A rumor once went around that netbooks were too feeble and underpowered to run security software. While it’s true that the Intel Atom or VIA C7 processors aren’t quite as robust compared to say, an Intel Core i7 processor revving under the hood of a desktop machine, netbook processors are more than capable of running antivirus and other protective software.

One of the reasons for the netbooks-can’t-run-AV rumor was security software’s well-earned reputation for hogging up system resources. Some security suites were so bloated, they dragged down the performance of even the most high-powered machines. Recently, though, security software companies got the message and made their programs more compact and efficient.

Your netbook may come with a trial version of an antivirus program like Symantec’s Norton Anti-Virus 2009 (www.symantec.com). Remember, since new viruses appear every day, it’s important to update your antivirus software frequently. If you like the software that came with your netbook, fine. If not, don’t hesitate to find one that you like enough to use regularly.

Most companies offer free trial versions of their programs by download so you can see how they get along with your netbook. You can also find free antivirus programs that may not update themselves as frequently, but they’re still better than nothing.

When shopping for an antivirus product, check to see if it comes in a netbook edition. Suites like Kaspersky Security for Ultra Portables ($40 at www.kaspersky.com) were designed especially for small computers.

Other lightweight guard dogs include:

Compared to Windows, Linux has relatively few viruses gunning for it. Some gurus pooh-pooh even installing an antivirus program on a Linux system. Others are more cautious and point out that an antivirus program on a Linux computer can at least stop the machine from passing on viruses caught from Windows machines.

If you want to install an antivirus program on your Linux netbook, ClamAV (http://clamav.org) is one that’s free and available to download from the Ubuntu software repository. Regular ClamAV is a command-line program, though, so if you don’t feel like typing a bunch of arcane stuff in the Terminal window, there’s the ClamTk program (http://clamtk.sourceforge.net) instead—ClamTk is a graphical version of ClamAV and easier for Linux newbies.

Installing and running ClamTk

To install ClamTk, choose Applications→Add/Remove and search for ClamTk. When the results come in, turn on the checkbox next to ClamTk and click Apply Changes to install it. (You can also get ClamTk or ClamAV by choosing System→Administration→Synaptic Package Manager and searching for them, although the Add/Remove feature is easier.)

After you install ClamTk, choose Applications→System Tools→Virus Scanner to run it. Just to be on the safe side, you may want to check to make sure the Clam’s list of current viruses to spot is up to date; choose Help→Update Signatures.

If you get a snotty message from Ubuntu saying you need to be logged on as root (the all-powerful user described on Adjusting the Mouse), before you can update ClamTk’s signature files, you need to do a little command-line work to get permission. Choose Accessories→Terminal. Type in gksu clamtk and hit Enter; type your Linux system password when prompted. Now, when you go back to ClamTk and choose Help→Update Signatures, you won’t get any back talk. To have ClamTk automatically quarantine any viruses it finds, choose Options→Quarantine Infected Files.

To scan the Home directory on your netbook (or just a file or folder), choose an option from ClamTk’s File menu. To thoroughly scan a folder and all its subfolders, choose File→Recursive Scan and point ClamTk to the folder in question. Deep scans may take a while, but the program’s progress bar keeps you up to date.

If ClamTk finds a virus, it lets you know about it in the Status column. If you’ve chosen to quarantine suspicious files, choose Quarantine→Maintenance to see the corralled files. If you’re not sure that a file might be a virus, look up its name on the Web or in a virus encyclopedia like http://threatinfo.trendmicro.com/vinfo/virusencyclo. If the file in question is a virus, click the Delete button. If ClamTk finds a file you know isn’t a virus, click the False Positive button so it doesn’t find the file again on your next scan.

Note

ClamAv and ClamTk aren’t your only Linux options. Panda Security (www.pandasecurity.com) and F-Prot Antivirus (www.f-prot.com) both have commercial software for Linux systems. Avast has a free Linux home edition as well; details are at http://avast.com/eng/avast-for-linux-workstation.html.

The original edition of Windows XP had a firewall tucked inside, but it was turned off and many people couldn’t even find the darn thing to turn it on. Fortunately, from Windows XP Service Pack 2 onward, the firewall comes turned on, and it’s much easier to find. To see it, choose Start→Control Panel→Security Center. (If you’re using the Classic view of the Control Panel area, choose Start→Control Panel→Windows Firewall.)

The Security Center control panel has icons to click to open settings for the Windows Firewall, Automatic Updates (Other Security Software for Netbooks), and Internet Options—a collection of settings for your netbook’s web browser and network connections.

In the Windows Firewall control panel, you can see which programs have permission to go through the firewall by clicking the Exceptions tab. A list of programs appears. If you need to add an exception or open a port for a particular program (like a multiplayer game that needs a specific port to play through), click the Add Program or Add Port buttons to set things up—check the software’s settings guide for any ports that need opening. Microsoft has further instructions for using Windows Firewall at http://support.microsoft.com/kb/875356.

