Hi does anyone know a way i can check if anyone has gained remote access to my PC and is there a way to stop people from remote accessing my computer,

And IDS like snort, and a good firewall that is configured properly. With Active Alerts enabled.

I use rkhunter on my machine; it's probably all you need. If you're running a real OS that has real security, you don't have much to worry about.

I use rkhunter on my machine; it's probably all you need. If you're running a real OS that has real security, you don't have much to worry about.

I should point out that all OS's have "real security" you just need to use the program "Common sense 2008" which will work on all platforms.

I should point out that all OS's have "real security" you just need to use the program "Common sense 2008" which will work on all platforms.

Windows and OS X do not have real security. They're unable to prove that their code is secure.

Something is only secure if it passes the "everyone can see the source and it's still secure" test. Because, like Trueborn likes to point out, even if it isn't source for most people, there are some people who will be able to figure out an approximation of the source from binaries, and then you're fucked if you can't pass that test.

Also, an IDS (especially a nIDS like Snort) is massive overkill. Set up a good, logging firewall.

Windows and OS X do not have real security. They're unable to prove that their code is secure.

Something is only secure if it passes the "everyone can see the source and it's still secure" test. Because, like Trueborn likes to point out, even if it isn't source for most people, there are some people who will be able to figure out an approximation of the source from binaries, and then you're fucked if you can't pass that test.

Also, an IDS (especially a nIDS like Snort) is massive overkill. Set up a good, logging firewall.

You didn't get the humor in my statement. I've had someone come up to me and ask "Can you hack gmail." I said "No, they're really secure." and he says "No, they are not secure. I got "hacked." "

I make my point right there, if people used fucking common sense most "security" issues wouldn't be issues at all. But, I guess we as people for some reason need a program to ask us if we want to click here or there, etc. It's like people setting up Tor and then going "Oh lol well why am I not anoneemoose???" They don't take the time to learn how it works, or read a config/README file, and then there in deep fucking water because they didn't use common sense .

You didn't get the humor in my statement. I've had someone come up to me and ask "Can you hack gmail." I said "No, they're really secure." and he says "No, they are not secure. I got "hacked." "

I make my point right there, if people used fucking common sense most "security" issues wouldn't be issues at all. But, I guess we as people for some reason need a program to ask us if we want to click here or there, etc. It's like people setting up Tor and then going "Oh lol well why am I not anoneemoose???" They don't take the time to learn how it works, or read a config/README file, and then there in deep fucking water because they didn't use common sense .

*sigh*

Sorry for missing the humor. You are right, I'm right too, but yeah. You're right.

Hi does anyone know a way i can check if anyone has gained remote access to my PC and is there a way to stop people from remote accessing my computer,

You don't *add* security, you remove what is insecure, you monitor what is sensitive and you establish *trust* relationships between nodes.

I will attempt to describe what basic hardening an home network/computer should go trough. ( DSL, behind a nat ).

[Router configuration]
Disable wireless if you don't need it.
Disable upnp.
Foward the ports used to configure the router to a non-existent node (usually only 80).
Change the router's password to a strong one. (also the default account name, if you can)
Use OpenDNS.
Disable dhcpd.

[Host configuration] (Windows)
Go to services.msc and disable what ever you don't need.
Install an anti-virus.
Upgrade to Vista, don't use the admin account as a main account. DO NOT disable UAC, it's the only fucking reason i'm advising you to upgrade to vista if you didn't already.
Install the updates. (This is THE most important part in the Host configuration)

Dont use p2p, if you do, use torrents, exclusively.
Make use of a password and disable the guest, don't enable public sharing, don't install third party apps that aren't:
From a major company (Oracle, Microsoft [...] )
With a very high price tag
Open Source (OSI approved license)
(not even a yahoo/google/whatever widget)

Particularily DO NOT install third party drivers, or even download those from the web site, install only from the cd and patch them
No cracks, warez, mods [...]
.
DON'T even type any personal info and/or make use of a webcam.
Disable flash, javascript and java in your web browser.
(or make use of a different profile)
Don't use common protocols that are known to be phisher's paradise, MSN, e-mail [...].

A tad bit more advanced:
Setup a rescue live cd, backups and integrity checks.
Encrypt the shit out of sensitive data.
Setup an hardware firewall.
[...] Will add more later if anybody is interested... or even got trough the whole thing.

Yes, i did quote myself...

Prometheum basically posts here as a 'i dunno u do it' poster.

His advice consists of 'get linux' or 'u figure it out'

An all round wanker.

Prometheum basically posts here as a 'i dunno u do it' poster.

His advice consists of 'get linux' or 'u figure it out'

An all round wanker.

Well, you're just a cuntbag.

Well, you're just a cuntbag.

I see what you did there.

Prometheum basically posts here as a 'i dunno u do it' poster.

His advice consists of 'get linux' or 'u figure it out'

An all round wanker.

Agreed.