I have been wanting to make my computer more secure lately, and have been wondering a few things about security. I use a cable modem, and am running windows 2000, and i also use IIS for some web development. So here goes the questions:

1) Firewall -- What is a good firewall to use? I don't want to use Zone Alarm because that always screws up IIS for some reason. Does anyone know of any good firewalls that would work good with running a very small website (mainly just for me) off of IIS? The files for the website are on a seperate NTFS partition.

2) Encryption -- Say I want to make sure that no one can get to some certain files, maybe source code or something. Well say that they get past the firewall or whatever, what would be a good way to encrypt my files so that even if they got to thm they could not use them? Or is there a way that I can hide them so that they won't even know that they are there? Is the encryption that you can do on a NTFS partition good?

3) Just how much can a hacker do -- If a hacker gets into my comp, can they really change flash BIOS settings, or format a hard drive, or delete or take any file that they want? How would they get through? Is there anything else i should do besides a firewall, and encrtpy/hide files and of course anti-virus software :D?

-- Thanks a lot! :):):D:D

3) Yes they can --

There is a program called WinControl or something if some1 is on the INET you can find their IP and then control their computer (update w/fake BIOS, chg. Disp. Resolution, etc) I know this because I know someone that is a professional hacker (companies hire him to test security from a hacker POV)

I would suggest learning how to hack and use that information to protect your computer, but there is no way to totally secure your system or hide a file. But you probably should name it to something they wouldnt look at like solitar or minesweeper or something.




To Sleep Or Not To Sleep, That Is The Question

Also, you can go to www.rootshell.com or something and keep up with some of the lastest exploits for windows.

cool, thanks for the advice. So, basically, the best you can do is antivirus software, and firewall?

Oh yeah, and unplug the comp...heheh:D

A great site to try out your security on is Shields Up (http://www.grc.com).

The site downloads a dll that tries to hack your computer and then assesses your vulnerability.

I'd almost think that if you're running a server on the net you'd want a hardware firewall rather than a software firewall. A software firewall could use resources on the computer the web server could be using, although a hw fw would be more expensive. Then only allow traffic through that goes to what you need, -ie HTTP and HTTPS ports.

Also, make sure you keep up to data with Microsoft Security patches. Subscribe to the list, and check that or the site at least once a day. The latest security hole in IIS5 would not have been blocked by a firewall.

Finally, disable or uninstall anything you don't need running. For example, if you aren't going to use FTP with IIS, uninstall it. Hackers can't exploit something you don't have running.

The biggest Windows security hole seems to be Netbios. If you don't need it disable it, else make sure your firewall prevents access from the outside.

If you are concerned about security, I would recommend putting a firewall between your IIS server and WWW. Set W2K domain, set one computer to act as proxy/firewall, assign pemissions on your IIS server to the content you want to expose. You can use even a cheep computer as a proxy PII 400/450 will do good enogh. Set a 10Mb network using a crossover cable.

In regards to the software to use - I would recommend Check Point, or ISA (new version of MS Proxy).

In this case the access is limited to the Proxy server.

In regards to INET, INET is like a worm virus, it writes a server component to runservices entry in Registry, so the server starts everytime. Some virus utilities can detect it, or even some firewall utilities like Black Ice, which is another good utility and may be the least expensive one.

Well, i got ConSeal firewall. It has passed all the tests that i have hoped that it would so far. Now all i have to do is configure IIS the right way so that i can get everything the way i want.

How much is a cheap hardware firewall? Because i just bought win2000 and am low on $$$...

Thanks for the help everyone!

I use the packet filtering built into Windows 2000 -- RRAS. This is fine for my NAT and web serving needs, the only exposed port I have is port 80.

As far as I know, it is secure (if you want to try and hack my server, I'm @ clunietp.dtdns.net) and it did not cost me anything extra. Works great to allow file sharing and internet access to my internal clients and acts as a test web/sql server.

if you want to try and hack my server, I'm @ clunietp.dtdns.net

I hope you installed that security patch from last week or so. I've noticed that you can remove the .printer mapping, but IIS 5 will automatically recreate it, so you have to apply the patch.

Thanks for the heads up Josh

What part of WNY are you in? I'm in tonawanda! Small world....

You're welcome. I'm out in wyoming county.