Two Plus Two Publishing LLC Two Plus Two Publishing LLC
 

Go Back   Two Plus Two Poker Forums > >

Notices

Computer Technical Help Post your questions about computer hardware and software and configuring same here.

Reply
 
Thread Tools Display Modes
Old 12-16-2009, 01:18 PM   #1
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Computer Security for Poker Players (videos)

Here's my series on Computer Security for Poker Players. I try to cover every route that could lead to hacking. I hope some people learn from this. My hope is that people follow the advice in these videos so we can finally end all of the "zomg I got hacked" and "i got a virus" threads. I will go so far as to say that if you follow my advice the chance of getting infected with malware or hacked is as close to zero as reasonably possible.

These are the cliff's notes to making yourself more secure online. I hope it generates some interesting discussion.

Part 1 - Password Policy
An introduction to how to maintain a proper password policy with Keepass Password Safe. Also covers securing Gmail connection and master passwords in Mozilla Firefox.
Part 2 - Password Policy Cont.
A continuation of Part 1. More in-depth explanation of Firefox master passwords and Keepass's security features.
Part 3 - Online Behavior
Covers pitfalls that some users my run into while browsing the web. Includes a NoScript tutorial.
Part 4 - Online Behavior Cont.
How to avoid junk software. How to find high quality software online.
Part 5 - Disk Encryption
What disk encryption is. How it can protect you. And how to encrypt a system drive with TrueCrypt.
Part 6 - Disk Encryption Cont.
Short addendum to Part 5 emphasizing physical security.
Part 7 - Network Security
How to have a properly secured home network.
Part 8 - Security Software
Overview of anti-virus and personal firewalls. Installation of Avira Anti-Virus
Part 9 - Security Software Cont.
Part 8 continued with a more detailed explanation regarding my stance on personal firewalls.
Part 10 - Application Security
How to keep software updated with Secunia PSI.

Here is my other thread where I show you how to install, configure, and tweak Windows XP.

http://forumserver.twoplustwo.com/48...indows-597610/
funkyworms is offline   Reply With Quote
Old 12-16-2009, 03:43 PM   #2
LirvA
self-banned
 
LirvA's Avatar
 
Join Date: Sep 2007
Location: Free Manning, Hammond, and Brown.
Posts: 42,857
Re: Computer Security for Poker Players (videos)

nh funkyworms.
LirvA is offline   Reply With Quote
Old 12-18-2009, 09:16 AM   #3
Solid_p
adept
 
Solid_p's Avatar
 
Join Date: Mar 2005
Location: location, location...
Posts: 828
Re: Computer Security for Poker Players (videos)

Nice work! I agree with pretty much everything in your videos. Some of my personal thoughts, tips and comments:

-Keepass; You can make it more secure in case you do happen to have a keylogger on your system. This setting makes it impossible for keyloggers to read your password etc while it's in the clipboard: "Tools -> Options -> Memory -> Clipboard behaviour: Enhanced". Although, this doesn't protect against newer types of malware that grabs your password once it is entered in a password field. The malware has to be targeted to your application though (for example Internet Explorer, Firefox etc) for it to be able to grab that password. So you're probably much more safe pasting a password into your poker client than into Internet Explorer if your system is infected.

-3rd party Firewalls: I've come to the same conclusion as you here, after using Comodo Firewall for some time and others before that. They are often the source of software problems and Comodo really gave me "popup fatigue" in the end, making computing somewhat of a pain. I only use the built in windows firewall now and have never been happier.

-I agree that an Antivirus program isn't vital to keep your computer secure, but that requires that know your security well. So unless you know this is the case AND that an antivirus program would slow down your system significantly or cause conflicts, there's no real reason to avoid having an AV program. I've had Avira some time now and never had a problem with it, I don't notice that it's there. There are several very good free ones nowadays (Avira, Microsoft Security Essentials, Avast).

-Secunia PSI: This is just a great software that you should have if you're serious about keeping your system secure.

-A couple of the topics may be for advanced users only I think. I'm thinking of the usage of TrueCrypt and Untagle.

