|
|
Top 10 Tips on how to secure your network.
|
- Hacker programs available on the Internet contain tens of thousands of common passwords, which can be used to break into unsecured computer systems. A password should have a minimum of eight characters. They should be non-dictionary words. They should combine upper and lower case characters. You can even mix in a symbol, like a $. An ideal password might be something like 2B3#N3$.
- By the time a hacker gets your password, it will already be outdated.
- Most businesses purchase virus protection programs from companies like Norton or McAfee. These companies regularly offer patches and updates to their programs to respond to new threats. Companies should regularly check for defense improvements and be sure their subscription to virus protection updates remains current.
- Just because it's in the "in-box" doesn't mean it's been cleared through any security mechanism. Attachments, particularly executables (with .exe at the end) can be dangerous, dropping off a little software code called a "Trojan Horse" that corrupts your system or allows it to be infiltrated at a later time. Employees should be educated about security basics,including the need to avoid opening attachments from unknown sources.
- If you're securing your own system (instead of relying upon an ISP or Web host), don't just buy a firewall and assume you're secure. Firewalls do a great job of securing a perimeter, but no one device will do the trick. Complete solutions should include firewalling, intrusion detection and policy management.
- Don't secure and run. Hackers are constantly updating their technology. Small and medium businesses need to know how safe they are against the most current types of attack. If you're relying on a Web host or ISP, be sure to choose avendor who is security savvy. Compare their offerings to those of other companies.
- When asked to evaluate the internal security posture of networks, the Cisco Security Consulting team finds vulnerabilities in almost every network tested. Just as you ask departing employees to turn in their keys to the front door, you should take away their key to the network when they leave. Disgruntled employees and former employees are the greatest threat to any systems' security.
- Telecommuting increases worker satisfaction and productivity, but also presents a security challenge. It makes little sense to spend $10,000 on a security system for your Web site while you allow people to dial-in to your network unchecked.
- Stay on top of security updates and patches. These are often available free over the Web. Make sure you're always running the latest versions of software to stay ahead of hackers - because you can bet they're working to stay ahead of you.
- If your employees don't need Web access, don't provide it. If you don't need services such as NFS, Finger, Echo or some of the other programs that are routinely provided with software suites, make sure they're turned off. Often, a variety of services are provided by default in a program. Exploitation of these services is one of the most common hacks seen by Cisco customers.
|
| |
| » Identify a Security Solution for your organisation. |
| |
|
 |
|
