Low-cost Security Improvements

• Document and publish what you expect your system support staff to do with respect to security.
• Configure your border routers to deny all unnecessary incoming traffic.
• Identify and protect your most valuable assets first.
• Secure the perimeter and core systems.
• Simplify.
• Use freeware vulnerability assessment tools to conduct a self-assessment of your network and computers. Publish the results internally to management staff.
• Install freeware host and network based auditing and traffic analysis tools on critical hosts.
• Monitor output and logs on a daily basis.

Free Tool Repositories

• ftp://ciac.llnl.gov/pub/ciac/sectools/unix/
• ftp://ftp.cerias.purdue.edu
• ftp://ftp.cert.org/pub/tools/
• ftp://ftp.win.tue.nl/pub/security/
• ftp://ftp.funet.fi/pub/unix/security/

• PreviousSystem Administrator Best Practices
• Contents
• NextSecurity Web Sites

 Last change: Monday, June 17, 2002 9:36 am
 Unless otherwise expressly stated, all original material on this page created by Diomidis Spinellis is licensed under a Creative Commons Attribution-Share Alike 3.0 Greece License.