IWMW 1998 Server Management (4) Security Principles
•Download as PPTX, PDF•
0 likes•238 views
Slides for the "Server Management" workshop session on “Security Principles (4)” (session A3) facilitated by Helen Sargan and Andrew Cormack at the IWMW 1998 event held at Newcastle University on 15-17 September 1998. See http://www.ukoln.ac.uk/web-focus/events/workshops/webmaster-sep1998/materials/
Report
Share
Report
Share
Recommended
10 Quick Cybersecurity Wins for Small Business
The internet and information technologies are powerful tools for small businesses in reaching new markets, increasing productivity, and efficiency. To protect their business, customers, and data, from growing cybersecurity threats businesses need a cybersecurity strategy.
Essential Layers of IBM i Security Series – Network Security
Taking a holistic view of your security profile is critical to success. Grouping together security best practices and technologies into six primary layers, where each layer overlaps with the others, provides multiple lines of defense. Should one security layer be compromised, there’s a good chance that another layer will thwart a would-be intruder.
In part-2 of our 6-part webinar series on the essential layers of IBM i security we discuss intrusion prevention and detection technologies, grouping and protecting related resources within network segments and network traffic encryption.
Panda Security - Systems Management
Panda Systems Management is a single, complete, cloud-hosted solution to centrally manage all your devices, wherever they are.
More info: http://www.pandasecurity.com/enterprise/solutions/cloud-systems-management/
OpStor version 9.1 - A Walkthrough
OpStor version 9.1 comes with device support for PureStorage and EMC Isilon. With the new SMI-S framework, storage admins can monitor any SMI-S based device with OpStor now. It also comes with a snappy new UI and forecast dashboard to give storage admins the only product to monitor all the storage hardware connected in their environment. This includes monitoring tape libraries, host / backup servers, RAIDs, HBAs, FC and SAN Switches.
OpStor - A multi vendor storage resource management and capacity forecasting ...
It explains the challenges that storage administrators face and how OpStor helps to address them while giving you an overview of the product
Essential Layers of IBM i Security: System-Access Security
This document discusses layers of security for system access on IBM i systems. It covers four main areas: password management, multi-factor authentication, network access control, and command control. The webinar provides an overview of these areas, outlines best practices for strengthening security in each, and notes that third-party solutions can help administrators more easily implement granular security controls. The overall message is that a layered approach to security is needed to protect against modern threats to IBM i systems.
Building a Hacker Resistant Network
Tips and information on how to protect your confidential personal information and your business by building a hacker-resistant network.
Cincinnati window shade technology overview
The document provides an overview of the technology used by Cincinnati Window Shade including their network infrastructure, hardware, software, security measures, and storage of files and email. It also notes some concerns about regulatory compliance and recommendations to improve the network such as labeling cabling, consolidating equipment in a closet, and creating written IT policies. The family-owned business has upgraded their network over time but still has some outdated components and lacks formal documentation of processes.
Recommended
10 Quick Cybersecurity Wins for Small Business
The internet and information technologies are powerful tools for small businesses in reaching new markets, increasing productivity, and efficiency. To protect their business, customers, and data, from growing cybersecurity threats businesses need a cybersecurity strategy.
Essential Layers of IBM i Security Series – Network Security
Taking a holistic view of your security profile is critical to success. Grouping together security best practices and technologies into six primary layers, where each layer overlaps with the others, provides multiple lines of defense. Should one security layer be compromised, there’s a good chance that another layer will thwart a would-be intruder.
In part-2 of our 6-part webinar series on the essential layers of IBM i security we discuss intrusion prevention and detection technologies, grouping and protecting related resources within network segments and network traffic encryption.
Panda Security - Systems Management
Panda Systems Management is a single, complete, cloud-hosted solution to centrally manage all your devices, wherever they are.
More info: http://www.pandasecurity.com/enterprise/solutions/cloud-systems-management/
OpStor version 9.1 - A Walkthrough
OpStor version 9.1 comes with device support for PureStorage and EMC Isilon. With the new SMI-S framework, storage admins can monitor any SMI-S based device with OpStor now. It also comes with a snappy new UI and forecast dashboard to give storage admins the only product to monitor all the storage hardware connected in their environment. This includes monitoring tape libraries, host / backup servers, RAIDs, HBAs, FC and SAN Switches.
OpStor - A multi vendor storage resource management and capacity forecasting ...
It explains the challenges that storage administrators face and how OpStor helps to address them while giving you an overview of the product
Essential Layers of IBM i Security: System-Access Security
This document discusses layers of security for system access on IBM i systems. It covers four main areas: password management, multi-factor authentication, network access control, and command control. The webinar provides an overview of these areas, outlines best practices for strengthening security in each, and notes that third-party solutions can help administrators more easily implement granular security controls. The overall message is that a layered approach to security is needed to protect against modern threats to IBM i systems.
Building a Hacker Resistant Network
Tips and information on how to protect your confidential personal information and your business by building a hacker-resistant network.
Cincinnati window shade technology overview
The document provides an overview of the technology used by Cincinnati Window Shade including their network infrastructure, hardware, software, security measures, and storage of files and email. It also notes some concerns about regulatory compliance and recommendations to improve the network such as labeling cabling, consolidating equipment in a closet, and creating written IT policies. The family-owned business has upgraded their network over time but still has some outdated components and lacks formal documentation of processes.
CIE AS Level Applied ICT Unit 2 - How Organisations Use ICT
This document discusses how organizations use information and communication technology (ICT) for control systems. It provides examples of control systems used in air conditioning, central heating, refrigeration, car manufacturing, and medical applications. These control systems use sensors as inputs to monitor conditions, microprocessors to compare to preset values, and actuators as outputs to adjust systems like fan speeds or valve positions. The document also discusses programmable logic controllers and how they are used to control industrial processes and manufacturing.
Design Summit - User stories from the field - Chris Jung
This presentation is about the various implementations of ManageIQ by actual customers and end users in real world environments. Discover their challenges and the problems they solved with ManageIQ.
For more on ManageIQ, see http://manageiq.org/
Access Control Software
BadgePass Access Manager is a credential management platform that allows users to seamlessly issue and activate secure credentials for doors and other ID applications. It features unlimited cardholder and door support, customizable access schedules, real-time door monitoring, and integration with third party hardware and video systems. The platform supports multiple card technologies and provides web-based reporting services to manage credential access.
