Routers, firewalls give PCs extra hack-attack protection

THE BALTIMORE SUN

ONCE UPON a time, I could devote most of my column inches to the cool things people can do with computers. Today, I spend too much time telling people how to defend their PCs against online muggers. "Sometimes I think you've turned into a police reporter," a longtime colleague joked.

Two recent columns about spyware, for example, brought a barrage of additional questions about Internet security - and a surprising number about routers and firewalls.

Routers and firewalls are basic online bodyguards, and if you have a broadband connection, you should use both. By themselves, they won't protect you from viruses, worms and spyware. But they can keep intruders away and help prevent gremlins that do sneak through from compromising your PC and personal information.

Before we discuss firewalls and routers, it's a good idea to know a little bit about how the Internet works - but don't worry, we'll keep geek-speak to a minimum.

Every computer connected to the Internet has a unique numeric address theoretically visible to every other computer. This Internet Protocol (IP) address is usually expressed as a series of four numbers separated by periods, such as 68.128.31.5.

This addressing system is the key to the power of the Internet - it's the reason why it's as easy to connect to a computer in Tasmania as it is to one across town.

Internet service providers assign IP addresses to their customers. Home users typically have IP addresses assigned on the fly whenever they dial in to an ISP such as America Online or Earthlink, or when they first connect their PCs to broadband cable or DSL modems.

Because the Internet was designed in a more innocent age as an open system for sharing both information and computing resources, the Internet Protocol makes it easy for machines to communicate.

When one computer wants to talk to another, it sends a message to the receiving machine's IP address, and the other machine responds.

Typically, computers use different communications channels, known as ports, for different purposes, such as Web browsing, e-mail, file transfer, or instant messaging. The problem, in this age of malicious hackers, is that without any type of security, outsiders can take advantage of these channels and flaws in the computer's operating system to poke around in your files, steal information, plant mischievous programs, or even take control of your PC. This is particularly true if you have file or printer sharing enabled on a local network.

How does an intruder find you? Typically with software that scans IP addresses looking for a basic response (known as a "ping") and then probing for "open" ports that respond to commands or requests for information. Computers running Microsoft Windows have proved particularly vulnerable to these attacks - note the monthly security patches that Microsoft issues to plug these holes. But other operating systems have vulnerabilities, too.

Most vulnerable are PCs connected to the Internet directly through a cable or DSL modem, particularly if they're left running 24 hours a day.

That's where routers and firewalls come in. They work together to minimize the danger, and their features often overlap.

A router is designed to connect one network to another. The typical home router is a small box with four to six connections for network cables and often a wireless antenna that allows computers with wireless adapters to join the network.

As its name implies, the router passes Internet information packets along the proper path to their destination, like a train or truck dispatcher. But routers designed for the home and small offices also allow multiple PCs to share an Internet connection. Typically, you'll connect one or more computers to the router and plug the router into your cable or DSL modem.

Once installed, a router serves as a "front man" for all the computers on the local network behind it, even if the "network" consists of a single machine. The router contacts the ISP, obtains a single IP address for the whole network and passes information to the proper PC on the inside. It also allows computers on the home network to share information without going through the Internet.

Although they can be configured to block or pass different types of data packets, most routers are set up by default to hide the ports that hackers access. The router allows outside packets through only from communications sessions your computer initiates - such as sending e-mail, browsing the Web, or starting an Internet chat program.

This is also one of the basic functions of a firewall. In real life, a firewall is a fireproof barrier that separates one structure or room from another to keep a blaze from spreading. In the virtual world, it's a piece of hardware or software that provides additional levels of protection from outsiders. Some routers have firewalls built in to protect an entire network, but typical home firewalls are built through software that protects a single PC.

In addition to hiding a PC from outsiders, a firewall can keep unauthorized programs from accessing the Internet. These include programs planted by intruders or e-mail viruses that can turn your computer into a spam "zombie," launch denial-of-service attacks on other computers or transmit personal information to a rogue Web site.

When a program it doesn't recognize tries to access the Internet, a firewall will alert you and ask whether you want to allow or deny it. Most firewalls also create logs of attempts to contact your computer, allowing you to see the addresses of potential break-in artists.

If you have a broadband connection, you'll need a router to connect more than one PC to the Internet. But even with a single computer, a router is a good idea. They're easy to set up, and basic wired models are available for as little as $30. Wireless routers cost anywhere from $50 to $200, depending on their wireless connection speed and other features. Among the major manufacturers are Linksys, D-Link and Netgear.

Firewall software is part of multipurpose Internet security suites from Norton, McAfee and other publishers. These usually include an anti-virus program, spam blocker and spyware filter, too.

You also can purchase a standalone firewall program. The best-known is ZoneAlarm, largely because the publisher offers a basic but very effective version free of charge (www.zone labs.com). Microsoft Windows XP comes with an elementary firewall, but it's not much good because it doesn't block outbound traffic.

It's unfortunate that we need so many levels of protection online these days. But it's the price we pay for defending our castles from the online Visigoths.

Copyright © 2020, The Baltimore Sun, a Baltimore Sun Media Group publication | Place an Ad
25°