The 14 Best Ways To Protect Your Computers
Infoworld columnist Roger A. Grimes pubbed a nice little article this morning listing 14 simple ways to protect your computers. This article is mainly targeted at people who have to manage a large number of boxes, but some of the tips he gives can be applied to simple, stand-alone systems.
Forget expensive IDSes, host-based IDSes, and unified threat management appliances. Here's how to really get the best security bang for your buck:
Here are a few links to articles we have on [GAS] that will be of use to you if you want to implement some of the suggestions that are given in the article:
4. Secure your passwords. Require long passwords, 10 characters or longer for normal users, 15 characters or longer for admin accounts. Implement account lockout, if even with only a one-minute lockout. On Windows, disable LM password hashes. On Unix/Linux, use the newer crypt(3) hashes, MD5 style hashes, or even better, bcrypt hashes if your OS supports it.
8. Update patch management for OSes and all applications. Have you patched Macromedia Flash, Real Player, and Adobe Acrobat lately?
9. Implement anti-virus, anti-spam, and anti-spyware tools on the gateway and/or at the host-level.