CIE A Level Applied ICT Unit 7 - Computer Networks
This document discusses different types of computer networks including LANs, WLANs, and WANs. It describes the hardware and software requirements for each network type. LANs are used for intranets and business networks within an organization. WLANs allow for wireless connectivity using Wi-Fi standards. WANs connect LANs across broad geographic areas using the internet, VPNs, and other wide-reaching networks. Common network hardware includes PCs, servers, switches, routers and cabling. Software like FTP, HTTP, and VPN protocols are used to transfer and secure files between networked devices.
Traka property management flyer
Traka is a leading provider of key, equipment, and asset management solutions for property management groups. Their intelligent systems allow customers to automate the control and tracking of keys, radios, laptops, vehicles, and other portable assets. Key features of Traka's solutions include automated vending of items from secure cabinets, web-based reservations, user authentication for access permissions, and integrated reporting of item usage and locations. Traka's asset management helps properties securely store and account for shared equipment when not in use.
Module 7 (printing) Review
This document discusses supporting and customizing printers. It begins by describing different types of printers like laser, inkjet, thermal, and impact dot matrix printers. It then covers installing printers, sharing printers on a network, securing shared printers, and using virtual and cloud printing. The document also discusses configuring printer features and add-on devices, performing maintenance to extend printer life, and finding online support from printer manufacturers.
Chapter 8 Presentaion
This document summarizes key points from a chapter about administering a secure network. It discusses common network protocols like TCP/IP, IP, TCP and how they establish communication. It also covers network administration principles for securing devices, monitoring logs, designing networks, and implementing port security. The goal is to provide rules and procedures for securely managing a network and its components.
Security Framework for the IPv6 Era
This document discusses security frameworks for the IPv6 era. It outlines legacy security approaches like perimeter defense and their limitations. A new approach called Quarantine Network is proposed that integrates manageable and customizable security through dynamic network separation based on a node's security level. Key components are security level management and dynamic network separation at layers 2, 3, 4 or 7. Issues include additional management overhead, handling encrypted traffic, protocol independence and performance bottlenecks. Evaluation of vulnerabilities and real-world testing are identified as remaining tasks.
Minicom - Remote Data Center Management
Discover how Minicom can help you improve your Data Center management and increase your IT efficiency.
Solo Small Business Gateway
The document describes the solo small business gateway software, which provides a unified communications solution that combines various IT and communication functions into a single system. It can be installed on any server and includes features such as VoIP telephony, fax server capabilities, CCTV, file sharing, email server, web server, and network security tools like a firewall and VPN. The goal of the software is to provide a complete and integrated solution for small and medium-sized businesses to manage their IT infrastructure and communications through a single, easy to use system.
New microsoft power point presentation (2)
The Simple Network Management Protocol (SNMP) is the dominant protocol for network management and uses agents and managers to monitor network devices. SNMP collects information from devices like servers, switches, routers, and printers on an IP network. It works by having SNMP agents on managed devices collect information and make it available to SNMP managers, which are separate computer systems that communicate with agents to monitor network conditions.
Benefits of IT Outsourcing
IT outsourcing determines the accessibility of expert IT solutions irrespective of boundaries. They can be IT-based business, application services, IT infrastructure, cloud computing, web development & hosting etc.. As far as the benefits of IT outsourcing are concerned, it helps in remote access of the best IT solutions that economically suit the pocket of the users.
RPASS - Ricoh Proactive ServiceS for Remote Monitoring & Backup
Ricoh provides automated managed IT services that:
- Can be deployed remotely in hours without infrastructure changes and allows remote management from anywhere.
- Automate routine IT tasks through a single centralized framework to efficiently manage systems and demonstrate value to customers.
- Transition companies from reactive break-fix models to proactive IT service delivery through automation of tasks like patching, monitoring and remote management.
Cybersecurity Summit AHR20 Detect KMC
The document discusses three main functions for detection in the New Deal 2020 framework: detecting anomalies and events in a timely manner, conducting continuous monitoring as threats are always present, and maintaining processes and procedures as exploits are constantly changing. This must be done at different levels using different attack detection methods and a cross-functional team approach. Detection aims to find malware, failed login attempts, unusual traffic or user activity, and attempts to cross segmented networks in both IT and OT systems, though attacks use less data and small commands to cause major issues in OT systems. The document recommends using automated tools to keep systems updated and configurations correct while also employing automanual tools to inspect logs and verify process results, aiding both security detection and operations verification.
Webinar Access Control - October 2015
This webinar takes a look at the current landscape, how easy it is to modernise an access control solution as well as the core system features. We also look at how to integrate with other systems to ensure you have the best building security possible.
DCD Converged Brazil 2016
Racks & Stacks, Users & Clouds - All are part of a layered security strategy. Presentation in the information Risk Track.
Encryption
This document summarizes the UW Desktop Encryption Project. The project aims to research encryption tools to protect restricted data on lost or stolen devices. It will recommend a product for pilot testing and evaluate its full disk and file/folder encryption. Challenges include supporting different platforms, key management, and gaining user acceptance. The project selected SafeBoot due to its features and will pilot it through June before recommending a solution to sponsors.
Shaik Saleem-Resum-2016
Shaik Saleem has over 6 years of experience as a System Administrator providing IT support. He has worked at Capco in India for over 4 years and at Mind River Information Technology for 2 years. His skills include managing a team to provide on-time support, familiarity with desktop hardware, operating systems, and applications. Relevant projects include day-to-day IT support, troubleshooting tickets, administering Microsoft operating systems, imaging laptops and desktops, and managing assets and vendor coordination.
Additional Skills
This role involves leading the development, deployment and improvement of network technologies to deliver products and services to customers. Key responsibilities include translating business requirements into technical solutions, assessing vendor offerings, ensuring integration with processes and systems, and maintaining effective relationships. The role requires strong technical skills in areas like TCP/IP, security tools, and Unix as well as business acumen and problem solving abilities. A degree and 5+ years of IT security management experience are required.
Essential Layers of IBM i Security: Security Monitoring and Auditing
Taking a holistic view of your security profile is critical to success. Grouping together security best practices and technologies into six primary layers, where each layer overlaps with the others, provides multiple lines of defense. Should one security layer be compromised, there’s a good chance that another layer will thwart a would-be intruder.
