Temari, temarikai Internet Safety

Online / Internet Safety

    The Internet and WWW has become a most wonderful tool for almost all aspects of life, but unfortunately there are many people that also abuse the Internet with malicious activity that target innocent people. So, with the web have also come some safety practices that you need to be aware of and adhere to. Hopefully the content of this page is not new news to you. . Many private webmasters voluntarily make it a point to provide internet safety information and keep it as up to date as possible - TemariKai is one of those sites committed to trying to help.

       The Internet is composed of several sections - the two most common that most people use are email and the World Wide Web (WWW). There is also another small process called File Transfer Protocol. The latter - usually abbreviated FTP, is how computer files move around the web. Unless you are a web master you probably don't have a lot to do with this. The one exception is when you download computer programs (ONLY from validated websites), for example when you download Microsoft Internet Explorer or Mozilla Firefox/Thunderbird, or program updates. When you do this you are using FTP through your web browser. You can also FTP with other little special programs. IF you use FTP, or accept any download of software through your web browser you need to be sure that the site you are downloading from provides a security certificate. It also helps if it comes from a secure server. You can determine if you are using a secure server or not by looking at the http://www address. A secure server will have an "s" included as in https://www. Many websites are now using secure servers for things like signon information, and ALL websites that manage financial transactions use them. However it is also YOUR responsibility to be sure that the websites you enter or give personal or financial information to are using secure servers. In addition to your being able to see this in the web address as explained, most browsers also give you an indicator (like an open padlock for an UNsecure site and a closed padlock for a secure one).

        The major rule to remember with using email is to NEVER open an attachment (especially if the file extension is .exe or .dll; actually any file extension other than a digital image .jpg is something to avoid opening no matter how much your curiosity is killing you) that is hooked onto an email that you have received unless you know FOR SURE what the file is and what it is supposed to do, as well as who sent it to you. Even the "who sent it" can be a big weakness that catches many people since a lot of "bugs" are disguised as some sort of fun or entertaining program or file, coming from someone they think they know. Many times viruses or worms can silently be in someone's computer and they are sending it out without knowing it, or the virus sets itself up to make it look like the email is coming from someone you know.

        Basic rules to follow are to 1) use the "preview" option of viewing email content within your email program (this option is available in most all email client programs) since, by not fully opening the email itself, you set up an additional layer or protection; 2) do not open files that come attached to an email unless you have determined with certainty what it is and who sent it to you. Most often a virus or worm will be in a file that has a format of something like exe or dll (the file extension, the last three letters after the dot in the file name). If you must open an attachment, run your virus scanning program on that file (check the user help in your virus program). Even if you get an email from someone you know, if you were not expecting an attached file with it or the person sending the note to you does not say what the file is (like, "Hi Ginny, here is the latest photo of my temari" - where I would know that there should be a jpg or gif file hooked on there) - then check with them BEFORE you open or do anything with the file. If they cannot confirm what they sent you then delete the email without opening it or the attachment.

        Worms are somewhat less dangerous than a virus, in that a worm is sort of mischievous, getting in and cruising your email address book and then sending out many emails using that information. They are usually targeted at some major company with the goal of "crashing their server" as in deluging so many emails to them that they can't handle it. In general however a worm does not damage your own computer. Viruses are something different though - big different. Viruses can and will damage the operating system software of your computer to the point of rendering it useless, so it is imperative to protect yourself. You cannot get a virus or worm from an email itself but, rather a malicious attachment on one.

       The other major problem the web community is something called "phishing". Phishing is when you get an email from a business or place you have dealings with, usually very official looking with all the proper logos and right sounding language, telling you that for some reason your account with them is in question and about to be closed unless you click on the links in the email and "verify" your information - such as demographics and credit card or bank info. In fact, these are bogus emails very artfully created in order to sucker you into identity theft. They usually carry bogus copies of the company logo, slogans, etc and look for all the world like they came from legit sources. But - they go to bogus websites even though it may look official when in reality they are disguised sites designed only to "phish" out information and catch a sucker on the hook. Almost all major companies have been abused by "phishers" - eBay, PayPal, Amazon, most major banks and financial services, even the IRS.....   and the actuality is that NO legit company ever sends out emails asking for your personal and private information to be submitted online by telling you to go to thus and such website (which is never the real company website). Remember, no respectable business online does this. NONE. Do not fall for the "your account is being terminated immediately if you don't reply now" bit - it isn't going to happen (although you might terminate a lot more if you click that link and hand over your info). IF you for some reason still feel compelled to confirm your account information, DO NOT do it online. Call the company in question and I'll guarantee you that you will be told you are being phished; any time you need to manage your account information you do it ONLY at your initiative by logging on to the site's secure server (never through a secondary link) OR via phone or in person. This has become such a common practice that most major web businesses have a special email address set up for you to report phishing to them - for example, if you get one of these bogus emails made to look like it's from eBay, eBay asks that you forward the whole note intact with no changes to it to them at spoof@ebay.com.

