Here's my series on Computer Security for Poker Players. I try to cover every route that could lead to hacking. I hope some people learn from this. My hope is that people follow the advice in these videos so we can finally end all of the "zomg I got hacked" and "i got a virus" threads. I will go so far as to say that if you follow my advice the chance of getting infected with malware or hacked is as close to zero as reasonably possible.

These are the cliff's notes to making yourself more secure online. I hope it generates some interesting discussion.

Part 1 - Password Policy

An introduction to how to maintain a proper password policy with Keepass Password Safe. Also covers securing Gmail connection and master passwords in Mozilla Firefox.

• Keepass Password Safe
• Mozilla Firefox

Part 2 - Password Policy Cont.

A continuation of Part 1. More in-depth explanation of Firefox master passwords and Keepass's security features.

Part 3 - Online Behavior

Covers pitfalls that some users my run into while browsing the web. Includes a NoScript tutorial.

• NoScript

Part 4 - Online Behavior Cont.

How to avoid junk software. How to find high quality software online.

• http://****************/
• http://www.osalt.com/

Part 5 - Disk Encryption

What disk encryption is. How it can protect you. And how to encrypt a system drive with TrueCrypt.

• Truecrypt

Part 6 - Disk Encryption Cont.

Short addendum to Part 5 emphasizing physical security.

Part 7 - Network Security

How to have a properly secured home network.

• Tomato Firmware
• Untangle
• Linksys WRT54GL

Part 8 - Security Software

Overview of anti-virus and personal firewalls. Installation of Avira Anti-Virus

• Avira AntiVir

Part 9 - Security Software Cont.

Part 8 continued with a more detailed explanation regarding my stance on personal firewalls.

Part 10 - Application Security

How to keep software updated with Secunia PSI.

• Secunia PSI

Here is my other thread where I show you how to install, configure, and tweak Windows XP.

http://forumserver.twoplustwo.com/48...indows-597610/

nh funkyworms.

Nice work! I agree with pretty much everything in your videos. Some of my personal thoughts, tips and comments:

-Keepass; You can make it more secure in case you do happen to have a keylogger on your system. This setting makes it impossible for keyloggers to read your password etc while it's in the clipboard: "Tools -> Options -> Memory -> Clipboard behaviour: Enhanced". Although, this doesn't protect against newer types of malware that grabs your password once it is entered in a password field. The malware has to be targeted to your application though (for example Internet Explorer, Firefox etc) for it to be able to grab that password. So you're probably much more safe pasting a password into your poker client than into Internet Explorer if your system is infected.

-3rd party Firewalls: I've come to the same conclusion as you here, after using Comodo Firewall for some time and others before that. They are often the source of software problems and Comodo really gave me "popup fatigue" in the end, making computing somewhat of a pain. I only use the built in windows firewall now and have never been happier.

-I agree that an Antivirus program isn't vital to keep your computer secure, but that requires that know your security well. So unless you know this is the case AND that an antivirus program would slow down your system significantly or cause conflicts, there's no real reason to avoid having an AV program. I've had Avira some time now and never had a problem with it, I don't notice that it's there. There are several very good free ones nowadays (Avira, Microsoft Security Essentials, Avast).

-Secunia PSI: This is just a great software that you should have if you're serious about keeping your system secure.

-A couple of the topics may be for advanced users only I think. I'm thinking of the usage of TrueCrypt and Untagle.

-Don't use Adobe's PDF Reader (or use it, but disable javascript in it), as it's one of the most vulnerable softwares lately. Foxit Reader or Sumatra are good alternatives.

-A little tip for Windows 7 users is to put your UAC setting at it's highest. More secure than the default setting and doesn't generate that many more popups for most people.

Again, great job putting this together!

should be a sticky?

Great post.

I am in the FDE section at the moment. You mentioned that Truecrypt doesnt work with Win 7 RC. Is this for system partition encryption specifically? Because I have been using it on non-system drives without a problem.

Yeah it should only be an issue for system encryption. Non-system volumes should work fine.

Untangle is certainly for advanced users only, but I'm not sure about Truecrypt. I think having an encrypted system partition is essential for poker computer security and privacy. Hopefully even novice users are able to follow my step-by-step instructions.
I agree. I covered this in my previous series but it should probably be said again.