Our final webinar in this series focuses on monitoring the IBM i and automatically alerting administrators and security officers whenever suspicious activity is detected, as well as logging all security-related events for the purposes of tracking and auditing.
A New Day Has Come
The document is a song about finding love and hope after a difficult period of waiting and suffering. It describes how the singer found strength and joy through their love, with the arrival of their partner likened to "an angel" who has brought light and washed away their tears. The song expresses that a new beginning has come, with darkness now turned to light through finding love in "the eyes of a boy".
More Related Content
What's hot
CIE AS Level Applied ICT Unit 2 - How Organisations Use ICT
This document discusses how organizations use information and communication technology (ICT) for control systems. It provides examples of control systems used in air conditioning, central heating, refrigeration, car manufacturing, and medical applications. These control systems use sensors as inputs to monitor conditions, microprocessors to compare to preset values, and actuators as outputs to adjust systems like fan speeds or valve positions. The document also discusses programmable logic controllers and how they are used to control industrial processes and manufacturing.
Design Summit - User stories from the field - Chris Jung
This presentation is about the various implementations of ManageIQ by actual customers and end users in real world environments. Discover their challenges and the problems they solved with ManageIQ.
For more on ManageIQ, see http://manageiq.org/
Access Control Software
BadgePass Access Manager is a credential management platform that allows users to seamlessly issue and activate secure credentials for doors and other ID applications. It features unlimited cardholder and door support, customizable access schedules, real-time door monitoring, and integration with third party hardware and video systems. The platform supports multiple card technologies and provides web-based reporting services to manage credential access.
CIE A Level Applied ICT Unit 7 - Computer Networks
This document discusses different types of computer networks including LANs, WLANs, and WANs. It describes the hardware and software requirements for each network type. LANs are used for intranets and business networks within an organization. WLANs allow for wireless connectivity using Wi-Fi standards. WANs connect LANs across broad geographic areas using the internet, VPNs, and other wide-reaching networks. Common network hardware includes PCs, servers, switches, routers and cabling. Software like FTP, HTTP, and VPN protocols are used to transfer and secure files between networked devices.
Traka property management flyer
Traka is a leading provider of key, equipment, and asset management solutions for property management groups. Their intelligent systems allow customers to automate the control and tracking of keys, radios, laptops, vehicles, and other portable assets. Key features of Traka's solutions include automated vending of items from secure cabinets, web-based reservations, user authentication for access permissions, and integrated reporting of item usage and locations. Traka's asset management helps properties securely store and account for shared equipment when not in use.
Module 7 (printing) Review
This document discusses supporting and customizing printers. It begins by describing different types of printers like laser, inkjet, thermal, and impact dot matrix printers. It then covers installing printers, sharing printers on a network, securing shared printers, and using virtual and cloud printing. The document also discusses configuring printer features and add-on devices, performing maintenance to extend printer life, and finding online support from printer manufacturers.
Chapter 8 Presentaion
This document summarizes key points from a chapter about administering a secure network. It discusses common network protocols like TCP/IP, IP, TCP and how they establish communication. It also covers network administration principles for securing devices, monitoring logs, designing networks, and implementing port security. The goal is to provide rules and procedures for securely managing a network and its components.
Security Framework for the IPv6 Era
This document discusses security frameworks for the IPv6 era. It outlines legacy security approaches like perimeter defense and their limitations. A new approach called Quarantine Network is proposed that integrates manageable and customizable security through dynamic network separation based on a node's security level. Key components are security level management and dynamic network separation at layers 2, 3, 4 or 7. Issues include additional management overhead, handling encrypted traffic, protocol independence and performance bottlenecks. Evaluation of vulnerabilities and real-world testing are identified as remaining tasks.
Minicom - Remote Data Center Management
Discover how Minicom can help you improve your Data Center management and increase your IT efficiency.
Solo Small Business Gateway
The document describes the solo small business gateway software, which provides a unified communications solution that combines various IT and communication functions into a single system. It can be installed on any server and includes features such as VoIP telephony, fax server capabilities, CCTV, file sharing, email server, web server, and network security tools like a firewall and VPN. The goal of the software is to provide a complete and integrated solution for small and medium-sized businesses to manage their IT infrastructure and communications through a single, easy to use system.
New microsoft power point presentation (2)
The Simple Network Management Protocol (SNMP) is the dominant protocol for network management and uses agents and managers to monitor network devices. SNMP collects information from devices like servers, switches, routers, and printers on an IP network. It works by having SNMP agents on managed devices collect information and make it available to SNMP managers, which are separate computer systems that communicate with agents to monitor network conditions.
Benefits of IT Outsourcing
IT outsourcing determines the accessibility of expert IT solutions irrespective of boundaries. They can be IT-based business, application services, IT infrastructure, cloud computing, web development & hosting etc.. As far as the benefits of IT outsourcing are concerned, it helps in remote access of the best IT solutions that economically suit the pocket of the users.
RPASS - Ricoh Proactive ServiceS for Remote Monitoring & Backup
Ricoh provides automated managed IT services that:
- Can be deployed remotely in hours without infrastructure changes and allows remote management from anywhere.
- Automate routine IT tasks through a single centralized framework to efficiently manage systems and demonstrate value to customers.
- Transition companies from reactive break-fix models to proactive IT service delivery through automation of tasks like patching, monitoring and remote management.
Cybersecurity Summit AHR20 Detect KMC
The document discusses three main functions for detection in the New Deal 2020 framework: detecting anomalies and events in a timely manner, conducting continuous monitoring as threats are always present, and maintaining processes and procedures as exploits are constantly changing. This must be done at different levels using different attack detection methods and a cross-functional team approach. Detection aims to find malware, failed login attempts, unusual traffic or user activity, and attempts to cross segmented networks in both IT and OT systems, though attacks use less data and small commands to cause major issues in OT systems. The document recommends using automated tools to keep systems updated and configurations correct while also employing automanual tools to inspect logs and verify process results, aiding both security detection and operations verification.
Webinar Access Control - October 2015
This webinar takes a look at the current landscape, how easy it is to modernise an access control solution as well as the core system features. We also look at how to integrate with other systems to ensure you have the best building security possible.
DCD Converged Brazil 2016
Racks & Stacks, Users & Clouds - All are part of a layered security strategy. Presentation in the information Risk Track.
