Tweet
So, as I mentioned in another thread, I had been thinking about doing some local community outreach in my town. It's a small town, with a population of about 10,000. It's very rural, and about two hours from DC.
I had some ideas, and did some research, but a search on variants of the terms hacker community outreach didn't bring up anything at all actually related to this subject.
To start off with, here is an outline of what I am planning on doing.
I'm thinking a half hour to one hour presentation on Securing Your Home Computer. It will be free and put on through a local library or community center (I wanted to get the presentation at least roughed out before approaching a venue). It could also be presented at local churches. An hour would be the top most limit, as I'm well aware that would likely tax the most attentive of attendees. This would not be an indepth presentation, more of a quick and dirty how to list of making your pc as secure as possible in an hour or two. I would be providing a hand out with the outline of steps to serve for notes. The presentation would likely be PowerPoint (or rather the Open Office equivalent since I don't own Office lol).
I would consider making the slides available, but I tend to speak off of minimal slides, that are mostly just outlines. No reading off slides for this boy! The presentation would likely consist of 3 parts.
--------------------------------------------------------------------------------------------------
Part I - Why Your PC Needs to be Secure
Admittedly, the crowd that would come out to an event like this would probably already be interested in fixing their own leaky network, but it might be nice to provide some evidence that they are indeed doing the correct thing. This would also give them something to mention to friends and family when asked why they were bothering. My problem here is how to present the facts without seeming to fear monger. This is not meant to be bashing them over the head with the FEARBat. As I mentioned before, the people who come to this probably already have an idea that maybe they need to be doing more to take care of their computers. Still, a review of the various reasons why you need to lock down your computers is important.
I imagine this would start with a short interactive session, most likely with the question "Why are you here?" or "What dangers on the internet have you heard of?" This might also be a great place to dispel some myths about how viruses are transmitted online, how a computer gets malware installed (stop clicking on everything!), and what criminals can do with your identity. Of course, IANAL, so legal advice would be bad, but maybe a short survey of current law might be in order?
This part would take, ideally, 5 minutes for an interactive opener, 5 minutes to go over reasons to secure your PC, and possibly 5 minutes for some Q&A and Myth Dispelling.
Part II - How to Secure Your PC
The second part would be the nuts and bolts of the presentation. What're some things you can do to your PC that give you the most bang for your buck. I'm not talking about attempting to lock down individual ports, or installing HIDS. Simple things anyone can do. WPA2 on your wireless. Install a freeware AV and firewall. Set up automatic updates. Give out a list of online virus scanners (Housecall). Talk about a maintenance program (scandisk, defrag).
This would also include things like how to tell if an email is spearphishing. Why you shouldn't click on links on facebook or myspace. What is social engineering.
Yes, this is a LOT to squeeze into a short time, but again, it's a high lights thing.
This part would likely take about 15 minutes to go over various software that can be used to secure the PC. The focus would be on freeware or open source as much as is realistic. Another 15 minutes might be focused on anti-spam and phishing. Examples of spearphishing and social engineering calls might be made. I just read in another forum I frequent about their father getting a phone call from someone offering tech help, and gave them a list of steps to do to their computer. I doubt it was helpful information!
Part III - Maintaining Your Secure Posture
This part would be fairly short, and about the importance of maintaining the security once it has been established. Setting up automatic updates, updating AV files when available, etc etc.
This would likely only be 5 minutes.
--------------------------------------------------------------------------------------------------
There are some other things I would like to include, such as recognizing malware, how to tell if your computer has a virus, P2P problems, and/or fixing current problems (worthless to close the door after the horse is gone!). Some of these fit naturally into part II but my concern is over time.
I can hear you asking yourself, All Well and Good, Mel, but why the hell are you posting it here you scurrilous bastard?
I'll tell you! Two reasons. The first is this is an excellent place to receive feedback on the idea, and additional suggestions. In that spirit, I would highly appreciate any thoughts anyone has on this, or suggestions as to content or presentation.
The second is once I get done with this presentation, and give it a few run throughs to polish and work on it and test it out, and get some insight from others, I'd like to give it out to anyone in the community, with no restrictions on copyright or anything, who would be interested in doing something like this. Obviously this is not an original idea, nor is it a great work, but it might save someone in a Hacker Space some time they would rather spend soldering.
Thanks in advance for reading this very, very long essay lol.
