The CUA Center for Planning and Information Technology (CPIT) strongly recommends that you follow these practices when using a computer connected to the Internet, via ResNet or your own ISP.
(Although these steps are Microsoft Windows-centric, the same principles apply to other operating systems such as Apple Mac OS X or Linux.)
- Use virus protection software on your computer.
CUA resident students are eligible to use McAfee VirusScan free of charge.
Download it here (CUA)
There are many commercial antivirus software packages available, including Symantec Norton AntiVirus, McAfee VirusScan and Trend Micro PC-cillin. Your computer may have come with a full or trial version of one of these packages.
Learn More About Antivirus Software (Microsoft)
Be sure to configure your antivirus software to download virus definition updates automatically so that you are protected against the latest viruses.
- Use firewall software on your computer.
Windows XP has a firewall feature built-in. Be sure that it is enabled.
Learn about Windows Firewall (Microsoft)
Help Keep Your Computer Safe Using Windows Firewall (Microsoft)
Or, there are freeware and commercial software firewall products available, including Zone Labs ZoneAlarm, Symantec Norton Internet Security, McAfee Internet Security and Internet Security Systems BlackICE PC Protection.
- Configure your computer to download critical updates automatically.
Microsoft Windows can download and install critical updates automatically. You should make sure that this feature is enabled.
Using Microsoft Update (Microsoft)
Understanding Windows Automatic Updating (Microsoft)
- Scan your computer regularly for spyware.
Spyware is software that generates advertisement pop-ups, collects personal information, tracks your web browsing or changes your computer configuration, usually without your knowledge.
Signs that your computer may have spyware installed include unexpected or excessive pop-up windows and slow computer performance.
What you can do about spyware (Microsoft)
There are free tools that will scan for and remove spyware on your computer. Two of these are:
Lavasoft Ad-Aware SE Personal Edition (Lavasoft)
Spybot - Search & Destroy (Safer-Networking)
Resident students can download McAfee VirusScan. This version of VirusScan includes an Anti-Spyware module that can detect and block potentially unwanted programs, including spyware.
There are many commercial antispyware software packages available, including PC Tools Spyware Doctor and Webroot Spy Sweeper.
You should scan your computer for spyware every week.
- Run Windows Update periodically to get non-critical updates.
From within Internet Explorer, select menu item Tools, then Windows Update. Or, click on this link:
Windows Update (Microsoft)
Follow the instructions on the Windows Update site.
You should do this every week.
- Keep other application software on your computer updated.
Microsoft provides a tool for scanning your computer for any Microsoft Office updates that might be needed.
Office Update (Microsoft)
Also, visit the Web sites for other software on your computer and install any updates that might be available.
You should do this every week.
- Use web browser security features; consider using a different web browser.
Be sure to turn on security-related browser features. These include disabling pop-up windows and accepting cookies from originating sites only. In Internet Explorer, be sure to set your Privacy level to at least Medium (Medium-High or greater is better). Turn on blocking of pop-ups.
Many Internet exploits are designed to take specific advantage of the Microsoft Internet Explorer web browser. If you are using Internet Explorer as your default browser, be sure to run Windows XP Service Pack 2 and apply critical updates as they become available.
You may want to consider using a different web browser.
Mozilla Firefox (Mozilla)
Netscape Browser (Netscape)
Opera (Opera)
For each web browser that you use, make sure that you are running the most recent version of that browser.
- Exercise extreme caution when opening e-mail attachments.
Unless you and the sender arranged in advance that an attachment would be sent, it is safest never to open e-mail attachments. E-mail attachments are a primary method used to spread computer viruses.
Never open any e-mail attachment if you are not running antivirus software with up-to-date virus definitions.
-
Be careful when downloading programs and viewing Web pages.
Take care not to run any program that does not come from a company or other entity that you trust.
Note that Web pages can sometimes contain malicious program code that executes silently as you view the page.
Turn off the preview pane in your e-mail program if possible. Many e-mail messages are written in the same language as Web pages; these may contain malicious code.
If you are visiting a Web page and are prompted to install software unexpectedly, click "No" or "Cancel."
Improve the safety of your browsing and e-mail activities (Microsoft)
Scan your computer for spyware every week.
-
Use instant messaging wisely.
Don't accept messages from sources that you don't recognize. Configure your IM program to accept messages only from users on your contact list ("buddy list"). If someone is bothering you via IM, remove them from your IM program's contact list. If problems continue, abandon your IM screen name and select another, giving the new name to trusted friends only.
Don't accept file transfers via your IM program. You have no way of knowing whether the file being transferred is malware or contains viruses.
Even if you know the person sending the message, don't click on web links in IM messages. Some viruses work by sending IM messages containing web links that can appear to be from someone you know.
-
Use strong passwords.
Your logon password is the first line of defense in protecting you and your files from intruders. It is important that you select a strong password.
Help protect your personal information with strong passwords (Microsoft)
- Never share your password.
Do not share your password with anyone else. If someone learns your password, change it immediately.
When changing passwords, don't reuse an old one. Always choose a new password that you haven't used before.
Even if you think no one else knows your password, change it frequently, at least once every three months.
Don't use the same password for different purposes. For example, the password you use for your Windows computer logon, the password you use for your online banking website and the password you use to log onto a recreational or news website should all be completely different.
-
Access administrative data only through the administrative system interface.
The safest place to work on sensitive data is on your CUA staff or faculty computer, while on campus. The safest way to work on sensitive administrative data is through the administrative system interface, not by downloading it into a file or another program.
If you do need to work on sensitive data that is stored on your local hard drive or removeable media, be sure that it is always encrypted.
- Check the CUA Campus Resource Status Board for problems.
If you are experiencing a problem using your computer on Resnet, check the Campus Resource Status Board at help.cua.edu.
The status board is updated when there are known problems with campus resources such as the Resnet network, e-mail or Internet access. You can click on the "More..." link to obtain more detailed information about the problem.
You can also fill out a support form on this page.