-Don't use Adobe's PDF Reader (or use it, but disable javascript in it), as it's one of the most vulnerable softwares lately. Foxit Reader or Sumatra are good alternatives.

-A little tip for Windows 7 users is to put your UAC setting at it's highest. More secure than the default setting and doesn't generate that many more popups for most people.

Again, great job putting this together!

Last edited by Solid_p; 12-18-2009 at 09:26 AM.
Solid_p is offline   Reply With Quote
Old 12-18-2009, 09:40 AM   #4
KaizenK
old hand
 
KaizenK's Avatar
 
Join Date: Nov 2009
Posts: 1,743
Re: Computer Security for Poker Players (videos)

should be a sticky?
KaizenK is offline   Reply With Quote
Old 12-18-2009, 01:53 PM   #5
aussieasher
journeyman
 
Join Date: Sep 2009
Posts: 293
Re: Computer Security for Poker Players (videos)

Great post.

I am in the FDE section at the moment. You mentioned that Truecrypt doesnt work with Win 7 RC. Is this for system partition encryption specifically? Because I have been using it on non-system drives without a problem.
aussieasher is offline   Reply With Quote
Old 12-18-2009, 02:37 PM   #6
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by aussieasher View Post
Great post.

I am in the FDE section at the moment. You mentioned that Truecrypt doesnt work with Win 7 RC. Is this for system partition encryption specifically? Because I have been using it on non-system drives without a problem.
Yeah it should only be an issue for system encryption. Non-system volumes should work fine.
funkyworms is offline   Reply With Quote
Old 12-18-2009, 02:48 PM   #7
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by Solid_p View Post
-A couple of the topics may be for advanced users only I think. I'm thinking of the usage of TrueCrypt and Untagle.
Untangle is certainly for advanced users only, but I'm not sure about Truecrypt. I think having an encrypted system partition is essential for poker computer security and privacy. Hopefully even novice users are able to follow my step-by-step instructions.
Quote:
-Don't use Adobe's PDF Reader (or use it, but disable javascript in it), as it's one of the most vulnerable softwares lately. Foxit Reader or Sumatra are good alternatives.
I agree. I covered this in my previous series but it should probably be said again.
funkyworms is offline   Reply With Quote
Old 12-18-2009, 03:39 PM   #8
aussieasher
journeyman
 
Join Date: Sep 2009
Posts: 293
Re: Computer Security for Poker Players (videos)

Just finished the last of the videos. Awesome work, thanks so much for putting the time in.

I have two questions for you.

1. For a user of win7 pro who cant use truecrypt and doesnt have bitlocker, what would you recommend in terms of FDE? Wait for truecrypt to be updated?

2. Can you recommend a source to get info on tweaking windows 7? I do a decent job but I am sure there is more I could do.

Thanks again.
aussieasher is offline   Reply With Quote
Old 12-18-2009, 03:45 PM   #9
Freakin
bacon wannabe
 
Freakin's Avatar
 
Join Date: Sep 2004
Posts: 17,153
Re: Computer Security for Poker Players (videos)

plz marry me and have my babby
Freakin is offline   Reply With Quote
Old 12-18-2009, 03:58 PM   #10
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by aussieasher View Post
Just finished the last of the videos. Awesome work, thanks so much for putting the time in.

I have two questions for you.

1. For a user of win7 pro who cant use truecrypt and doesnt have bitlocker, what would you recommend in terms of FDE? Wait for truecrypt to be updated?

2. Can you recommend a source to get info on tweaking windows 7? I do a decent job but I am sure there is more I could do.

Thanks again.
1. I doubt that Truecrypt will ever be updated to support Win7 RC since the RC will expire soon. DiskCryptor is a truly free and open source (GPL'd) whole disk encryption application. It's not as mature as Truecrypt so that's why I didn't use it. It should work with Win7 RC, though.

2. Check out Black Viper's Win7 Super Tweaks for solid recommendations. Many of the things I do to tweak Windows XP also apply to Win7. I started making a Win7 series but it was almost all repetitive stuff so I put it off.
funkyworms is offline   Reply With Quote
Old 12-18-2009, 04:05 PM   #11
aussieasher
journeyman
 
Join Date: Sep 2009
Posts: 293
Re: Computer Security for Poker Players (videos)

Thanks, I didn't mean win7 RC, I meant the final version. Will truecrypt be updated to support that soon do you think?

