Security on Public Machines?

ThePopeLayton wonders: "I am currently a university student and unfortunately don't have my own computer yet. With all the key loggers and mal-ware out there, what can I do to keep my information secure. I probably log onto 20 different machines a week and changing my password, every two weeks, on all of my online accounts seems a little too much. What can I and other public computer users do to keep our personal information secret and safe?"

public machines and security: non sequitur

[yagu]

I don't know what your budget is, but computers have become a commodity, laptops included (though a tad more expensive). You can get a good functional laptop with 80 - 100GB drive, 512 - 1G memory, lots of processing power for under $1000. If your budget can't sustain that, sell something! It's well worth your while.

Logging on to up to 20 different computers and conducting personal business is like finding condoms and using them, trusting previous users to have been upstanding (ha-ha) citizens. The risk is high, especially in the Windows world, which if you're accessing the public computers, you're doing Windows.

The misery potentially save by getting your own machine is way more offset by the peace of mind and safety of your data. There is no excuse for most today to not make the investment. If you're a university student, look around for financial assistance to get a machine.

In the meantime, I'd minimize any activity where personal data in any way could be exposed and/or compromised. As to the bottom line and answer to your question: "What can I and other public computer users do to keep our personal information secret and safe?", not much really.

NOTE: getting your own machine does not assure safety, but it's a heck of a lot better than the alternative.

Re:public machines and security: non sequitur

[Saxophonist]

If you're a university student, look around for financial assistance to get a machine.

Typically, you can get additional money added to your aid eligibility (for subsidized loans, etc.) one time for a computer purchase. Check with your financial aid department if that interests you.

Re:public machines and security: non sequitur

[christopherfinke]

If you're a university student, look around for financial assistance to get a machine.

Better yet, check to see if your school's NTS (Networking/Telecom) department sells the computers that have been replaced at your university. At the U of MN, you could get a decent PC for less than $75 or an older Mac for $125.

Re:public machines and security: non sequitur

[TheOtherChimeraTwin]

I don't know what your budget is, but computers have become a commodity

It is a pretty popular response here to tell him to get his own computer. Keep in mind, getting a computer also means he needs space to keep the computer (and it has to be reasonably secure so it doesn't get ripped off), electricity to keep it going, and an interweb connection thingy so he can get at his pr0n^Wemail. The connection can get a little pricey, and it is an on-going expense. Now, maybe he is in a dorm room where the space, electricity and an ethernet drop is all included in his room fees. But then again, that might be part of the reason why he doesn't have a computer yet.

Since you can't really get privacy on a public computer, my suggestion is something that the average slashdotter would never think of recommending. Get a girlfriend with a computer. Make sure the computer has enough disk space for two.

Re:public machines and security: non sequitur

[Kadin2048]

I have personally run feasibility studies that show the ease of acquisition of a girlfriend and of a computer are firmly in favor of the computer.

And that doesn't begin to consider the TCO.

Password Management

[Lord+Prox]

As far as password management goes try KeePass. Free as in speech and beer, flashdrive friendly, and darn nifty.




Debt is Hell. Get out now.

livecd?

[SillyNickName4me]

I'd think the easiest solution is to get yourself a livecd and boot one of the machines from it. Here is a nice list

Re:livecd?

[nacturation]

... and check that there aren't any funny adaptor-like things attached to the keyboard port. Is that *just* a PS/2 <--> USB adaptor? Or does it have extra functionality that you'd never know?

Public Computers

[mcspoo]

Well, unless you're a conspiracy theorist... Trust your local library. Libraries are increasingly at the fore front of protecting your rights (because no one does that anymore in Dubbya's America...)

As a tech for a local library here, we set our workstations to be usable for just about any means, and all user cookies, cache files, or anything installed erase instantly upon log off or reboot. We're not as concerned about security on the computer as we are about insuring YOUR security as a user.

Don't be afraid to ask the Library about it's privacy policies, and what it does to protect your privacy. A written policy should (in most cases) be available.

On the other hand... DON'T try using a Live CD on a public computer in a library: you're liable to have an angry tech in your face ejecting you from the premises or calling the police. Live CD's on a public terminal can be interpreted as breaking and entering under most Public Access terminal usage agreements. That's another argument in itself, but it's how we'd treat live cd usage in my library.

An actual solution

[theglassishalf]

When I'm on a public terminal I always open up a notepad-like application and then type all the letters in the alphabet into it. After that, when I'm typing a password or something else sensitive, I'll copy and paste individual letters into the password field. This stops keyloggers, makes you no longer "low-hanging fruit," and should solve your problem.

-Daniel
Ownyourphone.com. Custom ringtones, cheap and easy.

Its very easy

[woolio]

have their security restrained enough so it would be difficult to get much out of it. With ports blocked all over the place, it'll take a lot of effort to get a piece of software running hidden that will send off your information.

What !?!?!

Let me introduce you to my good friend, Mr. TCP Port 80 and his cousin, Mr. TCP Port 443.

Windows Live CD

[TubeSteak]

Roll your own WinXP Live CD: http://www.nu2.nu/pebuilder/

If you poke around the various torrent sites or mIRC, you should be able to find pre-made ISOs.

Anyhow, this way you won't get any strange looks from non-techies who become suspicious of anything other than the normal Windows GUI. And you can even run as Administrator.

a live cd + USB thumbdrive and you'll have all your files & settings to go.

Purell and Lysol

[kaufmanmoore]

There's no telling how many viruses are on all those mice and keyboards.

Use your own programs

[andy753421]

Load firefox onto a flash drive and keep all your passwords stored (encrypted) on there. You'll still have to type a master password, but if you make that something that you dont use anywhere else it wont matter.
Another thing to do might be to find a SSL proxy server and use that for all your browsing, that should prevent packet sniffing, but someone *could* still be monitoring the RAM for passwords and such.
You'll never get it entirely secure, so if there's anything really important just borrow one of your friends computers for a few minutes.

KeePass?

[natmsincome.com]

If I was in your situation I'd put KeePass on a USB stick and carry that around with me.

It is able to enter your username and password in such a way that key loggers can't pick it up.

Have a look and tell me what you think.

http://keepass.sourceforge.net/