Just finished the last of the videos. Awesome work, thanks so much for putting the time in.

I have two questions for you.

1. For a user of win7 pro who cant use truecrypt and doesnt have bitlocker, what would you recommend in terms of FDE? Wait for truecrypt to be updated?

2. Can you recommend a source to get info on tweaking windows 7? I do a decent job but I am sure there is more I could do.

Thanks again.

plz marry me and have my babby

1. I doubt that Truecrypt will ever be updated to support Win7 RC since the RC will expire soon. DiskCryptor is a truly free and open source (GPL'd) whole disk encryption application. It's not as mature as Truecrypt so that's why I didn't use it. It should work with Win7 RC, though.

2. Check out Black Viper's Win7 Super Tweaks for solid recommendations. Many of the things I do to tweak Windows XP also apply to Win7. I started making a Win7 series but it was almost all repetitive stuff so I put it off.

Thanks, I didn't mean win7 RC, I meant the final version. Will truecrypt be updated to support that soon do you think?

Thanks for the recommendation for the tweaks page too.

Truecrypt already supports the final version of Win7.

I would but I'm looking for a mate with a smaller than average head. Since I, too, have a large cranium I fear our child would be at a significant disadvantage in life. Picture an orange on a toothpick if you need a visual.

So how would I know if my router has NAT?

Also, is the Truecrypt really just to keep your data safe if someone steals your computer? I am not catching on to exactly what else it does.

Pretty much every router released today has NAT.

It encrypts the entire contents of your hard drive and therefore will prevent someone from booting your computer without your permission. So this applies to a thief who stole your computer, a nosy roommate, spouse, government agency, etc.

thanks funkyworms. its good to know a few weeks after pushing security stuff out there and "spamming" all the mods with PM's some more work other than that reallly dated FAQ has been done. I dont suppose you thought of doing this because of all the noise ive been making and all the stuff ive been asking mods to put up in the mods forums? nice contribution.

id like to add that talented hackers with a windows IP address can hack you remotely even with a firewall. ive seen this happen first hand to a fully patched vista box with all the security software in the FAQ. ive done xtensive research on this and concluded that all the people hanging around in the msnl irc channel are begging to be enslaved waving their IP addresses around like that. its about time pokerstars and the major players start porting their software to linux or even openbsd (an os which has only had 2 remote exploits in the last 10 years iirc) for the suepr paranoid (those that are in posession of the facts)

good work please add this to the FAQ. the HSNL mods have been wise enough to add a sticky to their forum about computer security. hopefully all the strat forums can do this.

Done

Running Holdem Manager properly requires that you have UAC completely off (http://www.holdemmanager.net/faq/afmmain.aspx). Does anyone know if that is just for the installation process or must it always remain off when using HEM?

Another excellent post by funkyworms, thank you.

hacked how? details please. i think you are just spreading FUD. share your "xtensive research" or stop making people worry.

I have a netgear WGR614 v.7 and am having trouble finding a third party firmware because apparently it is not linux based. Any suggestions?

funkyworms, I haven't had time to watch your vids, but if you haven't mentioned them, it might be worth doing some videos on things like HIPS and sandboxie.

If you're happy with it, keep it. It's probably fine from a security standpoint, just keep the firmware updated.

But I am almost positive it won't be as stable as a Tomato-based router (from my experience).

I would just like to say that this is not true.

I could set a totally unpatched Windows box behind a firewall and not even the most skilled hacker could get to it. It takes much more than knowing an IP address to hack someone remotely. A user must have some port open on their firewall or he must access some remote resource to enable himself to be hacked.

For example, I could post my IP address and there is no chance of someone hacking me with only that info. I don't post it because there are other things that could happen, such as someone launching a DDoS attack against me. Though such an attack would severely inconvenience me, it would not compromise any of my sensitive data or make it more prone for me to get hacked.

Please let it be known that I do not take your claims lightly. If you have some kind of proof that a remote user can hack a completely stealthed iptables implementation then I would like to see the evidence. Feel free to PM me with any info you have. Otherwise I see these as dubious claims.

SilentNoise falls pretty squarely into the Kook category Funky...

I wasn't aware of Secunia PSI, looks pretty solid.