Windows Firewall is not the most intuitive software and it’s been criticized for only blocking incoming—but not outgoing—traffic. If you want a more robust gatekeeper, consider a commercial firewall program or at least a more versatile freebie like Check Point’s free version of the Zone Alarm firewall at http://bit.ly/OBr4S.

Linux was designed with security in mind and includes a firewall called IPTables tucked away deep in the system. The Ubuntu Community site has a page that explains how it works at https://help.ubuntu.com/community/IptablesHowTo, but the program is command-line driven, which may not be your thing.

A graphical-oriented program like Firestarter makes it easier to manage the firewall and its rules. To install it on Ubuntu, choose Applications→Add/Remove, search for Firestarter, and install the program as described on Adding and Removing Programs.

After you install the software, choose System→Administration→Firestarter. When you run the program for the first time, a Windows-like wizard appears on the scene to walk you through the setup procedure. The wizard will ask a few things, including:

When you get to the last screen, make sure the “Start firewall now” checkbox is turned on and click the Save button. Once you start the firewall, it runs quietly in the background in a secure mode.

To see Firestarter in action, choose System→Administration→Firestarter. The three-tabbed box shows you the Status (the network activity), Events (connections the firewall has blocked), and Policy (where you can set up rules for special programs that need to get through the firewall).

You may not ever need to set up any policies for programs in Firestarter, but if you do, the program has thorough documentation on how to do it at www.fs-security.com.

With Windows XP, you need to be on guard for spyware. These sneaky software chunks can infiltrate your computer by being bundled with a game or program you install—or by more insidious means. Spyware can do everything from compromising your system’s security to slowing your computer to a crawl. If you’re not using a security suite that includes an antispyware program, you can find help either through a commercial program like Webroot’s SpySweeper ($30 at www.webroot.com) or through a freeware fix.

For spy-stomping on a budget, consider Spybot Search & Destroy (www.safer-networking.org), LavaSoft’s Ad-Aware Free (lavasoft.com), or Microsoft’s own Windows Defender (www.microsoft.com/defender). Once you install an antispyware program, start it and have it hunt down the unwanted software that’s invaded your netbook. You’re typically presented with a list of intruders after the program sweeps the system, with the option to delete the pests.

Your web browser (probably Internet Explorer or Firefox since you’re on a netbook) also has some security settings you can adjust to protect yourself better online. Among other things, you can block pop-up windows, potentially harmful web-page scripts, and unwanted cookies. The CERT site for computer security also has an in-depth list of browser security tips at www.cert.org/tech_tips/securing_browser.

Internet Explorer

Choose Tools→Internet Options and click the Security tab. Click the Internet icon and push the slider to High for maximum security. This setting may disable the features of certain websites, but makes for a safer browsing experience.

Click the Trusted Sites icon and then click the Sites button to add the addresses of websites you know and trust—ones you visit regularly, like a newspaper website. (You can set the slider to Medium security for sites you trust.)

Click the Privacy tab in the Internet options box and then click the Advanced button. This leads to the controls to block cookies, those little bits of text a website leaves with your browser. While cookies can be good (they’re why Amazon.com welcomes you back by name), they can also let villains track your movements from site to site. Blocking third-party cookies—ones that comes not from the sites you visit, but from any ad agencies working with them—can help maintain more privacy.

You can also choose to block pop-up ads by turning on the checkbox at the bottom of the Privacy tab. Internet Explorer’s Tools menu also has options to block pop-up windows and turn on a phishing filter to warn you against sites trying to phish, or dupe you into entering personal information by disguising themselves as legitimate business websites.

Firefox

To dump cookies and other personal information that may have accumulated during a surfing session, choose Tools→Clear Private Data. A box pops up with a list of personal tidbits you can dump out of Firefox’s memory, including cookies and your browsing history.

If the box doesn’t pop up, choose Tools→Options→Privacy, or Edit→Pref-erences→Privacy in Linux. In Private Data, click the Settings button to see all the things you can dump. Turn on the “Ask me before clearing private data” checkbox if you want Firefox to ask you what data to flush each time.

For extra protection from malicious scripts embedded in evildoers’ web pages, there’s a Firefox add-in called NoScript that shuts down rogue code. You can get it at http://noscript.net. Running it may hamper normal scripts on many legitimate websites, so NoScript lets you give your familiar, trusted sites permission to use their scripts with a click.

Out of the box, Firefox has pop-up window blocking turned on. It lets you know when it’s blocked a new window by displaying a message just below the browser toolbar. If you want to let the window open, click the Options button in the message bar and choose the option to allow pop-ups from that site.

Tip

If you’re entering credit card numbers or other personal information into a website, make sure it’s a secure site. Secure sites, which encrypt your data when you send it over the Web, usually have URLs that start with https:// instead of http:// and often feature a lock icon at the top or bottom of the window.