       Something similar to phishing - but not going after your personal information directly - is when bogus emails are sent out set up to look like "official" emails from places like Microsoft or other major software companies, telling you to "download this patch immediately" - and there will be an attached "patch" file. Again, these are bogus emails that are trying to bait you, and it's not a patch. It is rather a devil program that at best can infiltrate your personal files and steal your personal info, at worst it will enable the host computer to seize control of your computer. Be sure that you are keeping up with software updates and patches for your operating system (Windows) and other programs by going to the official company sites and downloading any software patches or updates from their secure server. Software manufacturers may indeed send you email notices about updating your files, but they will refer you to the secure corporate server and usually require you to log in as a registered user to obtain official updates. If in doubt - don't.

       Your computer is vulnerable to possible problems only when you are actively connected to the Internet, but with broadband internet connections now being common, come risks too. Faster Internet connections not only make it easier for you to send and receive things faster but also make it easier for a bad-doer to find its way in. A personal firewall is now mandatory, which is a program running in the background on your computer that helps protect you. Basically it is a filter that looks at all the stuff coming into your computer from the Internet. It will only accept incoming information from places that you tell it are ok. When you install a firewall there is a short learning period for it, so that you tell it that it's ok to accept information from the places you usually go to on the web. When a new one pops up, the firewall will ask you if it's ok to accept stuff from there. For those using Windows XP, there is a reasonable firewall included - by all means turn it on (check out the user instructions). If you have a wireless home network set up, there usually is a firewall included with the network hub or router which you should also have turned on. Again, check your user manual for details on this. You can also purchase personal firewall programs as part of Internet security packages or on their own; they are rather inexpensive and certainly worth the investment. Bear in mind that firewalls are not like virus scanners; Virus programs look for very specific files that they have been told to look for. Firewalls prevent your computer from downloading all information from a website unless you have told the firewall it's ok to do so.

       A very simple step you can take is to just turn off your computer when you are not using it (turn it off - not just put it in standby or hibernation). This not only protects your computer, but it also is a big help to the energy consumption and environment concerns (if you are in the habit of never turning your computer off, or leaving it on all day even when you are not using it - you will most likely see a difference in your electric bill if you adjust your habits, and this includes your printer and related peripherals). (the old "rules" of it's better to leave a computer on than turn it off an on no longer apply, seriously). If you don't turn off your computer, at least switch your modem to standby (if you are on a highspeed cable modem for access it is essentially is "always on - always connected"). This stops the Internet signal from going into your computer when you are not using it. If you are using a wireless router, enable the security features included in the router such as securing your network with a password, and encrypting your signal. These are all easy to manage - and those online help files and instruction booklets really are easy to follow.

       About virus scanning programs - These are programs that you buy initially buy then must also maintain, since the program developer will constantly be issuing updates to it that will look at every file on your computer on a regular basis, searching for specific viruses or worms. Viruses are always changing and new ones being found. The updates are called virus signature files; you get these updates by subscribing to the company when you buy the program. One does not work without the other; you must also be sure that you are downloading the current signatures on a regular basis and installing them to the virus scanner program. Usually the program will do this automatically - but it is still your responsibility to be sure that you have set it up to do that. It doesn't hurt to check that it is happening as you think it is, either. When a warning is issued for a new virus or worm, usually the company has already written the updated signatures to combat it and the best thing to do is check that, manually download the update and install it - and then tell the program to scan your computer as well. Used properly anitvirus programs are extremely effective, but it is not just a "put it in and forget about it" thing.

       Microsoft programs are particularly vulnerable to viruses - first of all because the vast majority of computers use Microsoft operating software, and also because Microsoft is also known for having booboos that lead to security holes in their operating systems as well as some other programs. Windows, Outlook, Outlook Express and Internet Explorer that are prime targets for worms and viruses - many times these nasties will be written specifically to target a weak spot in a Microsoft program since it will affect so so many computers (granted MS has been working on doing better but....). You can further protect yourself by opting to use alternate internet programs such as Mozilla Firefox/Thunderbird (free for the taking) - these are the modern versions of the "old" Netscape and both of these programs are receiving very good support in the journals for providing much better online security than Microsoft Internet Explorer/Outlook. A growing number of people are changing to them. They are easy to learn and very similar to MS programs in that regard. Other client programs are out there too. This is not foolproof but it can help. Someone is not going to waste time writing a worm or virus program that targets solid, secure software if they can score a big hit elsewhere. When security problems are found, Microsoft issues a software patch - a file that you download from the Microsoft site and it installs itself in the programs to plug the leaks. It is important that you either allow Windows to check the Microsoft site regularly for updates or you do it manually and download and install security patches. Apple users in general are in good shape - Mac people need to be careful but usually don't need as much protection as Microsoft users do.

