While there is not as much to worry about with larger vendors, I always use a one-time password with a small vendor, especially if I do not think I’ll buy anything from them again… Some small vendors store your passwords in clear text. An unscrupulous employee can grab your password, phone number, address, CC#, and email account, and start looking like you in no time. I know many people who have had this happen to them, and it has happened to me as well…

Never “sign-up” for an account to buys something if there is a “guest” option, and avoid keeping a CC# on-file with an account if possible. The inconvenience of filling out that silly CC# form again is worth the peice of mind and security!

jn

Once simple way I protect my home wireless network is by making it ‘invisible,’ i.e., I don’t broadcast my network name.

While I believe being aware of these issues is important, I’d caution against paranoia. Real privacy issues lie with a minor point made in your post – companies legally selling your information (ISPs are only one example, think super market bargin cards, credit reporting agencies, etc…)

I recommend encouraging your bishop to have someone hold a class or fireside and spread the word. It’s similar to missionary work…nothing gets done until you open your mouth.

There are a lot of great tools out there that solve this issue. I worked at an application developer for a number of years, SplashData (splashdata.com), who creates a great product that stores this sensitive info, encrypted, on handheld and desktop machines. So, no matter where I am, I have all my membership numbers, credit card numbers, bank accounts, web logins, family SSNs, and insurance numbers all secure and encrypted on my handheld. SplashID is the name of the product, and it works on Windows and Mac. (Mac version syncs with Palm only. Windows version syncs with Palm/BlackBerry/or Windows Mobile.) You can also use SplashID standalone if you don’t have a handheld device. There are also other products out there that provide similar functionality. (Note: I no longer work for SplashData, so this is not posted to further my interests.)

In regards to Buster Blocker…. Macintosh. That’s what I use as well, and have definitely enjoyed the virus-free life over the years. However, I still end up rebuilding friends’ virus infected XP machines. As Macs become more popular, I suspect we’ll see some viruses appear though…

Bottom line, let’s remember that all this innovation and access to information is to assist the building of the Kingdom on earth. I try to keep that focus and am grateful for inspired leaders who have embraced technology to do good.

Since I do not provide services outside the LAN to the web (I do not need to) I’m 100% invisible to the “outside world”. In my firewall I never use ‘deny’ but ‘drop’ packets, so for scanners my machine does not exist.

As per my WiFi I use the same approach as Alex Esplin (above) using WPA and Hardware address (or MAC address) to allow access to the LAN. i do not use a WiFi router, but an access point. The difference being that the access point is a specific address in the LAN though which any machine trying to access the network has to authenticate and match up 1) ESSID 2) WPA and 3) have a valid MAC address. On top of that I use a feature referred to as “not promoting” by which your router/access point is effectively hiding itself from WiFi scanners. This means that anyone trying to find my ESSID ( required to log in ) has to get it from me.

I think that in therms of protection that is good enough … but I’m considering to encrypt transmission in a not distant future … when I can devote the time out of coding to apply encryption

Good post. In it you wrote, “I’m about as technical as the sole of an old shoe.” Oh come on, Joel. You’re saying that as the CIO of the church you don’t have at least some technical ability in this area? I find that hard to believe. Unless working at Microsoft all those years numbed your technical savvy, that must have been written tongue in cheek.

Seriously, you raise a good point. So many are naive when it comes to protecting their personal home computers from the internet. I have had similar experiences in seeing many open computers when firing up my laptop at home or when travelling. It’s just that people don’t know about encryption.

What’s worse is people who have only one computer in their home which is directly connected to the DSL or cable *without* the firewall turned on. They have no clue that their anti-virus expired months ago and that they have become compromised. They wonder why their computer is so slow. It’s because it has become a ‘zombie’ and is sending out tons of spam under another’s control.

I know because I see this all the time. As a computer professional I get calls from people in my ward struggling with this problem in particular. I do not charge for helping them out. I think of the Lord’s admonition, “Inasmuch as ye have done it unto one of the least of these my brethren, ye have done it onto me.” It’s kind of like an extension of home teaching service.

To answer your question about precautions, here is a short list:

1. Use a firewall. Either make sure the Microsoft firewall is enabled on your XP or Vista machine or use an external firewall. Most people who have a LinkSys wireless router have a firewall and don’t know it. Just make sure it is turned on. It is usually on by default so if you haven’t changed it, don’t worry about it.

2. Clear your cache on a regular basis. It is a simple mater to push the button in Internet Explorer or Firefox but again, most people don’t know how. It’s just a matter of education. I find that the kids in the family know all about it because they don’t want mom and dad to know what sites they have been visiting.

3. Keep your Anti-Virus and Anti-Spyware solutions up to date. I know it is a mystery to so many home users but it shouldn’t be. They get that new computer for Christmas but don’t realize that that the Anti-virus software is a subscription based product that is only good for three months. I can always count on getting calls in April from people who learn this the hard way.

4. Make sure that you only use your credit card number online with secure sites. Today, almost all sites that take credit cards use some method of secure encryption. Never transact online business with companies that do not use encryption. If you see the little padlock in the corner of your browser when you are buying something online, then it is probably secure.

5. If you store lists of credit card numbers or other personal information on your computer in a spreadsheet, consider encrypting that particular spreadsheet. It’s not hard to do but most people don’t know how to do it. If you use a popular personal financial program like Quicken or MS Money, you can be sure that your financial information stored in the program is encrypted.

6. If you suspect that your Internet Service Provider is tracking the websites you visit, consider changing to another one that does not. In most American communities there are at least three choices for getting on the internet – cable, DSL and now fiber. There are usually a number of small local ISPs that compete with the cable company or phone company. Check it out.

There are more things you can do to protect your digital assets but these are the most common that any home computer user can do. I wish I knew more about how internet access and security (or the lack thereof) works in other countries but that’s been my experience here in the United States.

Tim Malone, MCSE – Camarillo, CA – 3tcm.net