn what they did to fix it. The professional IT guy will have resources for this information that the general public don't.
The next time something isn't working right, don't try to fix it yourself. Call your IT guy. That's what you pay him for, correct?
Do you need an IT guy? If so, give Networthy Systems a call. We can support you and your staff no matter what kind of network you're running. We have highly trained professionals that will be happy to solve your problems.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
This happens in the IT industry way too often. Someone will have an issue with their computer and try to fix it themselves. Little did they know, the setting they changed will not let them open anymore spreadsheets. A couple days later, they try to open a spreadsheet, call the help desk and the IT guy is spending a couple hours trying to figure out what happened.
What should they have done? Call the help desk first! Your IT guy will know how to fix it. If not, he'll do some research to find the fix. He will also research for issues that may arise from applying the fix.
One of the great things about IT guys is that we document everything we do whether right or wrong. This gives the next guy who has the same problem something to go on. I know that when I am trying to find out how to fix something, the first thing I do is try to find someone that has had the same problem and learn what they did to fix it. The professional IT guy will have resources for this information that the general public don't.
The next time something isn't working right, don't try to fix it yourself. Call your IT guy. That's what you pay him for, correct?
Do you need an IT guy? If so, give Networthy Systems a call. We can support you and your staff no matter what kind of network you're running. We have highly trained professionals that will be happy to solve your problems.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
Thursday, November 6, 2008
Does your login account have admin privileges?
Today's blog is related to the anti virus and firewall blog.
When setting up Windows for the first time, it makes you create your first user account. By default, this account has administrative rights. Most people assume that this is okay and go about their daily business. To tell you the truth, this is NOT a good thing.
In order for the bad guys to get into your system, most of the time, you have to "allow" them to do so. Now, they are not going to come right out and say, "I want to attack your system. Please click here to grant me access." What they will do is entice you to click on a link or open an email that will install bad software on your system. Example: Susan has sent you an online greeting card. Click here to view it. When you click the link, you have given the bad guy permission to do whatever he wants to your system. Be aware, this is just one of the many ways you can be attacked.
The administrator account, or an account that has administrative rights, has full access to everything on your computer. Think about this for a minute. When using your computer as admin, and you are opening all your email, surfing the web discovering new and exciting web pages, downloading and installing new software, file sharing, or any of the other cool things you can do on the internet, you are doing so in a way that says, "whatever happens, it must be okay because I'm an administrator." If you end up going to the wrong website, one that installs viruses on your computer, nothing will stop the virus installation because... well... you're an admin.
How do you keep this from happening? You can create another account on your system that has "user" privileges or "limited use". "User" or "Limited" accounts do not have the right to install or change anything on your system. You can still do everything else; surf the net, send and receive emails, you can even download files to your system.
If you download audio files and documents, they will still work as normal. If you download a program, or anything that involves an installation process, a "user" account will not be able to run it. Only an administrator can install files. This is great because if you are logged in as a user, and the bad guy is trying to install something, it won't run.
So how do you run the program you just downloaded? You could log out of the user account and log in as the admin, then run the program, or, you can right click the file (some may have to hold the SHIFT key while right clicking) and choose "Run As". This will bring up a box that will let you choose the login name and password of someone who has the rights to install software.
*** CAUTION ***
If you are NOT absolutely positive that the file you downloaded is 100% safe, then it's best to do a virus scan on it. Check your anti virus software documentation on how to "quick scan" one file. Also, some websites offer MD5 check sums. This is a number based off of the data in a file. You need a MD5 check sum generator, run it on the file you downloaded, then compare your number with the number on the website you got it from. If the numbers match, then the file received is the exact same file you started to download. If the numbers do not match, then don't open the file. You can try downloading it again or get it from somewhere else.
In summery, whatever access you have while logged in, the bad guy has the same kind of access. You can make your system 1000 times safer by using a "limited" account rather than an administrator account. It may be a little difficult to get used to, and sometimes a pain, but you will keep virtually every bad guy out of your system.
If you need some guidance, or you have multiple computers that you'd like to reconfigure and need some help, give us a call at Networthy Systems. We'll be more than happy to keep your network up and running so you don't have to.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
When setting up Windows for the first time, it makes you create your first user account. By default, this account has administrative rights. Most people assume that this is okay and go about their daily business. To tell you the truth, this is NOT a good thing.