Thanks for the recommendation for the tweaks page too.
aussieasher is offline   Reply With Quote
Old 12-18-2009, 04:08 PM   #12
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by aussieasher View Post
Thanks, I didn't mean win7 RC, I meant the final version. Will truecrypt be updated to support that soon do you think?

Thanks for the recommendation for the tweaks page too.
Truecrypt already supports the final version of Win7.
funkyworms is offline   Reply With Quote
Old 12-18-2009, 04:18 PM   #13
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by Freakin View Post
plz marry me and have my babby
I would but I'm looking for a mate with a smaller than average head. Since I, too, have a large cranium I fear our child would be at a significant disadvantage in life. Picture an orange on a toothpick if you need a visual.
funkyworms is offline   Reply With Quote
Old 12-18-2009, 07:52 PM   #14
Jibninjas
Stuck in a While loop
 
Jibninjas's Avatar
 
Join Date: Jul 2008
Location: Bluff-Calling
Posts: 11,502
Re: Computer Security for Poker Players (videos)

So how would I know if my router has NAT?

Also, is the Truecrypt really just to keep your data safe if someone steals your computer? I am not catching on to exactly what else it does.
Jibninjas is offline   Reply With Quote
Old 12-18-2009, 08:08 PM   #15
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by Jibninjas View Post
So how would I know if my router has NAT?
Pretty much every router released today has NAT.

Quote:
Also, is the Truecrypt really just to keep your data safe if someone steals your computer? I am not catching on to exactly what else it does.
It encrypts the entire contents of your hard drive and therefore will prevent someone from booting your computer without your permission. So this applies to a thief who stole your computer, a nosy roommate, spouse, government agency, etc.
funkyworms is offline   Reply With Quote
Old 12-19-2009, 12:26 AM   #16
SilentNoise
banned
 
Join Date: Mar 2006
Location: slavery
Posts: 1,992
Re: Computer Security for Poker Players (videos)

thanks funkyworms. its good to know a few weeks after pushing security stuff out there and "spamming" all the mods with PM's some more work other than that reallly dated FAQ has been done. I dont suppose you thought of doing this because of all the noise ive been making and all the stuff ive been asking mods to put up in the mods forums? nice contribution.

id like to add that talented hackers with a windows IP address can hack you remotely even with a firewall. ive seen this happen first hand to a fully patched vista box with all the security software in the FAQ. ive done xtensive research on this and concluded that all the people hanging around in the msnl irc channel are begging to be enslaved waving their IP addresses around like that. its about time pokerstars and the major players start porting their software to linux or even openbsd (an os which has only had 2 remote exploits in the last 10 years iirc) for the suepr paranoid (those that are in posession of the facts)

good work please add this to the FAQ. the HSNL mods have been wise enough to add a sticky to their forum about computer security. hopefully all the strat forums can do this.
SilentNoise is offline   Reply With Quote
Old 12-19-2009, 12:09 PM   #17
kerowo
lolcat
 
kerowo's Avatar
 
Join Date: Nov 2005
Posts: 32,251
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by KaizenK View Post
should be a sticky?
Done
kerowo is offline   Reply With Quote
Old 12-19-2009, 12:45 PM   #18
dmkai3
veteran
 
dmkai3's Avatar
 
Join Date: Feb 2008
Posts: 2,613
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by Solid_p View Post
-A little tip for Windows 7 users is to put your UAC setting at it's highest. More secure than the default setting and doesn't generate that many more popups for most people.
Running Holdem Manager properly requires that you have UAC completely off (http://www.holdemmanager.net/faq/afmmain.aspx). Does anyone know if that is just for the installation process or must it always remain off when using HEM?

Another excellent post by funkyworms, thank you.