Encryption
This document summarizes the UW Desktop Encryption Project. The project aims to research encryption tools to protect restricted data on lost or stolen devices. It will recommend a product for pilot testing and evaluate its full disk and file/folder encryption. Challenges include supporting different platforms, key management, and gaining user acceptance. The project selected SafeBoot due to its features and will pilot it through June before recommending a solution to sponsors.
Shaik Saleem-Resum-2016
Shaik Saleem has over 6 years of experience as a System Administrator providing IT support. He has worked at Capco in India for over 4 years and at Mind River Information Technology for 2 years. His skills include managing a team to provide on-time support, familiarity with desktop hardware, operating systems, and applications. Relevant projects include day-to-day IT support, troubleshooting tickets, administering Microsoft operating systems, imaging laptops and desktops, and managing assets and vendor coordination.
Additional Skills
This role involves leading the development, deployment and improvement of network technologies to deliver products and services to customers. Key responsibilities include translating business requirements into technical solutions, assessing vendor offerings, ensuring integration with processes and systems, and maintaining effective relationships. The role requires strong technical skills in areas like TCP/IP, security tools, and Unix as well as business acumen and problem solving abilities. A degree and 5+ years of IT security management experience are required.
Essential Layers of IBM i Security: Security Monitoring and Auditing
Taking a holistic view of your security profile is critical to success. Grouping together security best practices and technologies into six primary layers, where each layer overlaps with the others, provides multiple lines of defense. Should one security layer be compromised, there’s a good chance that another layer will thwart a would-be intruder.
Our final webinar in this series focuses on monitoring the IBM i and automatically alerting administrators and security officers whenever suspicious activity is detected, as well as logging all security-related events for the purposes of tracking and auditing.
What's hot (20)
CIE AS Level Applied ICT Unit 2 - How Organisations Use ICT
CIE AS Level Applied ICT Unit 2 - How Organisations Use ICT
Design Summit - User stories from the field - Chris Jung
Design Summit - User stories from the field - Chris Jung
CIE A Level Applied ICT Unit 7 - Computer Networks
CIE A Level Applied ICT Unit 7 - Computer Networks
RPASS - Ricoh Proactive ServiceS for Remote Monitoring & Backup
RPASS - Ricoh Proactive ServiceS for Remote Monitoring & Backup
Essential Layers of IBM i Security: Security Monitoring and Auditing
Essential Layers of IBM i Security: Security Monitoring and Auditing
Viewers also liked
A New Day Has Come
The document is a song about finding love and hope after a difficult period of waiting and suffering. It describes how the singer found strength and joy through their love, with the arrival of their partner likened to "an angel" who has brought light and washed away their tears. The song expresses that a new beginning has come, with darkness now turned to light through finding love in "the eyes of a boy".
Lectura de un dato
El documento describe el proceso de lectura de datos de la memoria por parte de la CPU. La CPU coloca la dirección de memoria en el bus de direcciones, informa a la memoria de la dirección del dato requerido, y la memoria busca y coloca el dato en el bus de datos para que la CPU lo recoja y lo use.
History and actors of nonviolence. — 06. From 1939 to 1949
History and actors of nonviolence. — 06. From 1939 to 1949Institut de recherche sur la Résolution Non-violente des Conflits
Slideshows about nonviolence and nonviolent resolution of conflicts, economic alternatives, ecology, social change, spirituality : www.irnc.org , Slideshows in english
Actors of non-violence born between 1939 and 1949Producción industrial de vitaminas y enzimas
Este documento trata sobre la producción industrial de enzimas y vitaminas. Explica que las enzimas son moléculas proteínicas que aceleran las reacciones bioquímicas sin formar parte de los productos finales, y clasifica diferentes tipos de enzimas como hidrolasas, oxidorreductasas y transferasas. También describe varias enzimas de interés industrial como la amilasa, lipasa y proteasas, así como los microorganismos que las producen. Del mismo modo, define las vitaminas y clasifica las hidrosolubles y liposol
Diferencia entre gerencia y administración
La administración se refiere al nivel superior de organización dentro de una empresa u organización, encargado de establecer las políticas y objetivos generales. La gerencia se ubica en un nivel intermedio y se encarga de implementar las políticas y objetivos determinados por la administración a través de la organización estratégica de los recursos. Mientras que la administración es más general y de nivel superior, la gerencia se enfoca en la dirección del director de la organización de nivel medio para alcanzar los objetivos específicos planteados por la administración.
Gerencia publica - Hector Oyarce
Este documento presenta los principales enfoques de la gerencia pública, incluyendo la administración burocrática, la nueva gerencia pública y el enfoque basado en la creación de valor público. También describe las funciones de un gerente público y cómo la gerencia pública busca generar valor público a través de la entrega de servicios y programas que respondan a las necesidades de los ciudadanos de manera eficiente y efectiva.
Viewers also liked (10)
History and actors of nonviolence. — 06. From 1939 to 1949
History and actors of nonviolence. — 06. From 1939 to 1949
Similar to IWMW 1998 Server Management (4) Security Principles
Network management
Network management involves controlling complex data networks to maximize efficiency and ensure data transmission. It aims to help with network complexity and transparency for users. The key aspects of network management include fault, configuration, security, performance, and accounting management. Network management standards and protocols like SNMP and CMIP allow for monitoring and configuration of network devices. Network management platforms provide the software and tools to integrate and manage different network components from a centralized location.
Operations Security Presentation
Operations Security seeks to primarily protect against compromising emanations, which are unintended signals that can be captured and analyzed to derive sensitive information. It aims to protect information processing assets and their confidentiality, integrity, and availability. Key aspects of Operations Security include privileged entity controls like account management, resource protection of facilities, hardware, software and data, and continuity of operations.
Case mis ch04
The document discusses hardware and software components of information systems including input, processing, output, and storage devices. It describes the basic functions of hardware components like the CPU, memory, and storage and how a computer works. The document also covers different types of software including operating systems and applications, and issues for managers to consider regarding technology like security threats and keeping skills up to date.
Kaseya Connect 2013: Scaling Services for Profitability
"Have you considered service delivery for scale and the functionality needed to execute it? Its important to consider the right things when planning for future growth and expansion in your business, and the key to that is how your business will scale, both from an operational standpoint and in detail in how you use Kaseya to scale your delivery. Find out some of the finer points to help you plan as well as what needs to be in place to support the services operationally.
