[IS&T Security-FYI] Newsletter, April 12, 2007

Monique Yeaton myeaton at MIT.EDU
Thu Apr 12 16:56:47 EDT 2007 

In this issue:

1. Microsoft's April 2007 Security Patches
2. Tip: How to Keep a New PC Pristine

----------------------------------------------------
1. Microsoft's April 2007 Security Patches
----------------------------------------------------

This past Tuesday, April 10, Microsoft released 5 security patches, 4  
of which are critical, for the following software or components:

- Windows Server 2003
- Windows 2000 and XP
- Windows Vista
- Content Management Server 2001 and 2002

The patches are now approved for deployment via MIT WAUS.

If you have Automatic Updates enabled on your system, the updates are  
delivered to you when they are released, but you have to make sure  
you install them. We recommend that you take the updates unless you  
have specific information indicating that it is incompatible with an  
application you need to use. You will have to restart your computer  
after applying the patches.

Detailed descriptions of the 5 updates are in Microsoft Security  
Bulletins MS07-018 through MS07-022, available here:

<http://www.microsoft.com/technet/security/bulletin/ms07-Apr.mspx>

End users who wish to skip the details and go right to the download  
page can go here:

<http://www.microsoft.com/athome/security/update/bulletins/200704.mspx>

Thank you for using WAUS or the Microsoft Update services. The best  
line of defense against viruses and other malware is to keep your  
system and software up to date.


------------------------------------------------
2. Tip: How to Keep a New PC Pristine
------------------------------------------------

When you get your brand new Windows PC at home or at the office, it's  
only natural that you'll want to get it hooked up to the Internet as  
quickly as possible. But how can you avoid immediate infection for  
this new, unprotected and probably unpatched machine? Below are some  
basic steps to follow to set up a PC before an Internet connection  
has been established:

Step 1. Make a starter CD-Rom. Take a few minutes to burn a starter  
CD using your old machine that contains the latest version of your  
favorite anti-virus software (note that IS&T supplies McAfee  
VirusScan for free). Include any new patches for the operating system  
and software already installed on your new PC. It would also be a  
good idea to include any updated drivers you might need. Having all  
these on the disk means you won't have to retrieve them from the  
Internet as you set up your new PC.

Step 2. Remove promotional apps. Some of the applications that come  
with your new PC require you to activate them via the Internet. Most  
of these you won't need, such as trial versions of programs you may  
already own or ISP ads for Earthlink and AOL. If you are not going to  
use these, go to the Add/Remove Programs applet in the Control Panel  
to completely remove them.

Step 3. Patch your operating system and software using the starter CD  
from step 1. This assumes that you already have the latest version of  
Windows on your PC.

Step 4. Go ahead and install the anti-virus software from your  
starter CD. If you need to, this is a good time to install anti- 
spyware software too.

Step 5. Turn on your software firewall. To learn how, this page  
outlines the steps to do this on Windows XP SP2: [http://web.mit.edu/ 
ist/topics/security/firewall.html#win].

These 5 basic steps will get you started. You should now be able to  
connect to the Internet safely. If you are getting a new machine at  
work, most likely the IT administrator in your area will either set  
up your machine for you or will help you to set it up.

If you want to learn more about Windows security for a PC at home,  
Microsoft offers many of these security tips and more on their web site.

Visit: <http://www.microsoft.com/athome/security/>

If you have any questions, please contact us at security at mit.edu and  
thank you for staying aware of IT security issues.


Monique


=========================
Monique Yeaton
IT Security Awareness Consultant
MIT Information Services & Technology (IS&T)
(617) 253-2715
http://web.mit.edu/ist/security

More information about the ist-security-fyi mailing list