|
April 15, 2002
Keeping Your Technology Secure (cont'd)
Tips to Reduce Attacks on Your Network
Security experts agree on the following steps to help prevent attacks to your network.
Use a firewall. The best firewalls check data that's traveling in and out of the network. This way, even if a virus does infect your network, it will not be able to spread to other networks.
Update security patches frequently. Your computer has to know how to combat all the latest threats. Your antivirus software publisher will probably send alerts when new patches are available; organizations such as CERT.org and SANS.org also keep lists of updates. If possible, arrange for automatic updates to your antivirus software, so patches download automatically to your network for distribution to individual computers.
Keep passwords difficult and private. Don't leave passwords at the system default-otherwise you're inviting hackers into your network. Tell users to select letter and number combinations that would be difficult to guess, and not to leave their passwords in full view (posted on the monitor, for example).
Turn off unnecessary network services. Examples of network services include Telnet and FTP. Every network service that is activated is a potential open door for a hacker, so turn off what you don't use.
Educate users about security needs. In addition to stressing password secrecy, make sure your users know not to click on suspicious e-mail attachments, even if they come from someone they know. Also, let users know the importance of running the security programs you've provided, and back it up by enforcing your security policies.
Additional Resources
Get the basics on computer security from these sites.
The Security Planning Center from firewall supplier SonicWall walks you through the process of understanding and assessing your network security risks and developing strategies to overcome vulnerabilities and ensure a secure network.
The Software Engineering Institute at Carnegie Mellon University studies security vulnerabilities, handles computer security incidents, and publishes security alerts. The "New and Home Users" section features articles on security basics, attack scenarios, and tips for securing your network.
The SANS Institute site offers training programs, security digests, standards, sample security policies, and more. The document "How to Eliminate the 20 Most Critical Internet Security Threats" is very plainly written, with steps to protect against and remedy system weaknesses.
PC Flank is dedicated to helping computer users protect against Internet attacks, includes Ask the Experts, daily advice, forums, and opportunities to test your own computer system for vulnerabilities. The site also conducts "stealth tests" to determine the effectiveness of some popular firewalls against various types of malicious files.
Cosponsored by antivirus software maker McAfee, Securitypointer gives the basics of security for home and network computers, an extensive explanation of firewalls, virus alerts, news, links to relevant articles, and more.
The Center for Internet Security offers benchmarks for securing your operating systems and Web servers beyond their default (and vulnerable) system configurations for the "minimum due care for operating system security."
Though essentially part of a sales pitch, the "For Beginners" section of HackerWhacker does a great job of explaining how hackers can access your computer through the Internet and the consequences of such intrusions.
Internet Lockdown: Internet Security Administrator's Handbook from Hungry Minds, Inc., shows readers how to effectively protect their network and Internet sites, even on a limited budget. Topics covered include firewalls, intrusion detection and protection, and explanations of certificates, cryptography, and encryption. The book also provides implementation examples and techniques for all operating systems. $39.99.
< < < Return to Keeping Your Technology Secure
Read other articles from the April Issue
Send a letter to the Editor in response to this article.
|