BTEC National in ICT: Unit 3 - Operational Issues
The document discusses several operational issues related to information systems including security, backups, health and safety, organization policies, business continuity planning, costs, and the increasing sophistication of modern systems. Key points include the need to dictate secure access to data, regularly back up information, follow appropriate ergonomic practices, manage costs through a business case, and provide more training as systems become more complex.
Introduction to Network and System Administration
The document provides an overview of computer networks and system administration. It defines what a computer network is and describes different types of networks including WANs, LANs, peer-to-peer networks, and the internet. It also discusses servers, switches, hubs and the roles and responsibilities of a system administrator. Key aspects of system administration include automating tasks, documenting all changes, communicating with users, securing systems, and planning for expected and unexpected issues.
Introduction to computing Chapter 1(B) by asad saleem
Introduction to computing Chapter 1(B) by asad saleemCOMSATS institute of information Technology, vehari campus
Introduction to computing Chapter 1(A) by asad saleem
for MCS
Spacial cradit MCS batch-13 section AFirewall, Router and Switch Configuration Review
This document provides an overview of reviewing firewall, router, and switch configurations to ensure network infrastructure security. It discusses defining critical assets to protect, assessing firewall, router, and switch configurations to protect those assets with concentric security layers, and common security best practices for these devices such as controlling access, disabling unneeded services, and using secure management channels. Definitions of networking and security terms are also provided.
Defcon 22-tim-mcguffin-one-man-shop
The document outlines how to build an effective security program with limited resources as a one-person shop. It discusses establishing people and processes, designing a secure network architecture by dividing the network into zones and applying security controls at boundaries, securing system design through least privilege and centralized logging, performing continuous monitoring through vulnerability scanning and log analysis, obtaining external validation through auditing and penetration testing, and ensuring compliance through following security best practices and frameworks. The overall goal is to prioritize security based on risks through people-focused automation and standardization of processes.
Intrusion detection 2001
This document summarizes a presentation on intrusion detection systems. It discusses the growing risks of e-business and need for intrusion detection strategies. It covers misuse and anomaly detection approaches, and tools that operate at the application, host, and network levels. It also addresses active and passive response techniques, system architectures, technical challenges, legal issues, and commercial and open source intrusion detection systems.
Lock it Down: Access Control for IBM i
IBM i is securable BUT not secured by default. To help protect your organization from the increasing security threats, you must take control of all access points to your IBM i server. You can limit IBM i security threats by routinely assessing your risks and taking control of logon security, powerful authorities, and system access.
With the right tools and process, you can assure comprehensive control of unauthorized access and can trace any activity, suspicious or otherwise, on your IBM i systems.
Watch this on-demand webcast to learn:
• How to secure network access and communication ports
• How to implement different authentication options and tradeoffs
• How to limit the number of privileged user accounts
• How Precisely’s Assure Security can help
Chapter 12 Managing Systems Support and Security .pptx
This chapter discusses systems support and security, which is the final phase of the systems development life cycle. It involves maintaining systems, handling security issues, and supporting users. The key activities in this phase include user support through training and help desks, performing different types of maintenance, managing system performance, ensuring security at multiple levels, conducting backups and disaster recovery, and planning for system obsolescence. The chapter also covers future challenges and opportunities for IT professionals to strategically plan their careers.
Material best practices in network security using ethical hacking
Here are the key steps to quantitatively compute expected loss from risks:
1. Determine the value of the assets that may be lost or compromised. This includes tangible replacement costs as well as intangible costs like loss of reputation.
2. Estimate the probability that each threat will materialize into an actual loss, based on historical data if available. Otherwise use an informed estimate.
3. Quantify the impact of each threat as a monetary value equal to the expected loss to the affected assets in case the threat materializes.
4. Compute the annualized loss expectancy (ALE) for each threat as:
ALE = Asset Value x Probability of Threat x Impact/Loss
5. Add up the
The Basics of Network Troubleshooting
The document discusses various topics related to network troubleshooting including:
- Common causes of problems in the physical environment like temperature, air quality, and magnetism.
- Electrical problems such as crosstalk, noise, static, and transients; and their solutions like properly grounding equipment and using shielding.
- Types of malware like viruses, worms, Trojan horses, and how anti-virus software works to detect them.
- The importance of network management and planning through documentation, policies, backups, standards, and change management to prevent problems.
- Methods for monitoring network performance and troubleshooting issues using tools like SNMP, protocol analyzers, cable testers and more.
Chapter 1-1.pptx
This document discusses principles of embedded computing system design. It begins with definitions of embedded systems and examples, then describes challenges in embedded system design such as meeting deadlines and minimizing power. The document outlines design methodologies including understanding requirements, developing specifications and architectures, and integrating system components.
AQA AS ICT INFO2 Revision
Overview of most areas that you need to know for the AS exam. Some small areas are not included - one being: what's needed to make a network - but nearly everything else is there.
Ch 8: Desktop and Server OS Vulnerabilites
Slides for a college course at City College San Francisco. Based on "Hands-On Ethical Hacking and Network Defense, Third Edition" by Michael T. Simpson, Kent Backman, and James Corley -- ISBN: 9781285454610.
Instructor: Sam Bowne
Class website: https://samsclass.info/123/123_S17.shtml
SNMP Demystified Part-II
This presentation gives a general overview of basic SNMP operations and troubleshooting SNMP issues. This presentation is the second of a three part series - SNMP Demystified.
[Wroclaw #8] IPMI appsec - an express train to hell
This document discusses IPMI (Intelligence Platform Management Interface), which allows remote management of servers through an embedded system on the motherboard called BMC (Baseboard Management Controller). It notes that IPMI uses UDP port 623 and has vulnerabilities like default passwords and cipher zero authentication. The document demonstrates exploiting these to modify passwords, create users, and dump hashes. It recommends disconnecting IPMI from the internet or whitelisting IPs, keeping IPMI software updated, and implementing security best practices like unique administrator accounts and access control as countermeasures. In summary, it warns that IPMI provides full remote access invisible to the OS, like a "parasite inside" a computer that owners cannot fix or patch themselves.
