CASEScontact - solutions, tools & skills against latest security, cybercrime, hacking & malware threats

What's up?

Real life scenario

Internet & PC scenario

What is the threat or vulnerability?

Well, it is maybe similar to getting your dream house.

Unless you take some time and look at the drawings your architect or builder came up with, you might be surprised what you get. Put more negatively, what if you thought you would get a house with 3-bedrooms for your children but the architect came up with a one bedroom house and a huge living room isntead? So where will your children sleep and what about that spare bedroom for when your in-laws are visiting?

Accordingly, it is smart to:

talk to your builder about the plans,

read some pertinent magazines about the dos and dont's,

have a look at some houses previously designed by your architect -- how do his or her ideas look when put into practice?

Imagine something goes wrong, such as for no apparent reason your PC's wireless card can no longer detect the wireless networks available.

Even installing a new wireless card shows that the technology works but you cannot get an internet connection.

Hence, the Windows Operating System has to be re-installed. Because everything is on C drive, all data will be lost which, thanks to a back-up is not a problem. However, all other programs installed will also have to be re-installed.

Bottom line, plenty of time is being lost to fix the operating system and re-install programs and files thereafter.

Hence, it is smart to:

partition your hard disk into four areas to increase speed and security,

read this tip on how you should do it properly so no disk crashes or files get lost forever,

and see what the pro's experience with software packages helping with this important task, before choosing the wrong one.... since it does coes a few Euros -- not as much as you spend building a house of course ;-)

Problem & Solution

What does it mean to me? Am I vulnerable?

A) Threat is always real -- because Windows has to operate with so many gadgets and software packages -- some estimate over 40,000 - quite a feat in itself. Accordingly, the likelihood that one or two things might go wrong for no apparent reason is always real.

B) Vulnerability of the operating system of going bust exists, fortunately, the average user may not experience the problem more than once in 2-3 years.

C) Impact can, however, be quite severe. One reason is that the hard drive is usually just made up of one one partition (usually called C drive). Unfortunately, a Windows problem could require a re-install procedure that may easily take most of a day to accomplish. What is worse is that all other programs have to be re-installed as well.

Finally, re-installing means all data is lost unless you have a backup of all data, media and other files that is very recent indeed.

If I fix the problem - will it help me?
How

Nowadays, people partition drives for two reasons:

1) to support multiple operating systems (e.g.,Linux and Windows),

2) to use disk space more efficiently,

3) to reduce the risk for headaches in case of a disaster (e.g., re-installing Windows on PC after having used it for some time).

Partitioning a hard drive can make the system easier to manage, back up, and troubleshoot in case one must re-install Windows, everything is erased on that particular portion of the hard drive only --C -- and not the rest. Hence, besides backing up data frequently to another medium, partitioning also helps to reduce the risk of data loss due to operating system or software problems.

Judicious use of hard drive partitions can also optimize drive and operating system performance.

How can one describe the solution?

If the new PC or hard drive arrives it probably already has Windows pre-installed. Furthermore, the computer manufacturer will have already set up disk partitions on the new hard drive coming with one's new PC or notebook.

But two partitions on a drive are not enough (see also above section for an explantion) (check out TIPS 1-3 below for improving risk management regarding one's hard disk).

Does Microsoft offer me a solution?

Yes, Windows has a solution as outlined below in Tip 1.

If you wish more detailed and in-depth information about the partitioning issue you may want to check out this link:

http://www.webtechgeek.com/How-to-Partition-a-Hard-Drive-Windows-XP.htm

If you want basic non-techie information on some technical aspects and how it works in Windows, without making it techie, see here - REALLY nicely done by Microsoft:

http://support.microsoft.com/default.aspx?scid=kb;en-us;313348

Where can I get more help?

There are a some step-by-step explanations below in Tips 1-3 and the Tidbits 1-3, please check them out first for a an easy to follow explanation without technical mumbo jumbo on how you can partition your hard drive

What is the solution to this problem ?

