Principles of Security: Keeping it Simple

Popular guest writer Mark Schneider looks at how to increase system security by focusing on core applications.

image Computing on the Windows platform today can be very rewarding. The problem with Windows applications is, as Microsoft has made improvements in patching security holes in Windows, the Black Hat hackers have begun to focus on third party applications to exploit the Windows platform.

Recent highly publicized exploits on the Adobe Acrobat PDF reader, have been just the tip of the iceberg. According to Secunia, creators of PSI a security tool which scans your PC  for out of date software, half their users had 66 or more programs on their PC’s.

Once all the programs and required patches were tabulated, it totaled over “75 patch incidents annually”, per average PC. That averages out to a patch every 4.9 days.” (Source InfoWorld Security Central)

This state of affairs obviously puts the average user at risk. Most people do well just to keep their Windows OS patched, much less check more than once a week for patches to their other applications.

This leads to the crux of my point, keep it simple. Don’t download every application you see, or hear about. Pick a core of useful applications that allow you to use your computer in the way you need to, and stop!

Your computer is a serious tool that can be very useful, so treat it seriously. You can still have fun with your computer, but you don’t need 5 different media players –  choose one, and stick with it. If you find one you prefer uninstall the old one first.

Many people use old out of date programs because they don’t like the “feature creep” of newer applications. This is a mistake; keep what programs you have up to date. This is especially true with PDF readers, browsers, email clients, and media players. Keeping your flash player up to date is extremely important. Adobe Flash is a major exploit vector, and I frequently run with it disabled.

Trying new applications can be fun and rewarding but, the best way to try new applications is in a virtual machine. Using a program like Virtual Box from Oracle Systems, is a great way to safely try new applications without committing yourself to a new program, or loading your Hard Drive with a ton of unnecessary applications that need to be constantly updated.

image

Finally, run Secunia’s free PSI. It will help you keep your applications up to date, and add another layer of security to your computer.

image

This is a guest post by Mark Schneider of the Techwalker Blog, who brings a background as a high level techie, to the blogging world.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

About these ads

9 Comments

Filed under Don't Get Hacked, downloads, Freeware, Guest Writers, Personal Perspective, Security Rating Applications, Software, System Security, Windows Tips and Tools

9 responses to “Principles of Security: Keeping it Simple

  1. Mal

    Hey Bill,

    Totally spot on advice from Mark. I have used PSI for quite a while now, but only ran it as on demand. I figured that I would hear about any new updates to critical security issues, like Adobe. After my recent scare thinking I was infected, I ran PSI and found Adobe had updated flash and I didn’t know. Secunia now runs in my system tray at all times.

    Another valuable lesson I learned from this, “expect nothing, anticipate anything”.

    Cheers

  2. Mark Schneider,
    You are SPOT ON!
    Thanks a lot for sharing such a nice article article,i had gone through it really a very nice and detailed review.
    By the way the principles which you mentioned are Awesome and very informative they are going to help me a lot.

    for more information on Ethical Hacking and Certification check this link: http://www.eccouncil.org/certification/certified_ethical_hacker.aspx

  3. vhick

    Nice article sir Bill. I also used VirtualBox with WinXP that the same configuration in my real system. The difference obviously are the drivers for testing software and testing some conflicts especially on security software.

    I’m also used Secuna OSI.

  4. Pingback: Geek Squeaks’ of the Week (#57) « What's On My PC

  5. Pingback: Tweets that mention Principles of Security: Keeping it Simple « Bill Mullins' Weblog – Tech Thoughts -- Topsy.com

  6. Adrian

    Wasn’t there aversion of VirutalBox developed by Sun Software? I used that before and it slowed my PC to a crawl so I uninstalled it immediately.

    • Bill Mullins

      Hey Adrian,

      You’re right again!

      Yeah, I found the same thing and uninstalled. There’s a ton of better stuff out there this year.

      Bill