CNIT 123: 8: Desktop and Server OS Vulnerabilites
Slides for a college course based on "Hands-On Ethical Hacking and Network Defense, Second Edition by Michael T. Simpson, Kent Backman, and James Corley -- ISBN: 1133935613
Teacher: Sam Bowne
Twitter: @sambowne
Website: https://samsclass.info/123/123_F16.shtml
Similar to IWMW 1998 Server Management (4) Security Principles (20)
Kaseya Connect 2013: Scaling Services for Profitability
Kaseya Connect 2013: Scaling Services for Profitability
Introduction to computing Chapter 1(B) by asad saleem
Introduction to computing Chapter 1(B) by asad saleem
Chapter 12 Managing Systems Support and Security .pptx
Chapter 12 Managing Systems Support and Security .pptx
Material best practices in network security using ethical hacking
Material best practices in network security using ethical hacking
[Wroclaw #8] IPMI appsec - an express train to hell
[Wroclaw #8] IPMI appsec - an express train to hell
More from IWMW
Look who's talking now
This document summarizes the author's experience moving from heading the web services team at a modern, centralized university to a traditional, decentralized university. At the modern university, there was a strong emphasis on branding and visual identity across a centralized website. However, at the traditional university, websites were managed separately by different departments, leading to duplication, incorrect information, and a lack of consistent branding or user experience. The author outlines steps to improve communication, gain support from top administrators, and reshape the web team to develop a unified online identity and branding while still supporting individual departments.
Introduction to IWMW 2000 (Liz Lyon)
UKOLN provides leadership to libraries, information organizations, and cultural heritage institutions to help them advance their services in digital environments. They conduct research, provide advice and consulting, and promote community building through events. UKOLN works on projects at local, regional, national, and global levels to help different organizations collaborate and make their resources interoperable. Sharing knowledge through conferences and workshops is important for developing a joined-up approach where organizations work together.
Web Tools report
This document discusses various web tools including browsers, content management systems, and browser management. It covers Opera browser, WebTV, Zope content management system, and an example from City University Business School. Specifically:
1. It discusses different browsers like Opera and WebTV, issues with browser management, and recommends Zope content management system for improving workflows.
2. Zope is described as middleware, an authoring tool, and object database that can improve how we work and manage content.
3. An example from City University Business School demonstrates combining current software like Lotus Notes to provide web content management.
Personal Contingency Plan - Beat The Panic
This document provides a personal contingency plan for beating panic by creating choices, weighing options, and making a plan. It outlines thinking of 5 potential choices when facing panic and assessing those choices using SWOT analysis. The plan recommends crafting a story for each choice by considering who, what, why, how, where, when, and with what. It also identifies 7 qualities to cultivate: committed, decisive, healthy, mentored, persuasive, solvent, and specialist.
Whose site is it anyway?
Slides for a report on the "Whose Site Is It Anyway? The Web Editor’s Career" discussion groups session at IWMW 1999.
Open Source - the case against
Debate on "The house believes that the future of Web in UK Higher and Further Education communities lies in the adoption of open source software" at IWMW 2002.
IWMW 2002: Avoiding Portal Wars - an MIS view
Panel session on “Avoiding Portal Wars” given at the IWMW 2002 event.
See http://www.ukoln.ac.uk/web-focus/events/workshops/webmaster-2002/talks/panel/
What does open source mean for the institutional web manager?
Slides for talk on "What does open source mean for the institutional web manager?" given at IWMW 2006.
Library 2.0
Slides for talk on "Library 2.0: talk of the library’s demise is
somewhat premature" given at IWMW 2006
Social participation in student recruitment
Social participation through forums and blogs has been used for student recruitment in higher education. Existing social media sites or creating your own can help drive traffic and peer recommendations. Fears around negative comments, lack of control and the unknown are holding institutions back. To improve, institutions should assign responsibilities, build relationships through targeted content, embrace change and recognize social media's potential for recruitment.
Supporting Institutions in Changing Times: Manifesto
Slides by Kjell Eldor-Evans, Manifesto for panel session on Supporting Institutions in Changing Times.
IWMW 2019 photo scavenger hunt highlights
The document outlines the tasks for a photo scavenger hunt held at the University of Greenwich from June 25-27, 2019 as part of the IWMW 2019 conference. Participants were instructed to find Prime Meridian markers, take photos with strangers in uniforms, get to know local dogs, pour drinks, carry large objects, hang from fences, mourn a dead parrot, multitask, and pretend to be king of the world.
How to Turn a Web Strategy into Web Services
1) The University's web estate has evolved organically leading to gaps in knowledge and risks from fragmentation.
2) There are over 1,497 websites using various platforms with over 1 million pages, but governance is limited and quality varies widely.
3) The strategy aims to establish central governance and standards while allowing flexibility, with a unified modern platform, engaged user communities, and data-driven decision making.
Static Site Generators - Developing Websites in Low-resource Condition
Paul Walk discusses static site generators as an alternative to content management systems for publishing websites. Static site generators allow content to be authored in simple text files using formats like Markdown and compiled into static HTML and CSS that can be hosted on basic web servers. They provide benefits like minimal infrastructure needs, easy preservation of content, and increased security compared to systems that rely on databases. However, they may not be as user-friendly for content authoring. In general, static site generators are best suited for smaller, simpler websites that don't require advanced user access controls or dynamic functionality.
Looking to the Future
This document provides an agenda for the final day of the IWMW 2019 conference on June 27, 2019. The conference focused on strategic thinking and was held at the University of Greenwich in London. The agenda discusses continuing professional development for institutional digital teams, supporting regional communities of practice groups established after the previous conference, maintaining the IWMW blog and Twitter presence after the event, and governance topics like the future role of the IWMW Oversight Group. It also thanks the speakers, sponsors, advisory group, live streamers, official cartoonist, and host university for their contributions to the successful three-day conference.
Looking to the Future
This document provides an agenda and notes for Session 7 of the IWMW 2019 conference with the theme "Strategic Thinking". The session will be chaired by Andrew Millar and use the hashtag #iwmw19. Issues to be discussed include supporting professional development for institutional digital teams, following up on regional groups from last year, governance of the IWMW blog and Twitter account, sustainability and scope of future IWMW events, and looking ahead to IWMW's 25th anniversary. The document expresses thanks to speakers, sponsors, the advisory group, those who helped amplify the event online, the official cartoonist, and the host university.
Developing Communities of Practice
The document discusses the need for vertical learning and communities of practice in a VUCA world. It provides examples of successful communities of practice across institutions, including a work shadowing scheme and action learning sets for women. Tips are given for establishing a community of practice, such as identifying interested groups, using existing connections, defining membership and leadership, and ensuring the ability to meet regularly.
