Chad, props to you for this great list. Especially for mentioning OpenDNS. I personally use it, and it works wonders at preventing malware/botnets, and even better filtering.
Here's my contributions to this list.
Generic things you can do to minimize the attack surface:
- Use SSL (https), Example: there is an option on Facebook, Gmail etc to force your connection to use SSL. If Chad wants to add this, I could provide a tutorial on how to do this with screenshots. Don't connect to these crucial services without checking that you do see the correct domain and SSL encryption!
- Chad, your link to securing wireless networks is broken
Anyway, here's a more comprehensive and detailed guide. Hopefully you'll excuse me for posting this link.
www.dslreports.com/faq/8698 (piece it together, Chad
)
Very detailed and easy to follow.
Oh, more on the wireless network side. AP Isolation, if you have many people using your internet connection (family members, etc and guests) I'd suggest you enable this feature on your router.
Taken from the Cisco forums:
"Verbatim Definiton:
Creates a separate virtual network for your wireless network. When this feature is enabled, each of your wireless client will be in its own virtual network and will not be able to communicate with each other. You may want to utilize this feature if you have many guests that frequent your wireless network.
Meaning:
A prime example would be like in a hotspot (e.g. coffeeshop like Starbucks, hotels) wherein a lot of computers connect randomly to the network. Since all computers are connected to 1 single network there is a possibility that they could access each other which may result in unwanted hacking. AP isolation will help prevent this by making each and every single computer a separate entity on their own. "
- Being a Linux user, I kinda have to lecture about this. Don't use the root (administrator) account if you don't have to! Just don't touch it.
Oh Chad, would it be possible to add a Linux section? If you could, here's my contributions to it.
http://www.ubuntuforums.org/showthread.php?t=510812
That's a guide for security on Ubuntu Linux (most of it could apply to Debian Linux), really, comprehensive.
- That's all for now.