Re: Basic Computer Security Advice Needed

I suggest OWASP for security information:


2008/5/17 Mark Goodridge <mrgoodridge@xxxxxxxxxxxxxx>:
I am what passes for the computer technology guy at a small elementary
school. I'm trying to improve the security of the information we store on
our computers and I hope this list can give me some advice.

First, I'm looking for an appropriate definition of information security as
it would apply to my situation. "If I don't know what it is, how will I know
when I've found it?"

Second, I need to write a policy or a checklist, or a document of some sort
we can use to evaluate, monitor, and improve our computer/information

We're constrained by time, training, and money. Any policy I devise has to
be capable of being implemented and managed by people with modest computer
skills (the equivalent of the CompTIA A+ or Network+) with limited time
available, and for all practical purposes, no funding.

I realize that under these circumstances an extremely high level of security
is unobtainable and probably unnecessary in any event. What I hope to be
able to do it to make the information on the LAN secure from the casual
hacker and all but the most persistent attacks from those who might
deliberately target our network.

Can you direct me toward any resources; particularly security definitions,
security frameworks, or security policies that you think might assist me? I
have done the usual Google searches and come up with an overwhelming list of
web sites but I was wondering if you knew of anything that specifically
addressed my problem.

Thank you for your assistance,

Mark Goodridge

No pains,no gains.

Relevant Pages

  • Re: Basic Security Help
    ... > a network is weak or no passwords followed by malicious user on your ... Be sure to educate users of any pending changes to password policy ... > Windows Updates or using a SUS server to authorize and distribute security ... > network including how to isolate and repair infected computers. ...
  • Risks Digest 28.38
    ... ACM FORUM ON RISKS TO THE PUBLIC IN COMPUTERS AND RELATED SYSTEMS ... "How to lose customers with excessive security" ... And the two cables come together at nearby ... Subject: Mobile malware: One in six smartphone users victim of cyber attack ...
  • Re: Basic Security Help
    ... for XP Home you "might" be able to access the built in administrator account ... friend or family member that knows a bit about computers to help you. ... >> a network is weak or no passwords followed by malicious user on your ... >> Antivirus in Depth Guide available at the TechNet Security Center can ...
  • RE: Network and information security question
    ... All the computers have to be Pro. ... detaching the home versions from the network and making them work outside the ... configurations you can use group policy to manage the employee computers, ... tighten security. ...
  • Re: assured dns resolutions (secure)
    ... > come from the real dns server, ... > diverting network clients to use the false IP is not insiginificant. ... 2535 Domain Name System Security Extensions. ... For example, non-company computers were simply ...