Tip 1		Purchasing a new computer means one is already getting a hard drive that is partitioned. Usually such a 'new' hard drive comes with 2 partitions C and F. But two partitions are usually not enough to play better safe than sorry. However, you can check if there is some unallocated space available by following this procedure: To partition a new hard drive (the default is NTFS), one uses the Disk Management tool, a tool that comes from the old work-horse Windows 2000. To run Disk Management Tool: 1) click on Start, 2) right-click My Computer, and 3) select Manage from the menu that appears, 4) Computer Management window, will come up, thereafter 5) click the Disk Management item listed underneath the Storage heading, and 6) the main Disk Management pane will come up in the right side of the Computer Management window. 7) Unallocated space appears as an Unknown Partition in the Disk Management diagram. This space can now be used to create a new partition in some or all of the space. 8) To create a new partition, one needs to right-click on the part of the diagram that represents the unallocated space, the unallocated space has a black stripe running along the top and then choose the "New Partition" on the menu that appears. 9) The free space has a light green strip along the top, right-click on the free space then choose New Logical Drive from the menu that appears. Now the New Partition Wizard comes up and needs to be used to create another partition.

Tip 2		Unfortunately, when one gets the new PC, all space has already been allocated to C and D most likely. However, this is usually not enough to carefully manage the drive. But within less than 1 hour doing one's dishes and/or watching the news while Windows does most of the work for you -- one can choose between two options to get more partitions to better manage one's hard drive as outlined below: 1) re-installing the Windows operating system, doing as follows: you will either get a complete Windows Operating System CD or a bootable CD -- depending on the manufacturer of the notebook/hard drive, just take the OS CD orthe bootable one, insert it into the CD drive -- the system will ask if it should re-install the OS , click on S, and the system will start re-installing from the CD and in this process, it will ask for partitioning, when it asks for disk partition, select partition disk option, and, as importantly, when it asks for which file system to use on the hard disk - choose NTFS not FAT/FAT32 (see also Tidbit 2 below for more info). 2) Purchasing a commercial package to partition the hard drive without having to re-install Windows XP nor loosing data. Link for technophics - partitioning hard-drive the easy way !!! (see below) http://security.weburb.dk/frame/show/news/3606 2) Doing it like a geek for free is also a possibility: Please use this link only if you know DOS. http://security.weburb.dk/frame/show/news/3607

Tip 3		Regardless if one chooses to re-install Windows or circumvents this issue by having purchased a vendor's program, one must decide: A) How many partitions to make (choose 4 - C, D, E, F)(more than 4 partitions will not work in Windows, unless your computer has two hard-drives installed or another techie feature just try partitioning more than four - the partitioning program will let you know if it works - but also consider rarely do you need more than four partitions on your hard-drive, and B) How much hard disk space to allocate to each partition (see below for a step-by-step suggestion). Always label the partition by typing a name indicating what you will use it for. For instance, with a 60GB hard drive , one could partition the drive as follows: C - 10 GB partition for Operating System (e.g., Windows and Linux, 1GB is the minimum for Windows and its temporary files); D - 15 GB partition for Software packages (e.g.,printer, scanner, e-mail, Windows Office or Open Office, and web browser such as Opera, or Firebird) - do not underestimate how much space you need to install all the programs you need over the life-time of the PC; E - 15 GB partition for Work (e.g., Word documents, or the my documents folder); F - 20 GB partition for Miscellaneous/Other (e.g., digital images, MP3 files, games);