How to train your content- so it doesn't slow you down...
This document discusses how to optimize web content, especially images, to improve performance and accessibility. It provides statistics on how images make up a large portion of web page sizes and explains common image formats. Optimization techniques are suggested like using responsive images, compression tools, and content delivery networks. The document stresses considering performance and accessibility throughout the design and development process from user research to deployment. Improving assets at their source and removing blocking elements can enhance the user experience.
Grassroots & Guerrillas: The Beginnings of a UX Revolution
This document summarizes Kat Husbands' presentation on the beginnings of a UX revolution at the University of Glasgow. It describes how over time, UX has progressed from being unrecognized to becoming more embedded in the organization's culture and practices. It provides examples of projects where UX methods like surveys, testing, and workshops were used to redesign pages like the staff homepage and student printing pages. Feedback shows these projects improved users' experiences. The presentation urges others to start small with UX work, iterate based on testing, and communicate results to continue progressing UX maturity within their organizations.
Connecting Your Content: How to Save Time and Improve Content Quality through...
Slides for talk on "Connecting Your Content: How to Save Time and Improve Content Quality through Structured Content and Taxonomy"
More from IWMW (20)
What does open source mean for the institutional web manager?
What does open source mean for the institutional web manager?
Supporting Institutions in Changing Times: Manifesto
Supporting Institutions in Changing Times: Manifesto
Static Site Generators - Developing Websites in Low-resource Condition
Static Site Generators - Developing Websites in Low-resource Condition
How to train your content- so it doesn't slow you down...
How to train your content- so it doesn't slow you down...
Grassroots & Guerrillas: The Beginnings of a UX Revolution
Grassroots & Guerrillas: The Beginnings of a UX Revolution
Connecting Your Content: How to Save Time and Improve Content Quality through...
Connecting Your Content: How to Save Time and Improve Content Quality through...
Recently uploaded
Educational Technology in the Health Sciences
Plenary presentation at the NTTC Inter-university Workshop, 18 June 2024, Manila Prince Hotel.
Philippine Edukasyong Pantahanan at Pangkabuhayan (EPP) Curriculum
(𝐓𝐋𝐄 𝟏𝟎𝟎) (𝐋𝐞𝐬𝐬𝐨𝐧 𝟏)-𝐏𝐫𝐞𝐥𝐢𝐦𝐬
𝐃𝐢𝐬𝐜𝐮𝐬𝐬 𝐭𝐡𝐞 𝐄𝐏𝐏 𝐂𝐮𝐫𝐫𝐢𝐜𝐮𝐥𝐮𝐦 𝐢𝐧 𝐭𝐡𝐞 𝐏𝐡𝐢𝐥𝐢𝐩𝐩𝐢𝐧𝐞𝐬:
- Understand the goals and objectives of the Edukasyong Pantahanan at Pangkabuhayan (EPP) curriculum, recognizing its importance in fostering practical life skills and values among students. Students will also be able to identify the key components and subjects covered, such as agriculture, home economics, industrial arts, and information and communication technology.
𝐄𝐱𝐩𝐥𝐚𝐢𝐧 𝐭𝐡𝐞 𝐍𝐚𝐭𝐮𝐫𝐞 𝐚𝐧𝐝 𝐒𝐜𝐨𝐩𝐞 𝐨𝐟 𝐚𝐧 𝐄𝐧𝐭𝐫𝐞𝐩𝐫𝐞𝐧𝐞𝐮𝐫:
-Define entrepreneurship, distinguishing it from general business activities by emphasizing its focus on innovation, risk-taking, and value creation. Students will describe the characteristics and traits of successful entrepreneurs, including their roles and responsibilities, and discuss the broader economic and social impacts of entrepreneurial activities on both local and global scales.
How to Predict Vendor Bill Product in Odoo 17
This slide will guide us through the process of predicting vendor bill products based on previous purchases from the vendor in Odoo 17.
Chapter wise All Notes of First year Basic Civil Engineering.pptx
Chapter wise All Notes of First year Basic Civil Engineering
Syllabus
Chapter-1
Introduction to objective, scope and outcome the subject
Chapter 2
Introduction: Scope and Specialization of Civil Engineering, Role of civil Engineer in Society, Impact of infrastructural development on economy of country.
Chapter 3
Surveying: Object Principles & Types of Surveying; Site Plans, Plans & Maps; Scales & Unit of different Measurements.
Linear Measurements: Instruments used. Linear Measurement by Tape, Ranging out Survey Lines and overcoming Obstructions; Measurements on sloping ground; Tape corrections, conventional symbols. Angular Measurements: Instruments used; Introduction to Compass Surveying, Bearings and Longitude & Latitude of a Line, Introduction to total station.
Levelling: Instrument used Object of levelling, Methods of levelling in brief, and Contour maps.
Chapter 4
Buildings: Selection of site for Buildings, Layout of Building Plan, Types of buildings, Plinth area, carpet area, floor space index, Introduction to building byelaws, concept of sun light & ventilation. Components of Buildings & their functions, Basic concept of R.C.C., Introduction to types of foundation
Chapter 5
Transportation: Introduction to Transportation Engineering; Traffic and Road Safety: Types and Characteristics of Various Modes of Transportation; Various Road Traffic Signs, Causes of Accidents and Road Safety Measures.
Chapter 6
Environmental Engineering: Environmental Pollution, Environmental Acts and Regulations, Functional Concepts of Ecology, Basics of Species, Biodiversity, Ecosystem, Hydrological Cycle; Chemical Cycles: Carbon, Nitrogen & Phosphorus; Energy Flow in Ecosystems.
Water Pollution: Water Quality standards, Introduction to Treatment & Disposal of Waste Water. Reuse and Saving of Water, Rain Water Harvesting. Solid Waste Management: Classification of Solid Waste, Collection, Transportation and Disposal of Solid. Recycling of Solid Waste: Energy Recovery, Sanitary Landfill, On-Site Sanitation. Air & Noise Pollution: Primary and Secondary air pollutants, Harmful effects of Air Pollution, Control of Air Pollution. . Noise Pollution Harmful Effects of noise pollution, control of noise pollution, Global warming & Climate Change, Ozone depletion, Greenhouse effect
Text Books:
1. Palancharmy, Basic Civil Engineering, McGraw Hill publishers.
2. Satheesh Gopi, Basic Civil Engineering, Pearson Publishers.
3. Ketki Rangwala Dalal, Essentials of Civil Engineering, Charotar Publishing House.
4. BCP, Surveying volume 1
Mule event processing models | MuleSoft Mysore Meetup #47
Mule event processing models | MuleSoft Mysore Meetup #47
Event Link:- https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-mule-event-processing-models/
Agenda
● What is event processing in MuleSoft?
