Cable modems, DSL connection may invite unwanted Net vistiors

March 5, 2000

By JIM BROOKS

Ask any Internet user what one improvement they would perform first that would improve their Web surfing, and the answer you get in most cases is simple: Speed.

Since its earliest days, World Wide Web users have sought ways to speed up access to Web pages. The whole "Search for a Faster Web" fueled the drive for faster and faster modems. State-of-the-art quickly zoomed from 14.4kb to the current 56kb speed for dial-up access.

And now in many communities, users have access to cable modems and Digital Subscriber Line (DSL) Internet access. Both offers speeds far beyond the "old" 56kb standard dial-up connection.

Another advantage of cable modem and DSL access is that there's no "wait" period to connect -- it's instant, always-on Internet access.

But security analysts warn that the "always-on" feature brings more than just the Internet; it can mean security risks for your home or business computer that uses a cable modem or digital subscriber line (DSL).

If your computer is unprotected, leaving it connected to Internet all the time is akin to leaving your front door of your home unlocked all the time; you're safe until someone tries to break in.

If your computer is connected to the Internet all the time, that means it maintains a constant "Internet Protocol" address (abbreviated IP). If a hacker is scanning a cable Internet access system and identifies your address, he or she can attempt to access your computer.

GOOD NEWS. For home PC users who access the Internet via DSL or a cable modem and use the Windows 95/98 operating system, checking your system security is pretty simple.

Simply disable file and printer sharing on your PC. You can find this information under the "Network" icon in your control panel.

If you need to share files over the Internet, or you need to be connected also to a network, you may need to take some additional steps to check your system security.

SHEILDS UP! If you're using DSL or a cable modem now, you should visit Steve Gibson's Web site at http://grc.com.

Gibson's company, Gibson Research Corp., has a special section devoted to Web security issues called "Shields Up!"

Shields Up will check the security of your existing Internet connection -- by probing for any exposed and easily accessible ports, and by checking for easily exploitable networking configuration problems with your PC.

And believe it or not, Gibson's "Shields Up!" service is free.

My PC, connected to a cable modem, passed both tests with flying colors.

But even if it hadn't, "Shields Up!" offers users suggestions as to how they can improve their system's security.

NETWORK IT OUT. While most of his security tips are aimed at regular home users, Gibson also knows that there are those users who need to share files and keep some sort of security protocols running on their PCs.

It's pretty heady technical stuff, but his step-by-step directions walk you through the process of changing "bindings" and protocols, with the end result being a safer and more secure Net connection.

FIREWALLS. Some users need additional security protection, according to Gibson.

For example, if you have files you need to access remotely from the Internet, or if you want to regularly use remote control access programs like PC Anywhere or Laplink, then perhaps a personal firewall software package is what you need.

Firewalls provide a safe barrier between your computer and the Internet. A firewall inspects the data that flows through it from the Internet to your computer, and determines if it should pass or be blocked.

And some firewalls offer some really cool features, like real-time intrusion detection and logging.

•The first personal computer firewall product I tried on my home PC was BlackICE Defender.

This moderately priced product is simple to install and set up. Users can set their security levels by name -- ranging from "Paranoid" to the most lax, "Trusting."

Once you've set it up, BlackICE monitors your Internet connection quietly. Should it determine a violation of your security level, you'll be notified by a blinking icon in the Task Bar tray in the lower left of your desktop.

The violation is logged, and if possible, BlackICE traces the violation back to its source IP address.

I found BlackICE worked well -- almost too well.

As I found out from other reviews in the computer industry press, BlackICE tends to "cry wolf" with its violations. Of course, you can argue that it is better to be warned frequently than not at all. The company says it is continually refining its product to eliminate these false readings.

For more information on BlackICE Defender, visit the Web site at www.networkice.com.

• ZoneAlarm 2.0 was released in January, and can secure your PC from a variety of intruders, including trojans and worm programs.

ZoneAlarm is a firewall for your home computer that prevents unwanted intrusions into your computer, and detects unauthorized outbound Internet traffic -- the type of transmission that a hacker-installed program might make.

The best part is that ZoneAlarm is a free product -- you can download it from the company's Web site at www.zonelabs.com.

The site has loads of details about the product. If you're online with DSL or a cable modem, you may want to give it a try.

• There are a number of other products that offer similar protection that I've not taken time to try.

Norton Internet Security 2000, ConSeal PC Firewall, and SyShield by Sybergen Networks are just three.

You can read reviews and find links to reviews at Steve Gibson's Web site at http://grc.com.

As Gibson points out at his "Shields Up" Web site, for many users, once you have your computer properly configured, additional firewall software may not be necessary.

My PC, connected to the Internet via a cable modem, passed the "Shields Up" testing just fine, even with no firewall software running.

MACS ARE SAFE. Macintosh users have fewer security headaches compared to their Windows-equipped counterparts.

Apple's operating system keeps all of the computer's networking ports closed unless the user opens them with File Sharing and Web Sharing control panels.

And as most Mac users already know, there are few hackers going after Mac computers. The vast majority of viruses and security-breaking software is aimed at Windows-based machines.

If you have a Mac on DSL or a cable modem, you can still take the "Shields Up!" test at http://grc.com, and click on the link.

E-COMMERCE WAS BIG. Holiday e-commerce sales were big -- really big -- to borrow a phrase from my favorite former starship captain.

The Commerce Department announced last week that holiday sales topped $5.3 billion, or about 64 cents out of every $100 spent during the holiday season.

The figure is low compared to early estimates, but the government says the figure is an accurate look at e-commerce figures available.

The numbers don't include some e-tail transactions, like some financial transactions and airline ticket sales.

Commerce Secretary William Daley announced that he will seek additional funding from Congress to improve his department's ability to compile sales data from the growing e-commerce sector.

Comments and questions about this column may be sent to jbrooks@myoldkentuckyhome.com, or visit www.myoldkentuckyhome.com on the World Wide Web.

| HOME |