Results 1 to 13 of 13

Thread: Windows 8 fresh install - security before first online connection?

  1. #1
    Member
    Join Date
    Aug 2008
    Posts
    138
    Thanks
    4
    Thanked
    1 time in 1 post

    Windows 8 fresh install - security before first online connection?

    Hi

    After a fresh Win 8 installation, what are people's first steps to secure Win 8 before going online?

    Would turning on the bulit-in firewall be sufficient, or are there other considerations?


    Thanks.

  2. #2
    Hello jackvdbuk's Avatar
    Join Date
    Apr 2006
    Location
    Stratford
    Posts
    2,513
    Thanks
    468
    Thanked
    112 times in 95 posts
    • jackvdbuk's system
      • Motherboard:
      • AbiT IP35-PRO
      • CPU:
      • Intel C2Q Q9550
      • Memory:
      • OCZ Nvidia SLi Edition 4GB (2x2gb) pc2-6400 DDR2
      • Storage:
      • lots of TB
      • Graphics card(s):
      • BFG 8800GTS 512MB
      • PSU:
      • Corsair HX620W
      • Case:
      • Corsair 800D
      • Operating System:
      • Windows 7 Premium x64
      • Monitor(s):
      • Dell 2407WFP
      • Internet:
      • Orange (about 6Mb)

    Re: Windows 8 fresh install - security before first online connection?

    is this a real question?

    update windows 8, AV, firewall is a yes...

  3. #3
    Token 'murican GuidoLS's Avatar
    Join Date
    Apr 2013
    Location
    North Carolina
    Posts
    806
    Thanks
    54
    Thanked
    110 times in 78 posts
    • GuidoLS's system
      • Motherboard:
      • Asus P5Q Pro
      • CPU:
      • C2Q 9550 stock
      • Memory:
      • 8gb Corsair
      • Storage:
      • 2x1tb Hitachi 7200's, WD Velociraptor 320gb primary
      • Graphics card(s):
      • nVidia 9800GT
      • PSU:
      • Corsair 750w
      • Case:
      • Antec 900
      • Operating System:
      • Win10/Slackware Linux dual box
      • Monitor(s):
      • Viewsonic 24" 1920x1080
      • Internet:
      • AT&T U-Verse 12mb

    Re: Windows 8 fresh install - security before first online connection?

    Turn on the firewall, make sure that Defender is active, and if your first stop online breaches both of those, you need to reconsider what you're doing on the net.

  4. Received thanks from:

    Shaolin_K (01-09-2015)

  5. #4
    Member
    Join Date
    Aug 2008
    Posts
    138
    Thanks
    4
    Thanked
    1 time in 1 post

    Re: Windows 8 fresh install - security before first online connection?

    Quote Originally Posted by GuidoLS View Post
    Turn on the firewall, make sure that Defender is active, and if your first stop online breaches both of those, you need to reconsider what you're doing on the net.
    Thanks for your sensible answer.

    I'm just used to Zonealarm before first connection, but now you have to download an installer as they don't have a standalone offline installer.

    I was just curious what measures others went through to ensure they're safe - is this a bad thing or am I just too cautious?
    Last edited by Shaolin_K; 01-09-2015 at 12:52 PM.

  6. #5
    Member
    Join Date
    Aug 2008
    Posts
    138
    Thanks
    4
    Thanked
    1 time in 1 post

    Re: Windows 8 fresh install - security before first online connection?

    Quote Originally Posted by jackvdbuk View Post
    is this a real question?

    update windows 8, AV, firewall is a yes...
    What makes you think this is not a real question?

  7. #6
    Token 'murican GuidoLS's Avatar
    Join Date
    Apr 2013
    Location
    North Carolina
    Posts
    806
    Thanks
    54
    Thanked
    110 times in 78 posts
    • GuidoLS's system
      • Motherboard:
      • Asus P5Q Pro
      • CPU:
      • C2Q 9550 stock
      • Memory:
      • 8gb Corsair
      • Storage:
      • 2x1tb Hitachi 7200's, WD Velociraptor 320gb primary
      • Graphics card(s):
      • nVidia 9800GT
      • PSU:
      • Corsair 750w
      • Case:
      • Antec 900
      • Operating System:
      • Win10/Slackware Linux dual box
      • Monitor(s):
      • Viewsonic 24" 1920x1080
      • Internet:
      • AT&T U-Verse 12mb

    Re: Windows 8 fresh install - security before first online connection?

    Quote Originally Posted by Shaolin_K View Post
    Thanks for your sensible answer.

    I'm just used to Zonealarm before first connection, but now you have to download an installer as they don't have a standalone offline installer.

