[dba-Tech] Security

Jim Lawrence accessd at shaw.ca
Mon Mar 17 11:48:50 CDT 2014


Hi Ed:

For many years networking for small and large companies and government was my bread and butter. In most case I would do the layout, connection and basic server setup. Setting policy, security, creating and rolling out a new images was generally be the job of the local systems guys. In a small shop I would have to do everything. In these days a person can not be a master of anything thing in computers, just being a little more than an apprentice is a feat, as everything is changing so fast.

Aside: I still have the computer bug bad as there are now ten running computers, servers, desktops and laptops in the house and one new system still in pieces. For years I would test, re-install, upgrade and build and deploy hardware and applications for clients, at the home office...now that I have retired little seems to have changed. ;-)

Jim    

----- Original Message -----
From: "Ed Tesiny" <eptept at gmail.com>
To: "Discussion of Hardware and Software issues" <dba-tech at databaseadvisors.com>
Sent: Sunday, 16 March, 2014 4:30:00 AM
Subject: Re: [dba-Tech] Security

Jim,
I'm just running a home network and in the many years I've been doing it,
the only issues that have risen is from when you click the mouse.  I
understand, you're talking large or company networks.


On Sun, Mar 16, 2014 at 1:29 AM, Jim Lawrence <accessd at shaw.ca> wrote:

> Hi Ed:
>
> Mac addressing may be better in some instances as they are static but IP
> address can be hard-wired too...I am not a fan of flexible IP addresses as
> they can end up causing errors due to address conflict. The bigger the
> network the more chance for problems even though automatic allocation is
> supposed to solve that problem. I tend to assign address ranges depending
> on the department and the types of systems; ie printers. Then servers
> should all be invisible on the network so their addresses can not be
> changing. Then there is all the routers and switches which must be static.
> Mac addresses are great as they are static but can cause issues if they are
> used to cross-reference with IP addresses as the hardware or just the NIC
> are always being replaced.
>
> Jim
>
> ----- Original Message -----
> From: "Ed Tesiny" <eptept at gmail.com>
> To: "Discussion of Hardware and Software issues" <
> dba-tech at databaseadvisors.com>
> Sent: Saturday, March 15, 2014 4:14:52 PM
> Subject: Re: [dba-Tech] Security
>
> So with MAC addressing and all, I'm off base??
>
>
> On Sat, Mar 15, 2014 at 6:33 PM, DJK (John) Robinson <djkr at msn.com> wrote:
>
> > Hi Jim
> >
> > First of all, stress the *need* for security, and the fact that there are
> > career criminals and malcontents determined to
> > breach your defences.
> >
> > Secondly, never assume that your defence is 100%, because it's not.
>  Don't
> > be complacent!
> >
> > Then, get on to the nitty-gritty details ...
> >
> > It's inculcating a culture of security-mindedness that is key.
> >
> > John
> >
> >
> > -----Original Message-----
> > From: dba-tech-bounces at databaseadvisors.com [mailto:
> > dba-tech-bounces at databaseadvisors.com] On Behalf Of Jim Lawrence
> > Sent: 15 March 2014 19:07
> > To: Discussion of Hardware and Software issues
> > Subject: [dba-Tech] Security
> >
> >
> > Hi all:
> >
> > I have been asked to give a little talk about security to a company and
> it
> > workers come Monday.
> >
> > The subject of the speech will go something like this:
> >
> > One, Make sure the router is set up property whether at the office or
> > home. Change the password from the default,
> > something around ten plus digits, a mix of numbers, upper and lower case
> > and special characters. Older routers should be
> > replaced as they can be hacked. If you want security, limit your
> > dependency on Wi-Fi. (There is software out there that
> > can read the Wi-Fi signal and I would suspect write it.) So don't use
> > Wi-Fi in the office. Don't open any router ports
> > other than 80 or 8080. If you do have to have other open ports, the
> > Virtual drives are your friend...just set up your
> > router to point towards the appropriate virtual drive's IP address
> > triggered by the data arriving on a specific port
> > number. (Note: limit ports open that do not have application continually
> > listening on them.)
> >
> > Two, if you are using XP, start using another browser. The IE browsers
> > supported by XP are not safe.
> >
> > Three, watch what you open in your mail client. This is where most if not
> > all malware originates from. If you are at
> > work and if in doubt, never open it.
> >
> > That is a quick off the top list of talking points. If anyone could
> > recommend further important items to discuss it
> > would be greatly appreciated.
> >
> > MTIA
> >
> > Jim
> > _______________________________________________
> > dba-Tech mailing list
> > dba-Tech at databaseadvisors.com
> > http://databaseadvisors.com/mailman/listinfo/dba-tech
> > Website: http://www.databaseadvisors.com
> >
> >
> > _______________________________________________
> > dba-Tech mailing list
> > dba-Tech at databaseadvisors.com
> > http://databaseadvisors.com/mailman/listinfo/dba-tech
> > Website: http://www.databaseadvisors.com
> >
> _______________________________________________
> dba-Tech mailing list
> dba-Tech at databaseadvisors.com
> http://databaseadvisors.com/mailman/listinfo/dba-tech
> Website: http://www.databaseadvisors.com
> _______________________________________________
> dba-Tech mailing list
> dba-Tech at databaseadvisors.com
> http://databaseadvisors.com/mailman/listinfo/dba-tech
> Website: http://www.databaseadvisors.com
>
_______________________________________________
dba-Tech mailing list
dba-Tech at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/dba-tech
Website: http://www.databaseadvisors.com


More information about the dba-Tech mailing list