More of this Feature • Part 1: Firewalls • Part 2: Trust No One • Part 3: Filter and Patch

Related Resources • Infected Attachments • Email Help Center • Free Protection

From Other Guides • Web Security

Elsewhere on the Web • Interhack Corp. • Shavlik Tech.

Wouldn't it be great if you could buy a computer, get it hooked up, and jump right on the Internet without any fear whatsoever? Thousands of people do just that every single day, never realizing the treacherous terrain in which they tread. Some might argue that by default (that means right out of the box) the Windows™ operating system is akin to walking alone through the worst part of town decked out in jewels. While it's probably not that bad, there are certain pitfalls you should learn to avoid and steps you should take to lessen your vulnerability.

Use a Firewall
Surfing on the Internet without a firewall is like leaving your front door wide open while you mow the grass in the backyard. Anyone can come and go without your ever knowing it. In the case of computers it's not always what they take but what they leave behind that you need to worry about most. Remote access Trojans (RATs) are placed on the systems of unsuspecting users, providing easy access to your computer whenever it's hooked up to the Internet. Files can be read at will (and deleted), passwords and banking info can be stolen, and your computer can even become an unwitting accomplice in attacks against others. And this is just a sampling of what an unscrupulous and uninvited RAT can do.

A good firewall protects you by blocking any unauthorized attempt to gain access to (or from) your computer. Two excellent products are Zone Alarm and Tiny Personal Firewall - both free for home use. For the novice user, Zone Alarm is the easiest to use. If you think you already have a good firewall in place, visit Steve Gibson's ShieldsUp! for an eye-opening test.

Make Windows™ Tell-All
Another out-of-the-box shortcoming involves file extensions. Briefly, a file extension is a suffix given to a filename that describes the type of file it is. The Windows™ operating system hides file extension viewing unless you specifically tell it otherwise. If you don't enable file extension viewing, you will be left more vulnerable to virus distributors who use crafty naming techniques to trick users into opening infected files. The Infected Attachment Center provides instructions for enabling file extension viewing.