Cable Forum - View Single Post

Anonymouse · 08-05-2012, 18:06

This may be slightly O/T since it's not about the router per se, but given that we're talking about parental controls...

How many user accounts do you have on the PC? If there's only one, i.e. the Administrator account, you may end up with all sorts installed on there - malware, trackers, the lot. Being a teenager, your son doubtless spends time on download sites...some of which, sad to say, are infested with spyware and other junk. Prominent examples are Kazaa, Limewire and BearShare. If you're using an Admin account, these things can quietly install themselves without ever letting you know. All the splash screens you see when installing commercial software, e.g. Microsoft Office, don't have to be there; they're just to let the user know where the installation process is up to and/or extol the virtues of the software and/or advertise other software from the same company, and they're not part of the actual installation process - more of an optional extra. Malware doesn't do this.

The best way to guard against this is to have one admin account - which should not be used for Internet access, only for installation of new software and PC maintenance, and only one person (you, obviously, duh!

) should know the password - and a number of user accounts, i.e. accounts that don't have installation privileges. That stops most malware in its tracks, apart from some very sophisticated ones that do a little trick called privilege elevation. These, however, are rare, and an effective firewall/AV package will usually intercept them.

You can in fact set policies in Windows XP and above to determine what users can and can't do - for example, on the PCs in my local library we can't even access the Control Panel or change the screen resolution - and I suppose you could set up a policy to only allow Internet access at certain times. I don't know how to do it, mind,

but I'm pretty sure it can be done. Needless to say, policy editing can only be done from an admin account, and should only be attempted by someone who's fairly expert.

Hope that helps!

08-05-2012, 18:06	#21
Anonymouse RIP Tigger - 12 years?! Join Date: Jul 2005 Location: Bolton Age: 59 Services: EE Superfast Broadband Posts: 1,566	Re: parental controls dilemma :o( This may be slightly O/T since it's not about the router per se, but given that we're talking about parental controls... How many user accounts do you have on the PC? If there's only one, i.e. the Administrator account, you may end up with all sorts installed on there - malware, trackers, the lot. Being a teenager, your son doubtless spends time on download sites...some of which, sad to say, are infested with spyware and other junk. Prominent examples are Kazaa, Limewire and BearShare. If you're using an Admin account, these things can quietly install themselves without ever letting you know. All the splash screens you see when installing commercial software, e.g. Microsoft Office, don't have to be there; they're just to let the user know where the installation process is up to and/or extol the virtues of the software and/or advertise other software from the same company, and they're not part of the actual installation process - more of an optional extra. Malware doesn't do this. The best way to guard against this is to have one admin account - which should not be used for Internet access, only for installation of new software and PC maintenance, and only one person (you, obviously, duh! ) should know the password - and a number of user accounts, i.e. accounts that don't have installation privileges. That stops most malware in its tracks, apart from some very sophisticated ones that do a little trick called privilege elevation. These, however, are rare, and an effective firewall/AV package will usually intercept them. You can in fact set policies in Windows XP and above to determine what users can and can't do - for example, on the PCs in my local library we can't even access the Control Panel or change the screen resolution - and I suppose you could set up a policy to only allow Internet access at certain times. I don't know how to do it, mind, but I'm pretty sure it can be done. Needless to say, policy editing can only be done from an admin account, and should only be attempted by someone who's fairly expert. Hope that helps! __________________ "People tend to confuse the words 'new' and 'improved'." - Agent Phil Coulson, S.H.I.E.L.D. WINDOWS 11, ANYONE?!