| |
Tips & Tricks
Desktop Computers:
- Install and use virus protection software and schedule daily automatic
virus definition updates.
- Apply vendor security patches regularly.
- Turn the computer off at night/weekends.
- Use a software firewall.
- Restrict services available (no web server or remote access).
- Use strong password rules (length, retention, lock-out, etc.).
- Encrypt any protected data across open networks. At a minimum, password
protect files with strong password.
- Configure the computer to keep security logs.
- Request that a vulnerability scan be run quarterly by OIT.
- Consider the use of an internal non-routed IP address which prevents
any access either to or from the Internet.
- If possible, use a single-purpose computer without email and other
programs that can introduce viruses and trojans.
Server Computers:
- Install and use virus protection software and schedule daily automatic
virus definition updates.
- Apply vendor security patches regularly.
- Use a hardware or software firewall.
- Restrict services available (e.g. web server, smtp, telnet, ftp).
- Use strong password rules (length, retention, lockout, etc.) and
separate accounts for administering the server and regular usage.
- Encrypt any protected data across open networks. At a minimum, password
protect files with strong password.
- Configure the computer to keep protected security logs.
- Request that vulnerability scan be run quarterly by OIT or whenever
significant operating system changes are made.
- Consider the use of an internal non-routed IP address, which prevents
any access either to or from the Internet.
Get Help
IT Service Center
303-735-4357 (5-HELP)
security@colorado.edu
|
|
|
