Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Basics: Re: Basic Computer Security Advice Needed

Re: Basic Computer Security Advice Needed

From: Gleb Paharenko <gpaharenko_at_gmail.com>
Date: Sat, 17 May 2008 22:49:37 +0300

HI, Mark.

Do not forget about antivirus with good capability of catching trojans.
Check that its database updates regularly.

2008/5/16 Kurt Buff <kurt.buff_at_gmail.com>:
> The SANS Reading Room is your friend - look for it on http://www.sans.org.
>
> Also, a couple of words of advice.
>
> First, make sure that the OSes you're using are supported by the
> vendor. If any of them are too old for vendor support ('fer instance,
> Win9x, and Pre-OSX Macs) make sure they don't have access to the
> Internet, or any network, for that matter.
>
> Second, make sure they're patched.
>
> Beyond that, what you need to do will depend on your circumstances.
>
> Kurt
>
> On Fri, May 16, 2008 at 10:52 AM, Mark Goodridge
> <mrgoodridge_at_roadrunner.com> wrote:
>> I am what passes for the computer technology guy at a small elementary
>> school. I'm trying to improve the security of the information we store on
>> our computers and I hope this list can give me some advice.
>>
>> First, I'm looking for an appropriate definition of information security as
>> it would apply to my situation. "If I don't know what it is, how will I know
>> when I've found it?"
>>
>> Second, I need to write a policy or a checklist, or a document of some sort
>> we can use to evaluate, monitor, and improve our computer/information
>> security.
>>
>> We're constrained by time, training, and money. Any policy I devise has to
>> be capable of being implemented and managed by people with modest computer
>> skills (the equivalent of the CompTIA A+ or Network+) with limited time
>> available, and for all practical purposes, no funding.
>>
>> I realize that under these circumstances an extremely high level of security
>> is unobtainable and probably unnecessary in any event. What I hope to be
>> able to do it to make the information on the LAN secure from the casual
>> hacker and all but the most persistent attacks from those who might
>> deliberately target our network.
>>
>> Can you direct me toward any resources; particularly security definitions,
>> security frameworks, or security policies that you think might assist me? I
>> have done the usual Google searches and come up with an overwhelming list of
>> web sites but I was wondering if you knew of anything that specifically
>> addressed my problem.
>>
>> Thank you for your assistance,
>>
>> Mark Goodridge
>>
> 

-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com
Received on May 20 2008
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]