Why Broadband Is A Security Feature

 
 
By Larry Seltzer  |  Posted 2003-03-24 Email Print this article Print
 
 
 
 
 
 
 

Unprepared broadband users can be targets, but if you're on a dialup connection you'll spend all day keeping up with your patches, warns Security Supersite Editor Larry Seltzer. It's a two-edge sword, and your side is sharper.

If youre a broadband user and you get a firewall, youll immediately notice that there are people probing your computers. Users on the really big broadband networks like Comcast are regularly scanned by hackers looking for low-hanging fruit, such as systems infected with NetBus or BackOrifice—and maybe even those of you violating your terms of service by running Web servers or news servers.

Since youve got an always-on connection and an IP address that is, if not static, at least relatively quiescent, youre more of a target than the dialup user who has a dynamic address for relatively brief periods of time. All this has given some people the impression that broadband users have more security problems.

But there are better reasons to feel that broadband helps you to protect yourself against security problems than that it exposes you to them. Two points: As a desktop user, the most important thing you can do to protect yourself against common attacks is to keep your software up to date; and the most important threats to you are viruses.

A session at Microsofts Windows Update or Office Update can involve the download of tens of megabytes, especially if you let yourself get behind. Thats the kind of load that can discourage a dialup user from bothering. But its not that bad for most broadband connections. And if you dont apply these updates, you are leaving yourself vulnerable.

I dont want to downplay the importance of firewalls to home users or tell you that you shouldnt run one, but they simply pale in comparison to antivirus protection in terms of importance. And as a market theres something less interesting about it, since one of the best firewalls—ZoneAlarm—around has a free version. ZoneAlarm is not alone in throwing many non-firewall functions (like cookie- and popup-blocking) in with the product in order to broaden their appeal.

There have been famous attacks that have caused broad damage and would have been blocked by good firewall practice, but almost all were aimed at servers. In the meantime, the world is filled with dangerous viruses that a user can get by doing nothing wrong at all.

But just as Microsoft has patched most vulnerabilities long before they are exploited, dangerous viruses always appear in the virus definitions of major vendors long before they reach large numbers of users. The only trick is to keep updating the program and virus definitions. I shake my head in disbelief every time I hear this, but most users dont. The answer to overcoming the inertia and laziness involved is to make running and updating antivirus software and the operating system as brain-dead-easy and unobtrusive as possible.

Microsoft and the antivirus vendors have done a pretty good job over the years of making updates easy. Current versions of Windows not only will download updates automatically; they will (optionally) install them on a schedule. Developers of antivirus software have done this with their definitions for some time, although they are less aggressive with program updates, since many of the applications require a reboot of the system. I know from personal experience that the large size of these updates have dissuaded many people, especially those without dedicated phone lines for their computers.

Were going to have to make it as easy as possible for users to stay up to date. The best way to do that is with broadband, which will eliminate any claim that its a burden to update.

Security Supersite Editor Larry Seltzer has worked in and written about the computer industry since 1983.
 
 
 
 
Larry Seltzer has been writing software for and English about computers ever since—,much to his own amazement—,he graduated from the University of Pennsylvania in 1983.

He was one of the authors of NPL and NPL-R, fourth-generation languages for microcomputers by the now-defunct DeskTop Software Corporation. (Larry is sad to find absolutely no hits on any of these +products on Google.) His work at Desktop Software included programming the UCSD p-System, a virtual machine-based operating system with portable binaries that pre-dated Java by more than 10 years.

For several years, he wrote corporate software for Mathematica Policy Research (they're still in business!) and Chase Econometrics (not so lucky) before being forcibly thrown into the consulting market. He bummed around the Philadelphia consulting and contract-programming scenes for a year or two before taking a job at NSTL (National Software Testing Labs) developing product tests and managing contract testing for the computer industry, governments and publication.

In 1991 Larry moved to Massachusetts to become Technical Director of PC Week Labs (now eWeek Labs). He moved within Ziff Davis to New York in 1994 to run testing at Windows Sources. In 1995, he became Technical Director for Internet product testing at PC Magazine and stayed there till 1998.

Since then, he has been writing for numerous other publications, including Fortune Small Business, Windows 2000 Magazine (now Windows and .NET Magazine), ZDNet and Sam Whitmore's Media Survey.
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
 
 
Thanks for your registration, follow us on our social networks to keep up-to-date
Rocket Fuel