The revised Vesik method involves typing nonsense characters into a password input box when using a public PC and then rearranging some of the letters to form your actual password with the mouse. If the PC contains a hardware keylogger or is infected with a software keylogger, rearranging a password in this way will usually suffice to obscure your credentials. Most hackers will concentrate on the 99% of users who type in their passwords at Internet cafés in the usual way.

One proposal sent in by many, many, many readers was a variation on a single theme. Namely, keep your sign-in information on a USB flash drive or memory stick, then copy and paste the info into the appropriate fields when you’re required to use a public PC or other unsecured computer.

Unfortunately, many keyloggers capture any information you place into the Windows Clipboard. I tested the copy-and-paste technique using the All In One Keylogger from RelyTec. (For more info, see the vendor’s site.) The program easily captured the sign-in IDs and passwords entered, whether I used the standard menu options (Edit, Copy and Edit, Paste) or the keyboard shortcuts Ctrl+C and Ctrl+V.
More »

If you are are the sole user of your computer and are annoyed by the Ubuntu login window during every startup, it is better to remove it. Removing the login window will not actually remove the login password, but it will just skip the step during system startup.

Note: Make sure that you do not remove the login window on a public computer.

To remove it, first go to Login Window utility from System > Administration > Login Window.

You can also load it by pressing Alt + F2 and typing gksu /usr/sbin/gdmsetup in Run Application box.

This will open the Login Window Preferences window. Now, to enable auto login, go to Security tab and check Enable Automatic Login and enter user name for your system. You can also set delay in auto login by checking Enable Timed Login and selecting time in seconds. If you enable it, your system will wait for specified number of second before logging you. More »

These are some uncommon but very useful tips tricks & hacks for windows vista to enhance the user experience in windows vista.

Enable Auto-Logon in Windows Vista (Warning: Security Risk)

a) click Start and type ‘netplwiz’ or click that name on the Start menu
b) in the GUI window that comes up, uncheck the “Users must enter a username and password to use this computer” box
c) click ‘Apply’
d) in the new dialog box that opens type the name of the account you want to auto-logon by default (if the account is not normally passworded then it blank)
e) click OK and exit.

Remove ToolTips From Showing When You Mouse Over Something

a) start > run = “regedit”
b) HKEY_CURRENT_USER > Software > Microsoft > Windows > CurrentVersion > Explorer > Advanced
c) set “ShowInfoTip”=dword:00000000
d) exit and reboot More »

Although Outlook Express was known to be rather vulnerable to online attacks, viruses and spyware, recent updates have improved Outlook Express security a lot. Considering that many use Outlook Express for e-mail and news reading, it is reassuring that Microsoft has addressed most known security holes.

As with most software though, security can be harmed when users get sloppy in how they use the software and how they configure the software. This is especially true with online applications. If you allow all kinds of content in e-mail or click every attachment you receive, no protection will be good enough.

So use good judgment when using Outlook Express to minimize your exposure to online threats. For MAXIMUM Outlook Express security consider the following tips too.

Windows and Outlook Express Updates

Regularly update your Windows XP software. Outlook Express is an integrated part of Windows XP, so any patches or updates to Outlook Express are released through Windows XP updates. If you have Windows updates set to automatic, Outlook Express will be updated as well. If you set Windows updates to ‘disabled’, then you need to manually update Windows XP. More »

The Security Development Lifecycle is in no way synonymous with Microsoft’s entire span of efforts designed to bulletproof its software products and consumer environments. An illustrative example of this is the Microsoft Security Assessment Tool 4.0. Built as the evolution of Microsoft Security Risk Self-Assessment Tool (MSRSAT) dating back to 2004 and that of the Microsoft Security Assessment Tool 2.0 dropped in 2006, the Security Assessment Tool 4.0 is a free download which will integrate seamlessly with Windows Vista, Windows XP, Windows Server 2008 and Windows Server 2003 in order to evaluate the level of risk in an IT infrastructure and provide the necessary best practices data and guidance.

“The tool employs a holistic approach to measuring your security posture by covering topics across people, process, and technology. Findings are coupled with prescriptive guidance and recommended mitigation efforts, including links to more information for additional industry guidance. These resources may assist you in keeping you aware of specific tools and methods that can help change the security posture of your IT environment. More »