    I was just curious what measures others went through to ensure they're safe - is this a bad thing or am I just too cautious?
    Everybody has their own comfort zone. I use (on Windows 7) MSE and Malwarebytes. On 10, I use Defender and Malwarebytes. I'm behind a hardware firewall, but I've not had anything resembling an intruder issue on my PCs in years. I get the occasional person trying to hack my modem via wireless, but short of a good password, there's not much you can do about it, as I think the local authorities would frown on shooting them. About the only thing I go out of my way on with a fresh install or any update is to make sure that flash isn't enabled anywhere that it's built in, that it isn't installed anywhere as a plug-in or activex control, and that Adobe Reader isn't anywhere to be found. That, to me, is the enemy within, and the easiest to do something about.

  8. Received thanks from:

    Shaolin_K (03-09-2015)

  9. #7
    root Member DanceswithUnix's Avatar
    Join Date
    Jan 2006
    Location
    In the middle of a core dump
    Posts
    12,978
    Thanks
    778
    Thanked
    1,586 times in 1,341 posts
    • DanceswithUnix's system
      • Motherboard:
      • Asus X470-PRO
      • CPU:
      • 5900X
      • Memory:
      • 32GB 3200MHz ECC
      • Storage:
      • 2TB Linux, 2TB Games (Win 10)
      • Graphics card(s):
      • Asus Strix RX Vega 56
      • PSU:
      • 650W Corsair TX
      • Case:
      • Antec 300
      • Operating System:
      • Fedora 39 + Win 10 Pro 64 (yuk)
      • Monitor(s):
      • Benq XL2730Z 1440p + Iiyama 27" 1440p
      • Internet:
      • Zen 900Mb/900Mb (CityFibre FttP)

    Re: Windows 8 fresh install - security before first online connection?

    I presume you are behind a firewalling router of some sort? That gets you a lot of protection. I usually download a copy of Avast on another machine, and copy it over to the new machine via USB stick and install before going online.

    It used to be that if you plugged a freshly installed Windows machine directly onto the Internet (not via a router) then it would be hacked within about half an hour, and it takes longer than that to download the latest service packs etc to make the machine reasonably secure. I think the take home message from that is to have something between you and the Internet, but I think stuff like the old Frog USB to ADSL direct connection adapters are rare now so you should be safe. I suppose a 4G connection might have issues, but I think at least some of those are NAT addressed so it is hard for people to send you packets to hack you.

  10. Received thanks from:

    Shaolin_K (03-09-2015)

  11. #8
    Token 'murican GuidoLS's Avatar
    Join Date
    Apr 2013
    Location
    North Carolina
    Posts
    806
    Thanks
    54
    Thanked
    110 times in 78 posts
    • GuidoLS's system
      • Motherboard:
      • Asus P5Q Pro
      • CPU:
      • C2Q 9550 stock
      • Memory:
      • 8gb Corsair
      • Storage:
      • 2x1tb Hitachi 7200's, WD Velociraptor 320gb primary
      • Graphics card(s):
      • nVidia 9800GT
      • PSU:
      • Corsair 750w
      • Case:
      • Antec 900
      • Operating System:
      • Win10/Slackware Linux dual box
      • Monitor(s):
      • Viewsonic 24" 1920x1080
      • Internet:
      • AT&T U-Verse 12mb

    Re: Windows 8 fresh install - security before first online connection?

    Quote Originally Posted by DanceswithUnix View Post
    I presume you are behind a firewalling router of some sort? That gets you a lot of protection. I usually download a copy of Avast on another machine, and copy it over to the new machine via USB stick and install before going online.

    It used to be that if you plugged a freshly installed Windows machine directly onto the Internet (not via a router) then it would be hacked within about half an hour, and it takes longer than that to download the latest service packs etc to make the machine reasonably secure. I think the take home message from that is to have something between you and the Internet, but I think stuff like the old Frog USB to ADSL direct connection adapters are rare now so you should be safe. I suppose a 4G connection might have issues, but I think at least some of those are NAT addressed so it is hard for people to send you packets to hack you.
    Cisco Pix 501. Highly recommended. Far less intrusive (as in not at all) than any software solution, and significantly less vulnerable to any attack, internal or external. OTOH, I don't think Windows has been as vulnerable as you described since Win98.

    Then again, I'm starting to lower my buy in to the individual identity theft thing anymore - it's far less expensive and far more profitable, both in terms of money and data, to do large scale hacks of companies than it is to steal grandma's pension info from her old PC. That's not to say there aren't plenty of people out there doing the wrong thing - I just think they're less of an issue than at any time in the past.