Mel
I had some ideas, and did some research, but a search on variants of the terms hacker community outreach didn't bring up anything at all actually related to this subject.
To start off with, here is an outline of what I am planning on doing.
I'm thinking a half hour to one hour presentation on Securing Your Home Computer. It will be free and put on through a local library or community center (I wanted to get the presentation at least roughed out before approaching a venue). It could also be presented at local churches. An hour would be the top most limit, as I'm well aware that would likely tax the most attentive of attendees. This would not be an indepth presentation, more of a quick and dirty how to list of making your pc as secure as possible in an hour or two. I would be providing a hand out with the outline of steps to serve for notes. The presentation would likely be PowerPoint (or rather the Open Office equivalent since I don't own Office lol).
I would consider making the slides available, but I tend to speak off of minimal slides, that are mostly just outlines. No reading off slides for this boy! The presentation would likely consist of 3 parts.
--------------------------------------------------------------------------------------------------
Part I - Why Your PC Needs to be Secure
Admittedly, the crowd that would come out to an event like this would probably already be interested in fixing their own leaky network, but it might be nice to provide some evidence that they are indeed doing the correct thing. This would also give them something to mention to friends and family when asked why they were bothering. My problem here is how to present the facts without seeming to fear monger. This is not meant to be bashing them over the head with the FEARBat. As I mentioned before, the people who come to this probably already have an idea that maybe they need to be doing more to take care of their computers. Still, a review of the various reasons why you need to lock down your computers is important.
I imagine this would start with a short interactive session, most likely with the question "Why are you here?" or "What dangers on the internet have you heard of?" This might also be a great place to dispel some myths about how viruses are transmitted online, how a computer gets malware installed (stop clicking on everything!), and what criminals can do with your identity. Of course, IANAL, so legal advice would be bad, but maybe a short survey of current law might be in order?
This part would take, ideally, 5 minutes for an interactive opener, 5 minutes to go over reasons to secure your PC, and possibly 5 minutes for some Q&A and Myth Dispelling.
Part II - How to Secure Your PC
The second part would be the nuts and bolts of the presentation. What're some things you can do to your PC that give you the most bang for your buck. I'm not talking about attempting to lock down individual ports, or installing HIDS. Simple things anyone can do. WPA2 on your wireless. Install a freeware AV and firewall. Set up automatic updates. Give out a list of online virus scanners (Housecall). Talk about a maintenance program (scandisk, defrag).
This would also include things like how to tell if an email is spearphishing. Why you shouldn't click on links on facebook or myspace. What is social engineering.
Yes, this is a LOT to squeeze into a short time, but again, it's a high lights thing.
This part would likely take about 15 minutes to go over various software that can be used to secure the PC. The focus would be on freeware or open source as much as is realistic. Another 15 minutes might be focused on anti-spam and phishing. Examples of spearphishing and social engineering calls might be made. I just read in another forum I frequent about their father getting a phone call from someone offering tech help, and gave them a list of steps to do to their computer. I doubt it was helpful information!
Part III - Maintaining Your Secure Posture
This part would be fairly short, and about the importance of maintaining the security once it has been established. Setting up automatic updates, updating AV files when available, etc etc.
This would likely only be 5 minutes.
--------------------------------------------------------------------------------------------------
There are some other things I would like to include, such as recognizing malware, how to tell if your computer has a virus, P2P problems, and/or fixing current problems (worthless to close the door after the horse is gone!). Some of these fit naturally into part II but my concern is over time.
I can hear you asking yourself, All Well and Good, Mel, but why the hell are you posting it here you scurrilous bastard?
I'll tell you! Two reasons. The first is this is an excellent place to receive feedback on the idea, and additional suggestions. In that spirit, I would highly appreciate any thoughts anyone has on this, or suggestions as to content or presentation.
The second is once I get done with this presentation, and give it a few run throughs to polish and work on it and test it out, and get some insight from others, I'd like to give it out to anyone in the community, with no restrictions on copyright or anything, who would be interested in doing something like this. Obviously this is not an original idea, nor is it a great work, but it might save someone in a Hacker Space some time they would rather spend soldering.
Thanks in advance for reading this very, very long essay lol.
Mel
My business and the association will be the co-sponsors. The presentation will be geared toward the small business owner in the area, but home computer users will be welcome, too. One of the local banks has even offered to hand out fliers to all their SMB customers. 
Comment