Be a Smart Internet User
Take care of your office PC and home PC
- Use a strong password for your PC Windows log-on, e.g. over 8 characters long mixed with alphabets, numbers and special characters. [ Show me ]
- Change your passwords regularly.
- Set Windows Update to "Automatic". [ Show me ]
- Turn on Windows Firewall. [ Show me ]
- Install anti-virus and anti-spyware software and turn on automatic update. [ Show me ]
- Turn on System Restore and create manual restore points regularly. [ Show me ]
Notes on using Wireless Router at home
- Change the default administration password.
- Change the default SSID/ESSID name.
- Use wired connection whenever possible.
- Configure your router to allow only your home PCs to connect to it (by adding hardware addresses of your PCs' wireless LAN card to the exceptional/allowed list).
- Configure the router to use WPA2 encryption with a strong password.
- Do not send sensitive information (such as buying online, using e-banking, and etc) with wireless connection if WPA2 encryption is not enabled.
Use E-mail with care
- Do not open attachments from unknown user/source or with extension .bat, .chm, .cmd, .com, .exe, .hta, .ocx, .pif, .scr, .shs, .vbe, .vbs, or .wsf.
- Do not respond to spam, even to "unsubscribe". [ See example ]
- Do not click on the links embedded in an email, especially to the websites related to sensitive information, such as e-banking, eBay, PayPal, etc.
- Do not respond to emails asking for updating accounts' information, such as password.
- Do not send sensitive information through Email without proper encryption.
- Do not send Email that would violate the Law or with undesirable contents – infringing, harassing, irritating etc.
- Turn on junk mail filter of the university (or of the service providers if you are using external email services) to filter off possible ill-intent Email.
- Report to the university if you suspect a Email that has violated the University IT policy or will cause damage to the University.
- Report to the police if you received a Email that might have violated the Law.
- Look out for Email targeted to cheat recipients through social engineering techniques.
Use Web with care
- Use unique user ID and password for e-banking and secure services alike, i.e. never use e-banking user ID and password for any webmail and news group account, or vice versa. [ More on password ]
- Verify a web site by its digital certificate. [ Show me ]
- Enter sensitive information only on secure pages (https).[ See example ]
- Do not download and/or run applications from unknown source.
- Do not respond to advertisements on websites. [ See example ]
- Turn on Pop-up Blocker and set security to Medium High in the browser settings. [ Show me ]
- Ensure your browser has got the latest security patch.
- Look out for phishing web sites.[ More ]
- Don't provide sensitive information to unfamiliar social sites. Don't share and protect your personal information supplied in a social site.
Notes on using Public PCs e.g. in i-cafe, airport and station
- Reboot/restart a Public PC both before and after use.
- Don't send sensitive information, such as provide credit card number to buy online, using e-banking, etc.
- Remember to logoff properly if you have login webmail, portal etc.
- Clear all browsing history (including temporary files, cookies, and web form information) before you leave. [ More]
IT.ServiceDesk@cityu.edu.hk