In order for the bad guys to get into your system, most of the time, you have to "allow" them to do so. Now, they are not going to come right out and say, "I want to attack your system. Please click here to grant me access." What they will do is entice you to click on a link or open an email that will install bad software on your system. Example: Susan has sent you an online greeting card. Click here to view it. When you click the link, you have given the bad guy permission to do whatever he wants to your system. Be aware, this is just one of the many ways you can be attacked.
The administrator account, or an account that has administrative rights, has full access to everything on your computer. Think about this for a minute. When using your computer as admin, and you are opening all your email, surfing the web discovering new and exciting web pages, downloading and installing new software, file sharing, or any of the other cool things you can do on the internet, you are doing so in a way that says, "whatever happens, it must be okay because I'm an administrator." If you end up going to the wrong website, one that installs viruses on your computer, nothing will stop the virus installation because... well... you're an admin.
How do you keep this from happening? You can create another account on your system that has "user" privileges or "limited use". "User" or "Limited" accounts do not have the right to install or change anything on your system. You can still do everything else; surf the net, send and receive emails, you can even download files to your system.
If you download audio files and documents, they will still work as normal. If you download a program, or anything that involves an installation process, a "user" account will not be able to run it. Only an administrator can install files. This is great because if you are logged in as a user, and the bad guy is trying to install something, it won't run.
So how do you run the program you just downloaded? You could log out of the user account and log in as the admin, then run the program, or, you can right click the file (some may have to hold the SHIFT key while right clicking) and choose "Run As". This will bring up a box that will let you choose the login name and password of someone who has the rights to install software.
*** CAUTION ***
If you are NOT absolutely positive that the file you downloaded is 100% safe, then it's best to do a virus scan on it. Check your anti virus software documentation on how to "quick scan" one file. Also, some websites offer MD5 check sums. This is a number based off of the data in a file. You need a MD5 check sum generator, run it on the file you downloaded, then compare your number with the number on the website you got it from. If the numbers match, then the file received is the exact same file you started to download. If the numbers do not match, then don't open the file. You can try downloading it again or get it from somewhere else.
In summery, whatever access you have while logged in, the bad guy has the same kind of access. You can make your system 1000 times safer by using a "limited" account rather than an administrator account. It may be a little difficult to get used to, and sometimes a pain, but you will keep virtually every bad guy out of your system.
If you need some guidance, or you have multiple computers that you'd like to reconfigure and need some help, give us a call at Networthy Systems. We'll be more than happy to keep your network up and running so you don't have to.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
Thursday, October 30, 2008
Do you need a firewall?
Yes!!!
Think of your computer as a building and the doors are all the different ways to the Internet. The computer calls these doors "ports". Your computer has thousands of these doors, and a firewall will keep them locked.
The bad guys have programs that will go out on the Internet, find your computer, and start knocking on all your doors. Without a firewall, your computer will say, "Hey, welcome! C'mon in." The bad guy can now control your computer without you knowing it. They can search your computer for files that contain personal information.
Modern firewalls not only lock your doors, but will not even respond to the initial knock at the door. This is good because without an answer, the bad guy program assumes that it has reached a bad IP address and moves on to find another victim.
Some doors have to be open. Want to surf the Internet? You have to have port 80 open. Want to send and receive email? Then you have to have ports 110 and 25 open. That's okay. Some doors are fine to leave open, but you don't want a whole bunch of doors open if they don't need to be.
A good firewall program will detect when someone or something is trying to open a door and it will stop and ask you if it's okay. You should have the option of denying the connection just this once, denying it permanently, granting the connection just this once or granting it permanently. Here is a general rule of thumb:
- If you open a program that you will be using on a daily basis, and it asks you to grant or deny the connection, go ahead and grant it permanently.
- If you just installed a program and it needs to go on the Internet for registration purposes, then grant it just this once.
- If the program needs to go to the Internet for updates, this is up to you. How often will you use the program? How often do updates come out for this program? If the program is updated monthly or longer, I'd grant it just once each time.
- If the firewall asks you to grant a connection and you did not just install a program, or try to access a web page that wants to install an ActiveX control or something similar, then definitely deny the connection. If you're unsure, deny it just this once. Investigate the issue so you can make a better decision next time.
