[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [ossig] When is secure, secure enough?
change your password every 30/60days; in case you have bad memory or to many password to remember, write it down, seal it in an envlope and store in a safe. :-) use non-english word password.
preferably your firewall should be a box by itself and minimal install only with CLI and necessary stuff for firewall daemon to work and rip out the GUI.
beware of social engineering too. :-)
Actually M$ software are pretty safe by itself, if u leave them unconnected to any network or trully just stand alone! :-D
perhaps others have more ideas.
> -----Original Message-----
> From: Mukhsein Johari [mailto:mukhsein@email.com]
> Sent: Tuesday, January 21, 2003 11:23
> To: OSSIG-General
> Subject: [ossig] When is secure, secure enough?
>
>
> Hey guys, just a quickie here:
>
> When is it secure enough?
>
> - use strong passwords and make sure they are not leaked
> (depends on users)
> - use encrypted passwords
> - do not use unsafe services like telnet
> - close all 'unused' ports
> - apply all security patches of service deamons that _are_ used
> - use firewalls to filter ip requests into your network
> - do not use M$ software
>
> Would these practices be enough to keep your boxes safe?
> (apart from ddos and so forth). Is there more that a busy
> sysadmin must do?
>
> Regards,
> Mukhsein Johari
>
> --
> _______________________________________________
> Sign-up for your own FREE Personalized E-mail at Mail.com
> http://www.mail.com/?sr=signup
>
> Meet Singles
> http://corp.mail.com/lavalife
>
>
> ------------------------------------------------------------
> To unsubscribe: send mail to ossig-request@mncc.com.my
> with "unsubscribe ossig" in the body of the message
>
>
------------------------------------------------------------
To unsubscribe: send mail to ossig-request@mncc.com.my
with "unsubscribe ossig" in the body of the message