Take another 2 minutes - More tricks to safeguard your information better

Tidbit 1		Windows XP doesn't provide a way to resize partitions later, however, one can can use a third-party program to do so. For more see here: http://security.weburb.dk/frame/show/news/3606 Before working with partitions and drives, be sure to back up the important files on your system.
Tidbit 2		The Disk Management program replaces the Fdisk program that was part of previous versions of Windows. The default file system on the hard disk is NTFS (recommended). Using FAT32 is not recommented. NTFS has: - better security features, - better recovery capabilities after a major crash, and - a file-level compression built in. NTFS will also give you the option of enabling compression.
Tidbit 3		It is likely that you back up partition's E - Documents F - Miscellaneous of a hard drive. So even if something happens on those portions of the hard drive you may not be inconvenienced much. However, partitioning the hard drive as suggested above will help in reducing the chances for a disaster. As importantly, this approach enables you to manage the risk better of loosing important information while, still saving time in case a disaster strucks. For much more info including technical details you can visit this page: http://www.microsoft.com/windowsxp/using/setup/expert/russel_october01.mspx
Watch out		Formatting destroys the data in the areas of the disk it partitions. Accordingly, a backup copy of all the information on a disk should be made before formatting a drive or partitioning it. In case of a newly purchased computer, this is less of an issue since one has not yet put any data on the system's hard drive. What can also happen is that you suddenly no longer have access to a drive/path (e.g., F) and it is shown with a * only. Here you need to go into the Windows Computer Management system and give the Drive Letter and Path a name different from , such as F or J by right clicking on that or volume. If you need help to find the Windows Computer Management feature, no problem, step-by-step here: http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/dm_active_partition.mspx Issues to Keep in Mind 1) Please remember that in some instances, the Product Recovery Disk (e.g., Toshiba or Sony) makes it so easy or 'user-friendly' to re-install Windows that you are not even given the option to choose how many partitions you want to have .... done automatically. 2) Generally you cannot have more than four partitions on the drive with Windows XP, unless you are a geek... in some instances it works with more. Nonetheless, four partition is plenty to work with and leaving a part as unassigned free space is okay. One can then assign that space lateron. 3) Take 2 hours during which you are uninterrupted by other work, children or something else, to carefully plan about and execute the partitioning of your new hard drive. 4) Please remember when partitioning your hard drive, you can have one partition as active only. This is the partition the system tries to boot from when you re-start the next day, so put as active the 10 GBs with Windows on (C). The other partitions, such as H, I, K (max 4 unless you have more than one disk on your machine! Remember?) must be set inactive but visible (so Windows Explorer can find them and let you view these partitions). If you fail to follow this procedure, you will be in trouble next time you want to boot your computer again. Then you will get: Invalid partition Table This requires that you repair Windows or worse you may have to re-install everything. This was the case with one of our Dell computers. Hence, as a result after re-installing you have again a blank hard disk...all files you created before or programs you insalled were lost unless you backed up everything beforehand -- A PAIN.

CYTRAP resources - check it out - because it will help you better protect yourself

Administrative

Author		Urs E. Gattiker - CyTRAP Labs

Revisions		1.0 - 2005-03-15 - First Version
Contact details		Web: http://CASEScontact.org E-mail: support01@CASEScontact.org Tel: +41(0)76-200-7778 or + 44(0)70-9237-6036 Fax: +44(0)70-9237-6036, dial 3 send fax

--END of ADVISORY - Important Info Below--

We recommend that you VERIFY ALL ADVISORIES you receive IMMEDIATELY, by clicking on the link provided at the top of this alert.

NO WARRANTY Any material furnished by CASEScontact.org is furnished on an 'as is' basis. CASEScontact.org, writers & sponsors make no warranties of any kind, either expressed or implied as to any matter including, but not limited to, warranty of fitness for a particular purpose or merchantability, exclusivity or results obtained from use of the material.

Ride the rollercoaster successfully by subscribing to our alerts, tips, tools and skills training receiving them either via: 1) e-mail 2) RSS feeds, or else, just get a 3) free skills tune-up

NO WARRANTY Any material furnished by CASEScontact.org is furnished on an 'as is' basis. CASEScontact.org, writers & sponsors make no warranties of any kind, either expressed or implied as to any matter including, but not limited to, warranty of fitness for a particular purpose or merchantability, exclusivity or results obtained from use of the material.

CASES writers & sponsors do not make any warranty of any kind with respect to freedom from patent, trademark, or copyright infringement. Full DISCLAIMER notice at: http://www.casescontact.org/terms.php

UNSUBSCRIBE If you no longer wish to receive this TIP ADVISORY, please Unsubscribe at: http://www.casescontact.org/unsubscribe.php QUESTIONS, comments, ideas? Cheer us up at:Tips-Comments at CASEScontact.org CASEScontact.org -- Threat Alerts and Security Notices --clear and precise, no compromise - --currently hosted by Flashcable

-- END of TIP & Tricks ADVISORY-- Copyright (c) 2007 by CyTRAP labs - Urs E. Gattiker. All rights reserved.

Just the facts

Title		New PC or Hard Drive - Partitioning - Improve Performance and Security in Windows XP
Description
CyTRAP LABs ID		CT210005
Date		2005-03-15
Systems affected
Version number		1.0
ISSN		1603-9866
Verify tip		http://casescontact.org/tips/210005
Risk assessment		Moderate
Impact/Severity		High

Why not get new tips and alerts by e-mail directly to your in-box? It's much more convenient: Your email: or press here.

Issues to Keep in Mind