lecajef - please, send any links in pm. Otherwise they get removed as they are "commercial sites". Also, please make them tech links only. Thanks.

lecajef - s'il vous plaît, envoyer des liens dans h. Sinon, ils sont supprimés car ils sont "des sites commerciaux". Aussi, s'il vous plaît faire des liens techno. Merci.

Gloups ! Sorry DrJBHL,

How to send you links within (h) hour or to make techno links?

Saddened for my ignorance.

Thank you

DrJBHL,

Do you receve the private message?

I knew that!

 you are sure...

Reading these, I always look for that great something that I missed.  Sometimes I find good things, but so far, no killer app or advice.  In other words, I am already paranoid!  Guess that helps in today's computer world.

Glad you haven't missed anything, Dr Guy. Sorry - no killer app.

@ lecajef - yes i received your pm and don't worry. it's ok...

@ WG - i know that.

NSA http://www.nsa.gov/about/mission/index.shtml

NSA is working with NIST to create SCAP
 http://www.afcea.org/signal/articles/templates/Signal_Article_Template.asp?articleid=2353&zoneid=300

The U.S. Defense Department, National Security Agency (NSA) and the National Institute of Standards and Technology (NIST) were the primary drivers behind creating SCAP. Brought down to their bare bones, the standards establish common enumerations for software flaws, security-related configuration issues and product names. This seemingly simple piece of common sense helps agencies that are working together to understand each other’s languages when describing details of the same information security problems.

Although the government initially had received some pushback from industry, many companies now understand that if they are going to be part of the cyber ecological system, products and tools need to be able to speak to each other using a common language. “Although it is not a delineated requirement, it has become apparent that if you want to sell products in the DOD environment, then your product has to speak this language, or I can’t afford to have you in our group,” Sager explains.

NIST Computer Security Publications

yea, I get a little "paranoid" when a spy agency is allowed to write code for my OS.

 http://gawker.com/5409368/microsoft-let-nsa-spooks-enhance-windows-7

Marc Rotenberg, the executive director of the Electronics Privacy Information Center (EPIC), expressed his concern as the NSA has an interest in surveillance as as a part of its efforts in security.

"The key problem is that NSA has a dual mission, COMPUSEC, computer security, now called cyber security, and SIGINT, signals intelligence, in other words surveillance," Rotenberg said in an e-mail.

Also an unrelated interesting snippet about the owners of PC Magazine 

The platform collects, scores and analyzes data sent by Web site code snippets to BuyerBase. The technology identifies activity related to search queries, product codes and model numbers, and how often site visitors interact with the content. The platform identifies patterns to connect consumers with ads. Some of those actions include viewing product reviews and prices. 
Once the platform collects the information on patterns it pings ad networks, exchanges, portals and publishers across the Internet to bid on ad inventory. http://www.greathillpartners.com/index.php/news/view/113

All this post was for was to help folks secure their computers.

How do you know they have not been doing it all along?

It shouldn't take an authority figure to announce to the public that a spy agency writes code for Operating Systems.

It is common sense, and virtually everyone should not feel the least bit bothered by this.  I mean, what else would we expect?

Of course they are listening and they have ways to see our online activity.  They always have, and they always will.

And for the NSA to offer the public ways to "protect" our computers only goes to show how ignorant they think the public is and how gullible we might be to believe them.  Private security is a threat to the NSA.  They won't be helping out anyone in ways that would only render incompetent their devices, techniques and technology.

-.- 

Yes, Dr JBHL is/was trying to be helpful.   And i appreciate this.. thank you Doc.   Dr. Guy may also be right that 'spy' (or suvrillance) groupings may be getting into the code writing of OS's.  The OS writers, themsleves ALSO work for/ belong to corporations ('cept linux?)  so, aren't they doing 'commerical' surveliance?  Consider this:  I feel strongly that any entity, company, software seller, etc., that uses info gained from 'watching' what I do, buy, check price of etc., recording same, and marketing that info to others IS doing survaliance  ... just the corporate variety rather then the governmental variety  ... so Dr Guy does have a valid concerrn -  and I am glad he raised it.  Its the same dance, with a different tune.  And the two groups do/will work together given the extent to which (some) corperations have captured control of significant portions of the "government."

All that notwithstanding, I would love to hear (errr read) what my more knowledgable forum (most of you. LOL!) posters have to say about the tools Dr JBHL mentioned when he started this thread.  Like, should I be downloading the info for the links, and implementing the  suggestions to make my PC a little safer?   And i so, which ones?  What are the experieces people have had, who have actually tried to implement what Dr. JBHL Suggests?  Please give us a heads up before we wade in....

The emoticon was meant to convey sarcasm.  I have no idea or opinion on the matter.

Here's where the NSA link took me (toolkit for Windows 7): Microsoft's Technet. A veritable den of ex KGB (now FSB) agents, GRU hangers on and CIA, DIA, NSA fellow travellers. Spy vs. Spy. Here's a screen shot:

Dr guy, sorry, I guess i didn't get it as sarcasm... my bad.  I agreed with what i thought you were saying, and i wanted to be intentional in expressing my thanks to you. (just cause I disgree with you elsewhere doesn't mean I always disagree with you... nor does it mean I can't learn from you, nor be appreciative for what i do learn from you... was my attempt to build on what I perceived as common ground between us).

Doc JBHL, the link you are hoping we all will discuss and explore is  'infrastructure planning n deaign,'  "MS assessment and planning tool,' and 'MS Operations framework.'

Basically, for someone running XP, and not running office 2010, that means that only the IE 8 pack has possible tools to enhance that PC's  security, yes?  Thank you Doc.