Page 1 of 1

Vulnerablity to the Internet

Posted: Wed Dec 24, 2014 4:38 pm
by dusty
If my computer and modem are turned on but I have not accessed my browser (in my case Mozilla Firefox), is my computer vulnerable to the internet?

Re: Vulnerablity to the Internet

Posted: Wed Dec 24, 2014 5:09 pm
by rjent
In a word, yes. If you are online, even if you are not "browsing" or "surfing" the internet, your computer is still "seeable" from other computers out side of your network.

Most viruses and hackings come from a very small program (called bots, viruses, malware, spies, etc. ) that someone has downloaded (usually unbeknown to them) that then connects to other computers around the world. If you kill your connection, either by turning off your cable, DSL, WIFI, connection, the world can't see you and you are safe. There are many ways to protect yourself ....

So, in a word ---- Yes :D

Re: Vulnerablity to the Internet

Posted: Wed Dec 24, 2014 5:32 pm
by JPG
How is one 'online' without a browser or some other communicating software active???

Re: Vulnerablity to the Internet

Posted: Wed Dec 24, 2014 10:28 pm
by roy_okc
Dusty, JPG,

Assuming when you say modem that you're referring to a broadband (cable, DSL) modem and not a dial-up modem, then yes, your computer is vulnerable.

Modern operating systems (Windows, Mac, Linux) with typical configurations are doing other things on the network, regardless if you have any browser(s) running or not. One of the first things that happens when your computer is starting is that your computer requests a network address; there was a major bug found a couple months ago that affects Unix (to include Mac and Linux) that was potentially exploitable just in this address assignment system (DHCP). Computers may be checking for OS/application updates in the background, syncing time, etc.

Additionally, they may be listening for new inbound traffic on what are known as ports and most OSes have more ports listening, or open, than a person really needs in the name of convenience. These listening ports can potentially be exploited by attackers (humans, bots, malware, whatever).

To help protect your computer (there is no such thing as a fully safe computer short of entombing it in some impenetrable material), you need to secure it in a number of ways, to include:
- Router connected directly to broadband modem, computers connect to router. This will stop a lot of malicious traffic before it can even make it to your computer.
- Keep your OS and applications patched.
- Disable unneeded services, close unneeded network ports. (This one is tough to determine what is unneeded, even for pros.)
- Ensure you have a good anti-virus program installed, set it to update daily, do full scans at least weekly.
- Ensure you have a software firewall installed.
- Be extremely careful of visiting unknown web sites. Even known sites can get malware via 3rd-party ads.
- Have a separate administrator account that you don't use for routine computer use.
- Use strong passwords everywhere, including for logging on. Do not re-use passwords across multiple sites, especially sensitive sites (banking, e-shopping, etc.). Strong passwords are evolving, a few years ago 8 characters of upper/lower/number/special character was generally considered strong enough; now general recommendations are at least 12 to 14 characters.

There are probably a few things I'm missing, but hopefully this gives you an idea of the complexity of keeping computers secure (and one wrong mistake can let the bad guys in -- just ask Sony about that).

Merry Christmas!
Roy