Navigation:

zum Inhalt
zur Hauptnavigation
zur Zielgruppennavigation
zur Subnavigation

Zielgruppennavigation:

Hauptnavigation:

Language:

Deutsch

Services

Subnavigation:

Security

1: General security advice
2: Data backup
3: CERT
Common Hints
- 3.1: Incident Response
- 3.2: Minimum of essential tasks to do for securing Microsoft Windows
4: Certificate authority

Metanavigation:

Minimum tasks to do for securing Microsoft Windows

WWU-CERT and Microsoft suggest to remove and reinstall an infected system, because of the fact that you can never be sure if all malware has been found. Backup your personal data and format the system partition before you reinstall Windows from a clean medium.

A reliable malware removal is not possible from within the infected system. You must scan the infected system with a bootable antivirus CD, e.g. Avira Rescue System or Kaspersky Rescue Disk. There is also a bootable CD with Sophos antivirus available at the user helpdesk (Please bring a blank CD with you!). If you don't have a CD/DVD drive you can use UNetbootin to copy the CD images to a USB stick.

Following steps have to take place if you want to secure the Windows operating system (cf. the decision of IV-L from May, 6th 2004). An unsecured Windows system that is connected to the internet will be infected within minutes!

Install the latest Service Pack for your Windows version as well as all the available Windows Updates! There are Update Packs (e.g. WinFuture) available for the offline installation, which you may download with an already secured system. You may also create your own Update-CD with WSUS Offline Update.
Activate your firewall software before first entering the internet! When using Windows XP with at least SP2 or Windows 2003 the build-in firewall is sufficient (see properties of network connection). Using Windows 2000 an extra third-party firewall has to be installed!
Install and activate a permanent running antivirus software (with option "Scan on demand").
Activate regular automatic updates for Windows and your antivirus software.
Choose a complex password for your local administrator account (mixed capital and small letters and numbers, e.g. "Kc53Fqwer$").
Create at least one local user who is no administrator!
Never log in as the local administrator. Always use the low-privileged account to open emails or surf the internet. Otherwise the former steps were useless!

Please notice the following points:

After cleaning the system you have to change all your passwords in particular your central password and network password of the university!
An antivirus software and a firewall software (at present McAfee VirusScan and Sophos Anti-Virus and Firewall) is available for free to all employees and students of the WWU Münster. Latest virus signatures for McAfee can be found here.
Security leaks shift from browser to browser plugin software like Flash, PDF, Windows Media and the like. Make sure that your plugins are always up to date. The Personal Software Inspector (PSI) from Secunia may help you with the search for outdated software.
We recommend to use alternative Internet browsers like Mozilla Firefox or Opera to minimize the risks.
Persons who distibutes consciously viruses and spam through his or her PC make themselves possibly punishable according to German law (§§ 303 a, b StGB Data modification, Computer sabotage) and liable to pay for damages according to § 823 (1) BGB.