       Another problem popping up is little "innocent" programs that get placed on your computer to send back info to the "mothership" so as to speak about you - consumer preference type info. These are adware or spyware. Usually harmless to you, it never the less is an invasion of privacy and done without your consent. Controlling how cookies are set in your browser can help some, but it also helps to consider one of the free "spyware" as these programs are known as removers; two of the best are Spybot   http://www.safer-networking.org/ and Ad-aware http://www.lavasoftusa.com/ (the free version). Both have great track records, are kept up to date and are widely used. You can download them, run them and just let them clean by their default options. Both complement each other and do a great job. (with thanks to Terry B of the TT list for this info). Many Internet security program packages include adware and spyware protection as well. Just as in virus scanning - be sure that you keep the signatures up to date and run scans on your computer's hard drive on a regular and frequent basis (at least once a month but in today's world, once a week is more appropriate).

       As tempting as it may be, it's also a good idea to not store your personal information on your computer - things like credit card or banking information; social security number, etc. If something should happened to get through all the protection you set up, they will still come up empty handed if there isn't anything there of value. This is also goos protection against a laptop being stolen. If you do store personal information, be sure that the files are encrypted, and even better use an information management program designed for these things. Even with all the "scare stuff" - shopping online is indeed safer that telephone or postal mail in today's age. For additional safety, consider getting one card that you use only for online purchasing. This way should there be a problem (although it is highly unlikely) it will only be this account that you need to take care of. As long as you are using online ordering sites with secure servers (you can be sure by the address as mentioned above as well as all browsers will indicate that you are on a secure server with a little padlock or other indicator that things are secure) there is no more inherent risk of shopping online than anywhere else these days. NEVER give your credit card or banking information to anyone in an email. Always be sure that you are on a legit, secure server.

       Consider too using several email identities - not as crazy as you think. Most Internet accounts offer more than on email box; if you are a family you may not have as many "extras" as others of us but it may also be worthwhile to add a few on to your account. Use one for strictly personal communications - and be very careful who you give that address to. Use another for online discussion groups, a third for "web log ins" and mailing lists - those websites where you create an account so that your preferences can be saved (there is nothing wrong with this other than your email address becomes fair game to a lot of people, just like the old mail order catalog share-the-list deal). This way only one of your emails will be as subject to spamming from it being given or sold to mass mailers. You can also be quite selective on your cookie settings - cookies are little files that a site creates that stays on your computer to help identify you and your references. Many sites will not work without them but you do have the option to turn them off or highly control them. And, any site that you register on should also give you the option of "opting out" from having your email or personal information shared. You may have to look carefully in the account options to find it, but it should be there. Most email client programs now have spam blocking or filtering options - and web browsers have pop-up ad blockers. There are also third-party programs you can get to help with these also.

       One more thing to be covered is the practice of forwarding "funny", "warning", "inspirational", or other email content. First of all these so called "entertaining" blurbs can be carrying viruses or worms - so when you forward them to your friends you may be giving them a lot more than a "laugh". Others border on the illegal practice of chain-letters. True chain letters (which are indeed illegal) require or demand monies to be sent; the "innocent" ones will have you believing that the world is going to come to an end if you don't send it on to fifty of your closest friends. No matter what the "cause" may be, how sincere it may seem - please don't. Each time you do that you are clogging up the works of all the inboxes that note has been in before you... and, if there is a spyware or worm hooked to it that you don't know about, you are allowing it to harvest the emails of all your dearest friends. When it comes to emails that are "warning" about the Internet crashing, or again the end of the world - virtually all of them are what is called "Urban Legends" - stories that have been invented to get your attention at the least, other things at worse. Please - don't send them on, you only perpetuate the problem. If you really think something is "worthy" of attention, check out the validity at any or the urban legend websites (one good one is snopes.com) - I'll bet you lunch that it's bogus info (most of this stuff has been around so many times it's years old now, no joke). And, stop to think - are you hearing anything on the news about a major problem brewing? or gotten notice from your computer or software providers that something is going wrong? If they are not making noise to you or in the real news, you don't have to worry. If - IF - you feel you must send something on, DO NOT simply use the forward function in your email program. Copy the text of the note you want to send on, paste it into a clean, new email and choose the people you want to send it to, as a clean, new email. I really can't urge everyone enough to NOT forward "stuff" no matter how funny, touching, entertaining it may seem. Think of all the email addresses in your address book - if each person forwarded one thing a day to you (and all of the other people it goes to as well, who are also forwarding them all over and this all eventually starts looping back.....) - your inbox and email server will soon be crashing (yes, it still happens) - at best. If there is a worm or virus hooked to it - truly, rather than it being something "entertaining" - forwarding these things is indeed truly dangerous and adding to the problems we need to deal with when using email.