Slashdot Mirror

← Back to Stories (view on slashdot.org)

Stop Christmas-Gift PCs From Feeding Worms

Posted by timothy on from the cognitive-dissonance dept.

An Anonymous Reader writes "If you recently set up a new PC with Windows XP, or if you had the pleasure to do a 'reinstall from scratch,' you probably found that many XP systems as they are shipped today are not patched against common issues like Blaster. Given that these worms are still going strong, it doesn't take long for a new system to be infected. In particular, if you have to connect it to the Internet to download all the patches. Well, help is in sight. The SANS Institute released a paper entitled Windows XP: Surviving the First Day." (Read on below.) Update: 12/24 17:59 GMT by T : Thanks for reader Bill Curnow for the updated link. Update: 12/24 19:15 GMT by T : Besides the workaround suggested below, Roblimo has a good suggestion on avoiding the first-day-of-Windows altogether.

"With many screen shots, it will walk you through the procedure to enable the XP firewall and downloading the patches without getting infected while doing so. This could be the (free) stocking stuffer that may save Christmas for your folks ;-). Given that its probably to late now to start downloading your favorite Linux distro."

But if you do have the time and bandwidth, and you're stuck on Windows, a nice live-CD distro like Knoppix or Mepis means you can download patches without racing the worms, and install your patches while offline. (And if you have time to download 50MB, you have time to grab Damn Small Linux.)

12 of 416 comments (clear)

  1. Bad link. by Animats · · Score: 4, Informative
    xp.homepc.org not found.

    Check those links, people.

    1. Re:Bad link. by rf0 · · Score: 4, Informative

      http://www.homepc.org/ looks like a dynamic DNS service. I bet all the requests caused the user to get dumped.

      Rus

      --
      Cheap UK and US VPS
  2. Easy by skinfitz · · Score: 4, Informative

    Click Start > Network and Dial up connections

    Right click on your internet connection, choose "Properties"

    Click "Advanced"

    Click the box to turn on the firewall

    Voila. You are safe from Blaster.

    As an added precaution, deselect "Client for Microsoft Networks" from all interfaces except any you really need it on.

  3. something wrong? by Stanza · · Score: 5, Informative
    Bad link? It doesn't seem to work.


    Try this instead.


    http://www.sans.org/rr/papers/index.php?id=1298

  4. And they say Slashdot hates Windows by Ridgelift · · Score: 4, Informative

    There's been a lot of "Slashdot posts ever anti-Windows article that exists", but this article debunks that.

    I usually recommend a hardware firewall, in particular the little blue Linksys firewalls. Home users can hook up their ADSL connection, plug in the firewall, and then their PC. Then as long as they don't download email until their system is patched and anti-virus is updated, they're relatively safe from most malware.

    This year I've also begun recommending anti-spyware as well. It's amazing how ubiquitous that stuff's become over the past year.

    --
    Ruby on Rails Screencast
  5. Site slow, here's some quick n' dirty instructions by rebelcool · · Score: 5, Informative

    I figure if you're reading this on slashdot you don't need screenshots to find your way around a monitor...

    Obviously, this should be done before you plug the machine into any kind of internet connection.

    -Go to Start and then Control Panel.
    -Once in Control Panel, choose Network Connections
    -Right click on your connection of choice (if there's more than one, do it for all of them) and choose Properties.
    -Go to the advanced tab and check the Firewall check box.

    If you want to know more about how to configure it and modify the settings, click the link below that checkbox for directions.

    --

    -

  6. Let's not forget... by GarfBond · · Score: 4, Informative
    those great OSS packages that you can install on Windows, if your recipient insists on keeping that as the main OS :)

  7. It's not just XP by AndroidCat · · Score: 3, Informative
    Any distro of anything should be installed with some caution about exploits that may have popped up since the distro was made.

    Some might argue that WinXP comes with the Best Before date already expired, but there's a lot of CDs for many OSs out there with "open security". (The main problem with standard XP is the stupid requirement to phone home to register before downloading the patches to make it safe to be on the net in the first place.)

    --
    One line blog. I hear that they're called Twitters now.
    1. Re:It's not just XP by SoCalChris · · Score: 4, Informative

      The main problem with standard XP is the stupid requirement to phone home to register before downloading the patches to make it safe to be on the net in the first place.

      That's FUD. XP gives you 60 days to activate your copy of windows. During those 60 days, Windows is fully functional and allows you to connect without any activation related troubles.

  8. Re:Easy Alternative by Tim+C · · Score: 4, Informative

    you won't get any spyware or data-mining cookies sneaked onto your computer

    What, you're saying that not a single Linux web browser supports cookies? A "data-mining" cookie is just a cookie to track you as you browse the web - one set by an advertising site such as doubleclick. They work just as well whatever OS you're running.

    6. Use your new shiny computer as you're pleased

    Well, y'see, it pleases me to run games like Dungeon Siege, Postal 2, Warcraft 3, and a whole host of others that don't have native Linux versions (don't mention Wine, please). It also pleases me to write code in C# (again, forget mono, it's not nearly there yet). Until Linux provides me the means to do these things, it'll always be my secondary OS, Windows will be my primary, and "advice" to secure my PC by wiping Windows and installing Linux will be treated with the contempt that it deserves.

    However, none of those bugs/holes will expose your PC to worms such as Blaster

    You are of course aware that the first internet-borne worm utilised a buffer overflow in sendmail to infect computers? Don't go getting over-confident - true, I can't think of any Linux-targetting worms at the moment, but it's been done before, and it will be done again.

    --
    It's official. Most of you are morons.
  9. Re:Need for Microsoft patch CD by rakerman · · Score: 3, Informative

    Microsoft does have patch CDs.

    In North America, Office Service Packs can be obtained free of charge on CD-ROM. Order Office Service Packs on CD-ROM

    They also have a free CD as part of the Security Resouce Kit (the technet website, not the book). http://microsoft.order-4.com/securitykit

    I have a webpage with more home broadband security information.

  10. Surviving the first day... by luckyguesser · · Score: 3, Informative

    is called "TCP/IP port filtering". I have encountered this experience personally, on my dorm network. When I reinstalled WinXP, I didn't even have time to download SP1 before a virus made its way onto my computer and the IS dept shut off my port. However, I've found that if I leave my network cord unpliugged (card disabled, etc) until I have setup my TCP/IP filtering settings to allow only port 80, I can then download the necessary patches, update, and remove the filter. No problems yet!

    --


    The power of Christ compiles you.
    A Random Blog