- If the firewall wants approval to grant access to something you were not involved with at all, deny it permanently.
There are many firewalls on the market to choose from. They all do the same thing just with a different look and ease of use. Some firewalls are "hardware" which means that it is an actual box that you connect directly to your ISPs modem. Then your computer or your network is plugged in to this unit. This is the best form of firewall but is not as user friendly as a "software" firewall which is installed on each computer. For the best protection, use both a "hardware" firewall and a "software" firewall from different manufactures. This is called multi-layer protection. It will be a lot harder and almost impossible for the bad guy to get through to your system.
Protecting your data should be your number one concern. Even if you think to yourself that you don't have anything on your system that anyone would want, think about everything you have ever typed on your keyboard. If the bad guy has access to your system, chances are he's got more than you know.
That might be a good topic for another blog...
If you need help with firewall advice or you are having trouble with your network, then you really need to talk to a professional. You should call Networthy Systems. If we can't help you, we'll point you in the right direction.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
Thursday, October 23, 2008
Why didn’t my antivirus program catch that virus?
Let me start by saying that nothing is 100% secure. You can have the best of the best and keep it up to date on a strict schedule, and it’s still not going to be perfect. But, you can follow some simple guidelines to help keep the “black hats” from getting to your system.
I had a person tell me that they had an antivirus program installed but the computer got infected anyway. After looking at the system, the program hasn’t been updated in over two years. Antivirus programs will only protect you from viruses it knows about. If it doesn’t know what to look for, it can’t stop it.
Here’s how it works:
There are very few bad guys that write their own viruses. The rest of them make copies of the original, change it to give it their own “personal touch” then send it out across the internet. The antivirus software companies need to get a copy of the virus, see what makes it tick, then create an update to protect their customers. Most antivirus companies are very good at posting updates several times a day.
Tips to make your antivirus software better:
If your company has multiple computers and you can’t find the time to maintain your computers as you should, then you need to hire someone to do it for you. Call Networthy Systems. We will proactively take care of your network with our “Hassle Free Platinum Plan”. Call for more details.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
I had a person tell me that they had an antivirus program installed but the computer got infected anyway. After looking at the system, the program hasn’t been updated in over two years. Antivirus programs will only protect you from viruses it knows about. If it doesn’t know what to look for, it can’t stop it.
Here’s how it works:
There are very few bad guys that write their own viruses. The rest of them make copies of the original, change it to give it their own “personal touch” then send it out across the internet. The antivirus software companies need to get a copy of the virus, see what makes it tick, then create an update to protect their customers. Most antivirus companies are very good at posting updates several times a day.
Tips to make your antivirus software better:
- Open your antivirus program and find the section where you can edit its settings
- Make it check for updates every hour. I’ve seen some programs default to once a week.
- Look for a section that deals with the virus. Sometimes, you’ll have options of what to do with the virus after it detects one. Make sure that it is set to quarantine the virus. You can set it to delete the virus, but every once in a while, it may mistake a program or document that you need as a virus and delete it. I’ve seen programs that tell you it found a virus, but doesn’t take any action because it was set for “report only”.
- If your virus scanner is active (constantly scans your system), that’s great, but everyone should still schedule a complete system scan every day.
- If your program will send an email to you when it detects a virus, do so. You should always double check that the virus has been taken care of as soon as possible.
- Your program should tell you where on your system it found the virus and the name associated with it.
- Go to that folder and check to make sure your program removed the virus.
- Check the quarantine folder to make sure it’s there.
- Investigate your virus. Check with the website of your antivirus program’s manufacturer. You should be able to look up the name of the virus and see what kind of damage it causes. You may have to do a little extra work to completely remove all traces of the virus.
If your company has multiple computers and you can’t find the time to maintain your computers as you should, then you need to hire someone to do it for you. Call Networthy Systems. We will proactively take care of your network with our “Hassle Free Platinum Plan”. Call for more details.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
Thursday, October 16, 2008
Should I just turn the computer off?
I hear this question quite often. The answer is NO.
The number one step to solving Windows desktop problems is to reboot the system. Sometimes you will have an application lock up or suddenly you can't get on the Internet. Rebooting your system resets all the services and processes that run in the background and gives your computer a fresh start.
