RuneScape Forum Archive | Uncle Arch's Security Corner

T Board

Posts: 1,300 Mithril Posts by user Forum Profile RuneMetrics Profile

1) All the virus and malware checks should be firstly done when you're not connected to the Internet

2) Something I posted on someone's post -

@Ctrl+Alt+Delete to open the Task Manager, click on processes and then start checking each of the name (for example wlcomm.exe) over the Internet.

Usually the trojans/viruses etc. have the similar names to any Windows process (for example iexplore.exe is Windows Internet Explorer but iexplorer.exe is a a malicious program).
@

21-Feb-2011 13:45:44

Dec

2011

Archaeox

Forum Moderator Posts: 53,398 Emerald Posts by user Forum Profile RuneMetrics Profile

Nice one, ta muchly.

~~~~ Just another victim of the ambient morality ~~~~

~~ Founder of the Caped Carousers quest cape clan ~~

!! Slava Ukraini - heroyam slava !!

21-Feb-2011 15:27:25

Bunny Kick

Posts: 14,188 Opal Posts by user Forum Profile RuneMetrics Profile

Thank you for putting this thread together. You should put it in the public forums (if you haven't already) and are you ok with other clan leaders cut and pasting it to their own offsite forums?

21-Feb-2011 15:40:05

Dec

2011

Archaeox

Forum Moderator Posts: 53,398 Emerald Posts by user Forum Profile RuneMetrics Profile

Once we have some more ideas together, I may well re-post in the public forums!

Meantime, as the first post says, ""anyone with access to this forum is free to copy this advice to their members via the RS forums, offsite forums or in any other way they see fit.""

Obviously, some attribution would be appreciated if you do

~~~~ Just another victim of the ambient morality ~~~~

~~ Founder of the Caped Carousers quest cape clan ~~

!! Slava Ukraini - heroyam slava !!

21-Feb-2011 16:55:15 - Last edited on 21-Feb-2011 16:55:55 by Archaeox

Nov

2023

Gluepot

Posts: 4,315 Adamant Posts by user Forum Profile RuneMetrics Profile

Very useful I've passed it onto my clan's offsite.

Ho Ho Ho!

The Imperial Legion

21-Feb-2011 16:56:00

Draziw

Posts: 10,983 Opal Posts by user Forum Profile RuneMetrics Profile

Could be helpful to mention some of the preventative options Jagex offers (name changing, password changes often, how to setup recovery, registering email)

As well as the process of recovering an account if something has happened.

21-Feb-2011 17:20:25

Mr Kindheart

Posts: 2,410 Mithril Posts by user Forum Profile RuneMetrics Profile

Just adding onto what's already turning into a lovely guide: There should be a section with tips to make strong passwords.

Just some of the ones I frequently tell others:

Try making an acrostic word poem which is meaningful to you so that you can remember it easy (try to incorporate numbers if you can)

Eg.

I
Had
Lots
Of
Fun
At
My
15th
Birthday
Party

Which then turns into a password of IHLOFAM1BP.

Another method is to incorporate a series of meaningful random numbers.

For example:

Joe Bloggs:
Driver's license no.: CI2368
Student ID: KO59707
Address: 123 fake street

You can make various combinations out of this that no one can guess. One simple one being: CI2368FakeKO59707

Yet another method is to simply pick up a keyboard/mouse or something within reach and use the unique serial number, or combination of as your password. This means if you forget it you can easily find it and no one else can accidentally stumble upon your password (like they can if you write it on a piece of paper for example).

Also, adding on to this point:
"* Don't use easy-to-guess passes or recovery questions "

Wouldn't hurt to emphasise that your recovery questions should be unique to you, not something that your friends could guess.

Also, in addition to this in "Step II: recover the account ":
"* Recover the account if necessary
* Change the pass
* Get a new bank PIN "

Maybe chuck in reset recovery questions too, it doesn't hurt to give your account a new bill of health after it's been hijacked.

22-Feb-2011 04:58:05 - Last edited on 22-Feb-2011 05:04:22 by Mr Kindheart

Mr Kindheart

Posts: 2,410 Mithril Posts by user Forum Profile RuneMetrics Profile

Finally, just might want to change this part:

Use your RS login details on any other website, and there's a danger that either the owner is logging them, or that the site is compromised by a hacker who will steal them. You may trust the site owner... but you have NO WAY of verifying their back-end site security!

Whilst completely correct, I think that it should be written with a negative stance, eg:

NEVER use your RS login details on any other website as there is a danger that either the owner is logging them, or that the site may be compromised by a hacker who will steal them. You may trust the site and site owner... but you have NO Way of verifying their back-end site security!

22-Feb-2011 05:07:13

Mr Kindheart

Posts: 2,410 Mithril Posts by user Forum Profile RuneMetrics Profile

I may have said finally last post, but I just realised there's nothing on password scams etc.

You could go through a list of scams such as "Jagex Password checks", "You've been selected to be a Moderator" and "Free Membership" (plus others I can't think of right now).

22-Feb-2011 05:25:12

Dec

2011

Archaeox

Forum Moderator Posts: 53,398 Emerald Posts by user Forum Profile RuneMetrics Profile

Thanks for the suggestions all, I'll work them into the front page later today

More, please!

~~~~ Just another victim of the ambient morality ~~~~

~~ Founder of the Caped Carousers quest cape clan ~~

!! Slava Ukraini - heroyam slava !!

22-Feb-2011 07:46:59

Forums

Uncle Arch's Security Corner