It shouldn't take an authority figure to announce to the public that a spy agency writes code for Operating Systems.

It is common sense, and virtually everyone should not feel the least bit bothered by this.  I mean, what else would we expect?

Of course they are listening and they have ways to see our online activity.  They always have, and they always will.

And for the NSA to offer the public ways to "protect" our computers only goes to show how ignorant they think the public is and how gullible we might be to believe them.  Private security is a threat to the NSA.  They won't be helping out anyone in ways that would only render incompetent their devices, techniques and technology.

-.- 

Yes, Dr JBHL is/was trying to be helpful.   And i appreciate this.. thank you Doc.   Dr. Guy may also be right that 'spy' (or suvrillance) groupings may be getting into the code writing of OS's.  The OS writers, themsleves ALSO work for/ belong to corporations ('cept linux?)  so, aren't they doing 'commerical' surveliance?  Consider this:  I feel strongly that any entity, company, software seller, etc., that uses info gained from 'watching' what I do, buy, check price of etc., recording same, and marketing that info to others IS doing survaliance  ... just the corporate variety rather then the governmental variety  ... so Dr Guy does have a valid concerrn -  and I am glad he raised it.  Its the same dance, with a different tune.  And the two groups do/will work together given the extent to which (some) corperations have captured control of significant portions of the "government."

All that notwithstanding, I would love to hear (errr read) what my more knowledgable forum (most of you. LOL!) posters have to say about the tools Dr JBHL mentioned when he started this thread.  Like, should I be downloading the info for the links, and implementing the  suggestions to make my PC a little safer?   And i so, which ones?  What are the experieces people have had, who have actually tried to implement what Dr. JBHL Suggests?  Please give us a heads up before we wade in....

The emoticon was meant to convey sarcasm.  I have no idea or opinion on the matter.

Here's where the NSA link took me (toolkit for Windows 7): Microsoft's Technet. A veritable den of ex KGB (now FSB) agents, GRU hangers on and CIA, DIA, NSA fellow travellers. Spy vs. Spy. Here's a screen shot:

Dr guy, sorry, I guess i didn't get it as sarcasm... my bad.  I agreed with what i thought you were saying, and i wanted to be intentional in expressing my thanks to you. (just cause I disgree with you elsewhere doesn't mean I always disagree with you... nor does it mean I can't learn from you, nor be appreciative for what i do learn from you... was my attempt to build on what I perceived as common ground between us).

Doc JBHL, the link you are hoping we all will discuss and explore is  'infrastructure planning n deaign,'  "MS assessment and planning tool,' and 'MS Operations framework.'

Basically, for someone running XP, and not running office 2010, that means that only the IE 8 pack has possible tools to enhance that PC's  security, yes?  Thank you Doc.

And we do appreciate it.  Thanks.

Elana, XP recommendations are the only thing here as to settings and an addendum. There's nothing that could write code on your system. As for your second question regarding Office 2010, I didn't see any recommendations because only operating systems were discussed. I would recommend you keep it updated and when SP1 comes (and it will), download and install it.

Thanks doc for cutting through it all.... "SP1"  

Now a question for PC uses who have recently migrated' to Win 7.  As far a s security goes, do you feel safer than you did running XP?

Welcome, Elana. When you consider an upgrade to 7, you have some homework to do. There is help, though:

http://windows.microsoft.com/en-US/windows7/help/upgrading-from-windows-xp-to-windows-7

The Microsoft Upgrade Advisor: To find out if your machine can handle Windows 7:

http://windows.microsoft.com/en-US/windows/downloads/upgrade-advisor

I'd download and run the adviser first, then go to the first link above and go through all the steps... to prevent pain.

Microsoft Windows 7

As part of a change in our development strategy for security guidance, NSA does not intend to publish a separate guide for Windows 7 beyond what was produced as a cooperative effort between the vendor and the security community. The Special Security – Limited Functionality (SSLF) settings in Microsoft’s Windows 7 Security Guide track closely with the security level historically represented in the NSA guidelines. It is our belief that this guide establishes the latest best practices for securing the product and recommend that traditional customers of our security recommendations use the Microsoft Security Compliance Management Toolkit when securing Windows 7.

Est ce que cela change quelque chose?

Reste t'on dans le même circuit?

Avons nous références d'autres utilisateurs sur le comportement?

___

What is what it changes something?

Stay you we in the same circuit?

Let us have we references of the other users on the behavior?

lecajef, try looking to see if there's an explanation in French before doing anything with your system.

I moved from VISTA to 7 (and do feel safer on that computer).  But not really.  I am still in the process of cleaning a computer that got a Java Trojan.  Even MS gave up on it and told me to reload.

As we see from another of the Doc's articles, malware knows no bounds when it comes to OS - and AV SW cannot protect you from your own actions.

Dr Guy:  oh, I hate trojans, too...  not familiar with the 'java' variety.  I hope you can save all the data, etc., on your PC.  My recovery from the malware required me to reformat my HD, and relaod Win Xp, (about 6 months ago), because of the 'facebook trojan.'  I'm sure yours was a hassle, as well.  Forgive my lack of knowledge, what does "AV SW" refer to? 

Yes, I did learn the lesson that my own actions re: the facebook virus was made so easy because I was not careful.  Were it not for a few very dedicated and very helpful folks on these forums, I would have been lost on how to proceed.

off thread?  I have been reading about ways to partition one's HD, and keep data, programs, etc., in one partition, and keep the boot part, and the web browsing parts in separate partitions.  The idea is, i think, that the malware cannot jump partitions?  Is this an effective strategy to 'contain' malware damage?

Elana, this explains what they are and a bit about them:

http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Trojan%3AJava%2FKoladeiter.A

True.

Elana, this reference from 2009 suggests that it won't protect:

http://www.wilderssecurity.com/archive/index.php/t-260989.html

Bitbox is a new Firefox virtualized browser which should give protection, but the installation, etc. is in German so there are plenty of ways to go wrong in installation. I don't recommend finding it and doing it unless your knowledge of German is very good. In coming versions of Firefox it may become available. One way to protect is by doing all browsing through a 'virtual machine'. Carguy1 does this all the time. I'm not sure how that applies to his email/instant messaging (other routes of infection).

Doc is right - Any malware can jump a partition.  Back in the days of DOS, separate partitions were necessary, but no longer.  And they really do not give you anything.  A second HD helps with performance but the bugs can still (and will if that is what they are after) infect them.

But the one thing a second drive is really good for is data - especially if you have to reload the OS on an OEM that only comes with a "wipe and install" option.  The extra hard drive (with all the data) will not be affected.