  12. #9
    root Member DanceswithUnix's Avatar
    Join Date
    Jan 2006
    Location
    In the middle of a core dump
    Posts
    12,978
    Thanks
    778
    Thanked
    1,586 times in 1,341 posts
    • DanceswithUnix's system
      • Motherboard:
      • Asus X470-PRO
      • CPU:
      • 5900X
      • Memory:
      • 32GB 3200MHz ECC
      • Storage:
      • 2TB Linux, 2TB Games (Win 10)
      • Graphics card(s):
      • Asus Strix RX Vega 56
      • PSU:
      • 650W Corsair TX
      • Case:
      • Antec 300
      • Operating System:
      • Fedora 39 + Win 10 Pro 64 (yuk)
      • Monitor(s):
      • Benq XL2730Z 1440p + Iiyama 27" 1440p
      • Internet:
      • Zen 900Mb/900Mb (CityFibre FttP)

    Re: Windows 8 fresh install - security before first online connection?

    Quote Originally Posted by GuidoLS View Post
    OTOH, I don't think Windows has been as vulnerable as you described since Win98.
    I was thinking of Window XP which apparently had an expected survival time unpatched of 4 minutes, way shorter than the amount of time it would take to patch. Sounds like Vista wasn't much better.

    https://isc.sans.edu/diary/Survival+...+Internet/4721

    But as it says on that page, using a NAT router puts the odds in favour of the PC.

  13. #10
    Member
    Join Date
    Aug 2008
    Posts
    138
    Thanks
    4
    Thanked
    1 time in 1 post

    Re: Windows 8 fresh install - security before first online connection?

    Thanks guys for your insights.

    I'm on a router with built-in firewall. So this, along with Windows Firewall and updated Defender should be OK?

    Good tip on Adobe Flash GuidoLS. Keep on forgetting about its vulnerabilities.

  14. #11
    root Member DanceswithUnix's Avatar
    Join Date
    Jan 2006
    Location
    In the middle of a core dump
    Posts
    12,978
    Thanks
    778
    Thanked
    1,586 times in 1,341 posts
    • DanceswithUnix's system
      • Motherboard:
      • Asus X470-PRO
      • CPU:
      • 5900X
      • Memory:
      • 32GB 3200MHz ECC
      • Storage:
      • 2TB Linux, 2TB Games (Win 10)
      • Graphics card(s):
      • Asus Strix RX Vega 56
      • PSU:
      • 650W Corsair TX
      • Case:
      • Antec 300
      • Operating System:
      • Fedora 39 + Win 10 Pro 64 (yuk)
      • Monitor(s):
      • Benq XL2730Z 1440p + Iiyama 27" 1440p
      • Internet:
      • Zen 900Mb/900Mb (CityFibre FttP)

    Re: Windows 8 fresh install - security before first online connection?

    I install a third party anti-virus, but otherwise yes that is as much as I bother with.

    I am as paranoid with Java as I am with Flash as well, but that isn't a first connection thing it is always a flaw to look out for

  15. #12
    Admin (Ret'd)
    Join Date
    Jul 2003
    Posts
    18,481
    Thanks
    1,016
    Thanked
    3,208 times in 2,281 posts

    Re: Windows 8 fresh install - security before first online connection?

    Quote Originally Posted by DanceswithUnix View Post
    I install a third party anti-virus, but otherwise yes that is as much as I bother with.

    I am as paranoid with Java as I am with Flash as well, but that isn't a first connection thing it is always a flaw to look out for
    Pretty much ditto .... except that I use a third-party Firewall too, and I do use the pre-download latest versions, then install OS, install, firewall, install AV, etc, all while offline, then re-connect, and immediately update Firewall, AV and Anti-malware.

  16. #13
    Admin (Ret'd)
    Join Date
    Jul 2003
    Posts
    18,481
    Thanks
    1,016
    Thanked
    3,208 times in 2,281 posts

    Re: Windows 8 fresh install - security before first online connection?

    Quote Originally Posted by GuidoLS View Post
    Cisco Pix 501. Highly recommended. Far less intrusive (as in not at all) than any software solution, and significantly less vulnerable to any attack, internal or external. OTOH, I don't think Windows has been as vulnerable as you described since Win98.

    Then again, I'm starting to lower my buy in to the individual identity theft thing anymore - it's far less expensive and far more profitable, both in terms of money and data, to do large scale hacks of companies than it is to steal grandma's pension info from her old PC. That's not to say there aren't plenty of people out there doing the wrong thing - I just think they're less of an issue than at any time in the past.
    Nice bit of kit.

    I do similar BUT .... here's my problem with that.

    Robust hardware firewall does, assuming it's ruled properly of course (and that ain't a trivial exercise) provide a substantial degree of protection against intrusion from the outside. It provides far less warning of issues with legitimate software on the inside wanting to talk out. Some installed software has legit reason for talking out, but when something that does not still tries to, it's red flag time.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •