security.itworld.com
  Search  
Security Home Page Security Webcasts Security White Papers Security Newsletters Security News Security Topics Careers ITworld Voices ITwhirled The Security site of ITworld.com
Three inexpensive ways to increase security
SECURITY.ITWORLD.COM --- 04/10/2007

Brent Huston

Want to increase overall security of your small to mid-size business network without spending much time or money? These three inexpensive ideas will help bring more security and less hassle to your environment.

1. Migrate users away from Internet Explorer
A great deal of compromise that companies experience is the result of the browser choice, and let's face it, Internet Explorer has issues. If you can’t switch from IE completely, consider changing to Deepnet Explorer (http://www.deepnetexplorer.com), which still utilizes the IE rendering engine, but wraps it in a much safer interface.

2. Implement Egress Filtering for all unneeded ports It's likely that you have a firewall or router at the perimeter. Use this device to block outbound connections that are likely to be malware, spyware or otherwise malicious traffic. You must still allow outbound critical services such as the web, mail and others, but you certainly don’t need all 65,535 ports allowed outbound to the Internet.

3. Map your network
Upwards of 75% of all the organizations we perform assessments of have no organized map of their network environments. Make sure you know your external and internal IP spaces, your domain structures and have a clear understanding of existing trust relationships. Take it one step further and actually use Visio or something similar to draw a real network map.

 

Brent Huston is CEO and Security Evangelist of MicroSolved, Inc., an information security company, based in Columbus, OH. Brent and his staff have performed system and network security-consulting services for Fortune 500 companies, international telecomm firms and major financial institutions. His professional experience exceeds fifteen years in the information security field. To date, he has performed hundreds of vulnerability assessments and penetration tests against target organizations such as banks, credit unions, financial companies, e-commerce sites, critical infrastructure, federal/state/local governments and military/national security installations. He is well versed in the use and implementation of all major security tools, standards and systems and has developed the primary assessment methodologies in use at MicroSolved and the US Department of Energy. He has published numerous white papers on security-related topics, and is the co-author and technical editor of the book "Hack Proofing Your E-Commerce Site" from Syngress Publishing. Write him at mailto: bhuston@microsolved.com.
Home  Newsletters SECURITY.ITWORLD.COM
www.itworld.com    open.itworld.com     security.itworld.com     smallbusiness.itworld.com
storage.itworld.com     utilitycomputing.itworld.com     wireless.itworld.com

 
Contact Us   About Us   Privacy Policy    Terms of Service   Reprints  

CIO   Computerworld   CSO   GamePro   Games.net   IDG Connect   IDG World Expo   Infoworld   ITworld   JavaWorld   LinuxWorld  MacUser   Macworld   Network World   PC World   Playlist  

Copyright © Computerworld, Inc. All rights reserved

Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.