How to Secure Your Computer

See also: George Mason University's Information Technology Security website.

1. Access your GMU email using the web version of MEMO <http://mail.gmu.edu>. MEMO on the web supports SSL (Secure Sockets Layer) which encrypts your data before it is transmitted over the Internet. MEMO does not permit SSL with clients like Outlook and Netscape Messenger.
   
   
2. When you visit a web site that requires the entry of financial, or personal data, make sure that the site is protected with SSL. Whenever you see the small padlock icon at the bottom right of the page, you can click on it to verify that the site has a current SSL certificate. SSL is supported by both Netscape Navigator and Internet Explorer.
   
   
3. Windows users should disable File and Printer Sharing. In Windows XP and 2000, follow these steps:
   
   
   • Right click on "My Network Places" and select "Properties".
   • Right click on "Local Area Connection" and select "Properties".
   • Uncheck "File and Printer Sharing for Microsoft Networks" and click "OK".

4. Install Norton AntiVirus which is free to all GMU faculty, students, and staff. Enable Auto-Protect and make sure that your virus definition are updated daily with LiveUpdates. Never open an email attachment unless you are sure who sent it and what it contains.

5. Windows users should visit Microsoft regularly in order to download and install critical updates. Windows XP, 2000, and ME users can also configure Windows to update automatically. See the following Microsoft links for instructions on configuring Automatic Updates:
   Automatic Updates in Windows XP
   Automatic Updates in Windows 2000
   Automatic Updates in Windows Millennium Edition (Me)
   
   
6. Install a firewall. To enable Windows XP firewall, read these instructions from Microsoft: Use An Internet Firewall. Windows 2000 and ME users will need to install a commercial firewall. There are several companies that provide free basic versions of their firewalls like ZoneAlarm and Kerio. You can also purchase firewalls from Symantec or McAfee.

7. If you use Telnet or FTP, download and use a free copy of Secure Shell from the ITU Support Center site.
   
   
8. Pick a secure password for your email and other accounts. Here are some quick guidelines:
   

9. Windows XP and 2000 users should be sure to set an Administrator password. You may have unknowingly set up a blank password when you first configured your computer. A blank password leaves your system wide open to hackers when it's connected to the Internet. Follow these steps to set or change your Administrator password:
   
   
   • Press Ctrl-Alt-Delete on your Windows 2000/XP system.
   • In the Windows Security dialogue box, select the "Change Password..." option.
   • Enter Administrator as the User Name, select your local system (the "this computer") option under Log On To, and enter the old password (if known). Then, enter a new, secure password.
   • WARNING: Remember this password. It is very difficult to recover or change the Administrator password if you've forgotten it.
     
     
10. Do not use or disable file sharing on peer-to-peer (P2P) file sharing software like KaZaA or WinMX. These programs open your system up to viruses, worms, Trojans, or spyware and consume costly network bandwidth. In additions, attackers may use your computer as a distribution point by uploading files that they wish to distribute in order to take advantage of the university's higher bandwidth. This will further degrade network performance as well as you own computer's performance. For detailed instructions on how to disable file-sharing on your P2P application, see the Electronic Freedom Foundation's How Not To Get Sued By The RIAA For File-Sharing.