Mrs. Mecomber's Scrapbook

Talking technology, computers, and the Internet… for the average computer user

Archive for category how to

There’s No Place Like 127.0.0.1

Jan 20

Posted by Mrs. Mecomber in computers, how to, security programs | No Comments

Did you realize that you can control what Internet sites (including advertisements) are displayed on your computer? Within Windows, there’s a file called “Hosts” that essentially controls what websites your computer can connect to. You can modify the Hosts file to block websites on your computer. It’s a great way to block ads, malicious sites, and as a filter for unwanted websites.

There is a terrific website, MVPS.com, that has loads more about the Hosts file. They also offer a pre-made Hosts file that you can use to block websites (mostly ad sites).

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

Tags: , ,

Fixing a Router Invalid MAC Address Problem

Dec 17

Posted by Mrs. Mecomber in computers, how to, networking, security how-to | 3 Comments

I have a very nice Netgear Wireless-B+G+N gateway router for our DSL connection. And I have a very nice Belkin Wireless-N adapter for one of our computers here. Since both gadgets are relatively new technology, I figured that connecting the Belkin to the Netgear would be a piece of cake.

WRONG.

I admit– this Belkin adapter is the EASIEST adapter I have ever installed. It was a breeze and it works right out of the box. But I have hefty wireless security for our home network: I have a long string of hexadecimal characters, MAC address filters, and etc. I won’t budge when it comes to security. I have ditched some of our old equipment because it won’t work with the modern encryption.

So this new Belkin has a funky MAC address that my Netgear router refused to accept. All the other MAC addresses I’ve seen begin with “00,” but this Belkin adapter began with “94.” The Netgear wouldn’t accept the MAC address.

Invalid MAC address

First time I’ve seen that. After checking for a firmware upgrade from Netgear for the router (there was no upgrade), I was on my own to make this adapter work, or return it to the store.

I figured out a hack. And it may help you should you have to do this. This is for my Netgear DGN2000, which allows me to save a config file as a backup. Basically, all I did was backup my config file, open it in Notepad (well, I use Notepad Pro+, a much better program), add the Belkin adapter’s MAC address to the config file, save it, and upload it to my Netgear router. Voila!

Long version of what I just said:

Most routers *should* give you an option to save your configuration settings. Save TWO of these, just in case you make a mistake and wipe out all your settings– you’ll have an untouched saved config file to upload, just in case. I saved one in my Documents folder for safe keeping, and another on my Desktop with which I altered. I had no problems, but it was nice to know that I had a pure backup for caution’s sake.

OK, so… your router will save the file as a “config” file. Right-click it and open it in a text-editing program (like Notepad or whatever). Scroll down, looking for  “MAC+name” and “Trusted Wireless Stations.” That’s what Netgear calls it; I assume other routers call it something similar. It was easy for me to find it because I already have a bunch of connections for other computers in the Trusted Wireless Stations group.

Type in the code using EXACTLY the same format as you see for the other MAC addresses (assuming there are others, as I have), but insert your new adapter’s MAC and network name. For example:

[40102]“Trusted Wireless Stations”=00:55:44:33:88:8FHP-PAV

You see that I name all my network connections after the computers we have here. You could name yours George or Moe or Belkin2020 or whatever. The name is just a way for you to identify which wireless connection is where. But the MAC address you MUST have accurate, or your router will not accept it as a viable member of your wireless network.

netgrconfhack

After you have added in your adapter’s MAC address, save the file as it is– do NOT rename it as something else. Close it. Go back to your router and look for where you can upload a file for settings (usually “restore backup” or “restore settings” or something. Upload the config file. My Netgear gave a confirmation window, asking me if I was SURE I wanted to do this, because doing so would wipe out all my current settings. I said yes. The router automatically reboots. Go to your wireless settings, and allowed MAC addresses, and you will see your new adapter MAC address and new name there.

Your wireless adapter with computer is now part of your wireless network, and all is secure. :)

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

Tags: , , , , ,

Disable AutoPlay to Protect Your Computer From Malware

Nov 27

Posted by Mrs. Mecomber in Windows, computers, crime, how to, security how-to | 4 Comments

Windows by default has AutoPlay configured. AutoPlay (once called AutoRun in older Windows operating systems) is that little program that starts up the software whenever you connect a USB flash drive, an external hard drive, or pop in a CD or DVD. It was handy back in the old days of innocent computer use… but AutoPlay is increasingly used by evil programmers who want to spread malware and viruses. It is now recommended that you disable AutoPlay on your computer if you use USB flash drives or other portable peripheral drives like it.

There’s been a rash of infections in recent months that can be traced back to infected USB or other removable devices being used to transmit malware from one machine to another. The culprit is autorun. Even if you think you have it turned off, I’m betting you don’t have it turned off – not completely anyway.

Autorun (or autoplay, as it’s sometimes known as or confused with), is a very convenient feature of Windows that, as its name implies, allows things to happen “automatically” when you insert a removable device such as a CD-ROM, USB Memory stick or attach a device like a digital camera.

And yes, absolutely, it’s evil, and should be turned off completely as soon as you possibly can do so. The reason is very, very simple: autorun can be seriously abused by viruses and other forms of malware.

…autorun can be used to automatically launch software, either already on your machine or on the removable media. This is good when it’s the CD player software installed on your machine automatically playing the CD you just inserted, and it’s bad when it’s a virus that installs itself automatically.

There are several ways to disable AutoPlay, depending on your computer skills, and the operating system you have.