There is a right way, and a wrong way to rebooting your system. The worst thing you can do is to kill the power to your system either by holding in the power button, pulling the power cable, flipping the master power switch or turning off your power strip. Every time your system loses power without going through the proper shutdown procedure, it causes slight damage to the hard drive. Do this frequently, and the slight damage becomes a big problem and can even cause your hard drive to stop working.
If something is not quite working right, and you feel that you need to reboot your computer, try this first:
The number one step to solving Windows desktop problems is to reboot the system. Sometimes you will have an application lock up or suddenly you can't get on the Internet. Rebooting your system resets all the services and processes that run in the background and gives your computer a fresh start.
There is a right way, and a wrong way to rebooting your system. The worst thing you can do is to kill the power to your system either by holding in the power button, pulling the power cable, flipping the master power switch or turning off your power strip. Every time your system loses power without going through the proper shutdown procedure, it causes slight damage to the hard drive. Do this frequently, and the slight damage becomes a big problem and can even cause your hard drive to stop working.
If something is not quite working right, and you feel that you need to reboot your computer, try this first:
- Click Start - Shutdown - Restart. This is the best way to reboot any Windows system. If you just want to turn the computer off, then click Start - Shutdown - Shutdown and the system should turn itself off.
- Let's say your mouse stops working, you can still use your keyboard to initiate the reboot process. Press the Windows key on your keyboard (it looks like the Windows flag). Then you can use your arrow keys to navigate through the menus. Highlight Shutdown and press the Enter key. Use your arrows to highlight/select your shutdown or reboot option and press your Enter key. If you have a keyboard that doesn't have the Windows key, you can press the CTRL key and the ESC key at the same time to bring up the Start Menu. Another way to reboot using the keyboard is to press the CTRL, ALT and Delete keys at the same time. Use your arrow keys to highlight the Shutdown button and press Enter. Use your arrow keys again to choose Shutdown or Restart and press Enter.
- If you mouse isn't working AND your keyboard is not responding, then we can try the power button. On some computers, depressing the power button will initiate the shutdown sequence in Windows. Give it a minute, though. Sometimes it will start the process but you will not notice anything. A good indicator that something is happening is the HDD light on the front of the computer will start blinking.
- If steps 1, 2 and 3 are not working, then we will have to resort to turning off the system. The easiest and best way is to press and hold the power button in for about 5 seconds. You will hear the computer click as the power turns off and the monitor will go black. Wait ten to fifteen seconds before turning the computer back on. Turning your system on too soon can cause just as much, if not more, damage to your hard drive.
Windows does have to be restarted from time to time. Some more than others depending on the applications installed on the system. I'd say once a week should be normal. If you are having to reboot more often, then there could be something wrong with your system and it should be checked out by a qualified professional.
If you are looking for a place to start, give us a call at Networthy Systems. We'll be more than happy to help you out.
Thanks for reading.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer - Networthy Systems - 6950 College Street Ste. G - Beaumont, Texas 77707 - (409) 861-4450 - http://www.networthysystems.com/
Thursday, October 9, 2008
How smart is your IT guy?
When the IT guys get together, we like to discuss the silly things that end users do, like thinking that the mouse is some kind of foot pedal. Sometimes, the tech is just as bad. I once watched a tech troubleshoot a video problem for 30 minutes when all he had to do was turn the monitor on. No matter how good the tech is, he/she should start with the basics. It's easy for us to forget, because we've been through many different scenarios, we assume we can jump straight to the solution because we had a similar issue last month.
If you want to test your IT guy, try this...
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
If you want to test your IT guy, try this...
- Unplug your network cable.
- Call your IT guy and tell him that your computer can't get on the internet.
- He may ask you to check a couple things first, like going to a couple different websites or checking your IE settings.
- If he takes too long to get around to asking you to check your network cable, you might want to find a new IT guy.
Thomas Johnsen - CCNA, MCSE+Security, MCDST, A+, Net+, Security+
Lead Engineer
Networthy Systems
6950 College Street Ste. G
Beaumont, Texas 77707
(409) 861-4450
http://www.networthysystems.com
Subscribe to:
Posts (Atom)
Posts