Last edited by dmkai3; 12-19-2009 at 01:08 PM.
dmkai3 is offline   Reply With Quote
Old 12-20-2009, 06:56 AM   #19
greg nice
Carpal \'Tunnel
 
greg nice's Avatar
 
Join Date: Aug 2004
Posts: 9,107
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by SilentNoise View Post

id like to add that talented hackers with a windows IP address can hack you remotely even with a firewall. ive seen this happen first hand to a fully patched vista box with all the security software in the FAQ. ive done xtensive research on this and concluded that all the people hanging around in the msnl irc channel are begging to be enslaved waving their IP addresses around like that.
hacked how? details please. i think you are just spreading FUD. share your "xtensive research" or stop making people worry.
greg nice is offline   Reply With Quote
Old 12-20-2009, 03:48 PM   #20
Jibninjas
Stuck in a While loop
 
Jibninjas's Avatar
 
Join Date: Jul 2008
Location: Bluff-Calling
Posts: 11,502
Re: Computer Security for Poker Players (videos)

I have a netgear WGR614 v.7 and am having trouble finding a third party firmware because apparently it is not linux based. Any suggestions?
Jibninjas is offline   Reply With Quote
Old 12-20-2009, 11:21 PM   #21
LirvA
self-banned
 
LirvA's Avatar
 
Join Date: Sep 2007
Location: Free Manning, Hammond, and Brown.
Posts: 42,857
Re: Computer Security for Poker Players (videos)

funkyworms, I haven't had time to watch your vids, but if you haven't mentioned them, it might be worth doing some videos on things like HIPS and sandboxie.
LirvA is offline   Reply With Quote
Old 12-21-2009, 12:24 AM   #22
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by Jibninjas View Post
I have a netgear WGR614 v.7 and am having trouble finding a third party firmware because apparently it is not linux based. Any suggestions?
If you're happy with it, keep it. It's probably fine from a security standpoint, just keep the firmware updated.

But I am almost positive it won't be as stable as a Tomato-based router (from my experience).
funkyworms is offline   Reply With Quote
Old 12-21-2009, 02:31 PM   #23
funkyworms
Pooh-Bah
 
funkyworms's Avatar
 
Join Date: Jun 2004
Posts: 4,249
Re: Computer Security for Poker Players (videos)

Quote:
Originally Posted by SilentNoise View Post
id like to add that talented hackers with a windows IP address can hack you remotely even with a firewall. ive seen this happen first hand to a fully patched vista box with all the security software in the FAQ.
I would just like to say that this is not true.

I could set a totally unpatched Windows box behind a firewall and not even the most skilled hacker could get to it. It takes much more than knowing an IP address to hack someone remotely. A user must have some port open on their firewall or he must access some remote resource to enable himself to be hacked.

For example, I could post my IP address and there is no chance of someone hacking me with only that info. I don't post it because there are other things that could happen, such as someone launching a DDoS attack against me. Though such an attack would severely inconvenience me, it would not compromise any of my sensitive data or make it more prone for me to get hacked.

Please let it be known that I do not take your claims lightly. If you have some kind of proof that a remote user can hack a completely stealthed iptables implementation then I would like to see the evidence. Feel free to PM me with any info you have. Otherwise I see these as dubious claims.
funkyworms is offline   Reply With Quote
Old 12-22-2009, 10:58 AM   #24
kerowo
lolcat
 
kerowo's Avatar
 
Join Date: Nov 2005
Posts: 32,251
Re: Computer Security for Poker Players (videos)

SilentNoise falls pretty squarely into the Kook category Funky...
kerowo is offline   Reply With Quote
Old 12-25-2009, 11:02 AM   #25
LirvA
self-banned
 
LirvA's Avatar
 
Join Date: Sep 2007
Location: Free Manning, Hammond, and Brown.
Posts: 42,857
Re: Computer Security for Poker Players (videos)

I wasn't aware of Secunia PSI, looks pretty solid.
LirvA is offline   Reply With Quote

Reply
      

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Forum Jump


All times are GMT -4. The time now is 06:20 AM.


Powered by vBulletin®
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
Search Engine Optimisation provided by DragonByte SEO v2.0.33 (Pro) - vBulletin Mods & Addons Copyright © 2017 DragonByte Technologies Ltd.
Copyright ę 2008-2010, Two Plus Two Interactive
 
 
Poker Players - Streaming Live Online