For Vista, it’s easy to disable it. Go to CONTROL PANEL >> HARDWARE AND SOUND >> AUTOPLAY. In Classic View of Control Panel, look for AUTOPLAY in the alphabetical list.

At the top, under the Menu Bar, you’ll see a box that says “Use AutoPlay for all media and devices.” Deselect it. :D

DisableAutoPl

From there, you can customize the defaults, how Windows will handle various drives and files. It is recommended that all drives be changed to “Take No Action” in the settings.

Now be warned that this fix works in MOST cases. But you know– this is Windows we’re talking about. Depending on your operating system brand, your updates, your hair color, blah blah, this fix may not work for you. In such a case, you can download updates, or you can hack the Registry yourself to fix it. Here are some very helpful links with tutorials and screenshots if you need more information or more detailed instruction.

How-To Geek Forums: Disable AutoPlay in Windows Vista
How-To Geek Forums: Disable Autoplay of Audio CDs and USB Drives for XP
Ask Leo: How do I *really* disable auto-play in Windows XP?

After you have disabled AutoPlay, no window will pop up and nothing will run when you insert a USB flash drive or CD/DVD into your computer. So how do you access the drive? Go to COMPUTER, either on your Desktop or look for it in your START MENU. You will see a listing of drives there. Double-click the drive you want to open, and your portable drives files are there.

CompDrvs

It’s just too risky in this day and age of malware and viruses and worms to leave your computer susceptible to them. It is recommended by the security geeks that you disable AutoPlay. I have learned to live without it, and love it. :D

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

Tags: , , , , ,

Know What’s Running on Your Computer

Sep 18

Posted by Mrs. Mecomber in computers, desktop utilities, how to, security how-to | 2 Comments

One of the best resources I have for my Windows computer is the “Task Manager.” (Right click on your sidebar, and in the menu that appears, choose “Task Manager.” A new window will appear with several tabs. The Task manager shows what is currently running on your computer at the moment. The “Processes” tab has a “Processes Library.” This shows the individual file running.

Some of those names can be a little confusing or misleading. BEFORE you decide to “End Process” (killing the application), be sure to find out if it is an important program. You can do this by searching online for the application name. For example, do a search for “explorer.exe” and you will discover that this is a critical file. You can also bookmark a few reliable process library sites for future reference. The few I have found to be most reliable with concise information are:

ProcessLibrary
TaskList.org
Bleeping Computer

Be sure you know what a file is doing and know of its importance before you end the process, or you could cause your computer to crash. Searching for various processes also helps to determine and discover any malicious files or extra files that may not be necessary to run in the background (such as the Quicktime updater).

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

OMG Another Wordpress Update!

Aug 12

Posted by Mrs. Mecomber in Wordpress, blogs, help, how to, security news | Comments off

I knew it was bound to happen… I just didn’t think it would happen a week after the previous update!! Wow, lol. Well, I am thankful that the Wordpress Dudes (as I affectionately call them) are on their toes with security issues.

Yesterday a vulnerability was discovered: a specially crafted URL could be requested that would allow an attacker to bypass a security check to verify a user requested a password reset. As a result, the first account without a key in the database (usually the admin account) would have its password reset and a new password would be emailed to the account owner. This doesn’t allow remote access, but it is very annoying.

We fixed this problem last night and have been testing the fixes and looking for other problems since then. Version 2.8.4 which fixes all known problems is now available for download and is highly recommended for all users of WordPress.

So I guess I know what I will be doing this afternoon. :-p

Wordpress has now made it so easy to update, I thank them for that. In a nutshell, here’s how to do it:

  • First thing: BACK UP YOUR BLOG.

    • I do database backups just about every week (log into my web host’s cPanel and use their Backup Wizard). I also then use the “Export” feature in the Wordpress Dashboard. This saves all posts and comments in an XML file. It just saves the information, not your blog’s theme nor photos nor other dynamic content. I made a quick video tutorial about How to Exporting Your Blog in an XML File. It’s an “on the safe side” kind of backup tool.

  • Update and then disable plugins.

    • I used to disable all my plugins before doing any upgrade. Plugins are third-party software, and therefore may conflict with each other during the upgrade. However, for the past three recent upgrades, I have attempted leaving my plugins enabled, and I have had no problems. I do, however, ALWAYS upgrade my plugins before attempting my Wordpress upgrade.

  • Click the Wordpress “Please update now” link at the top of your Admin page.

    • This notification shows up on all your Wordress admin pages. I usually go to my Dashboard and proceed from there. The link will take you to a page within your admin site, giving a few scanty details, and clicking the link.

  • Go slowly, read everything, don’t be in a hurry to click the links.

    • I take my time whenever I upgrade. I make sure the kids are preoccupied, I am *relatively* clear-headed, and not in a hurry. I’ve had problems when I have been too click-happy. Depending on the speed of your web host’s server transactions, it may take a few more seconds to complete. Don’t rush anything!

  • If something happens, call your web host.

    • I have Hostgator as my web host (see the button to their website in my sidebar) and I have been thrilled with their service and support. I recommend them more than any other host (and believe me, I’ve had a lot of hosts). If your blog has problems, give them a call. You will have a database backup that you can fall back on (you DID make that backup, right??!), and they can reinstate the older version, and help you upgrade to the newer one. But I have never had any problem whatsoever with the new Wordpress upgrade feature– it’s run AMAZINGLY smoothly.

    Hope this helps!

    [Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

    Tags: , , , ,