● Types of event processing models in Mule 4
● Distinction between the reactive, parallel, blocking & non-blocking processing
For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/YouTube:- youtube.com/@mulesoftmysore
Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N
Speaker:-
Shivani Yasaswi - https://www.linkedin.com/in/shivaniyasaswi/
Organizers:-
Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/
Giridhar Meka - https://www.linkedin.com/in/giridharmeka
Priya Shaw - https://www.linkedin.com/in/priya-shaw
How to deliver Powerpoint Presentations.pptx
"How to make and deliver dynamic presentations by making it more interactive to captivate your audience attention"
Temple of Asclepius in Thrace. Excavation results
The temple and the sanctuary around were dedicated to Asklepios Zmidrenus. This name has been known since 1875 when an inscription dedicated to him was discovered in Rome. The inscription is dated in 227 AD and was left by soldiers originating from the city of Philippopolis (modern Plovdiv).
BIOLOGY NATIONAL EXAMINATION COUNCIL (NECO) 2024 PRACTICAL MANUAL.pptx
Practical manual for National Examination Council, Nigeria.
Contains guides on answering questions on the specimens provided
Benner "Expanding Pathways to Publishing Careers"
This presentation was provided by Rebecca Benner, Ph.D., of the American Society of Anesthesiologists, for the second session of NISO's 2024 Training Series "DEIA in the Scholarly Landscape." Session Two: 'Expanding Pathways to Publishing Careers,' was held June 13, 2024.
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Ab...
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Aberdeen
RHEOLOGY Physical pharmaceutics-II notes for B.pharm 4th sem students
Physical pharmaceutics notes for B.pharm students
THE SACRIFICE HOW PRO-PALESTINE PROTESTS STUDENTS ARE SACRIFICING TO CHANGE T...
The recent surge in pro-Palestine student activism has prompted significant responses from universities, ranging from negotiations and divestment commitments to increased transparency about investments in companies supporting the war on Gaza. This activism has led to the cessation of student encampments but also highlighted the substantial sacrifices made by students, including academic disruptions and personal risks. The primary drivers of these protests are poor university administration, lack of transparency, and inadequate communication between officials and students. This study examines the profound emotional, psychological, and professional impacts on students engaged in pro-Palestine protests, focusing on Generation Z's (Gen-Z) activism dynamics. This paper explores the significant sacrifices made by these students and even the professors supporting the pro-Palestine movement, with a focus on recent global movements. Through an in-depth analysis of printed and electronic media, the study examines the impacts of these sacrifices on the academic and personal lives of those involved. The paper highlights examples from various universities, demonstrating student activism's long-term and short-term effects, including disciplinary actions, social backlash, and career implications. The researchers also explore the broader implications of student sacrifices. The findings reveal that these sacrifices are driven by a profound commitment to justice and human rights, and are influenced by the increasing availability of information, peer interactions, and personal convictions. The study also discusses the broader implications of this activism, comparing it to historical precedents and assessing its potential to influence policy and public opinion. The emotional and psychological toll on student activists is significant, but their sense of purpose and community support mitigates some of these challenges. However, the researchers call for acknowledging the broader Impact of these sacrifices on the future global movement of FreePalestine.
Recently uploaded (20)
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
Philippine Edukasyong Pantahanan at Pangkabuhayan (EPP) Curriculum
Philippine Edukasyong Pantahanan at Pangkabuhayan (EPP) Curriculum
Chapter wise All Notes of First year Basic Civil Engineering.pptx
Chapter wise All Notes of First year Basic Civil Engineering.pptx
REASIGNACION 2024 UGEL CHUPACA 2024 UGEL CHUPACA.pdf
REASIGNACION 2024 UGEL CHUPACA 2024 UGEL CHUPACA.pdf
Mule event processing models | MuleSoft Mysore Meetup #47
Mule event processing models | MuleSoft Mysore Meetup #47
BIOLOGY NATIONAL EXAMINATION COUNCIL (NECO) 2024 PRACTICAL MANUAL.pptx
BIOLOGY NATIONAL EXAMINATION COUNCIL (NECO) 2024 PRACTICAL MANUAL.pptx
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Ab...
What is Digital Literacy? A guest blog from Andy McLaughlin, University of Ab...
RHEOLOGY Physical pharmaceutics-II notes for B.pharm 4th sem students
RHEOLOGY Physical pharmaceutics-II notes for B.pharm 4th sem students
THE SACRIFICE HOW PRO-PALESTINE PROTESTS STUDENTS ARE SACRIFICING TO CHANGE T...
THE SACRIFICE HOW PRO-PALESTINE PROTESTS STUDENTS ARE SACRIFICING TO CHANGE T...
IWMW 1998 Server Management (4) Security Principles
- 1. Institutional Web Management Workshop September 1998 Information Services Security principles Andrew Cormack
- 2. Institutional Web Management Workshop September 1998 Information Services Security principles • know what computer is for • run only what's needed with minimal access • prevent unauthorised access • keep self and machine up to date • monitor the system • educate users
- 3. Institutional Web Management Workshop September 1998 Information Services Know what computer is for • software must reflect purpose – workstation ? – dedicated server ? • assume out-of-box systems are insecure – most have old, vulnerable servers – with everything enabled – well-known, unnecessary accounts • usually disable services; seldom enable them • beware of interactions between services
- 4. Institutional Web Management Workshop September 1998 Information Services Minimal access • run nothing you don't need – understand everything you run • run servers with least possible privilege – unprivileged accounts – reduced options • do services need to be bi-directional? – only need outbound sendmail on workstations • restrict access using wrappers and/or routers
- 5. Institutional Web Management Workshop September 1998 Information Services Prevent unauthorised access • few accounts with good passwords • see later ...
- 6. Institutional Web Management Workshop September 1998 Information Services Keep up to date • understand what you run • use recent versions – but avoid the “bleeding edge” • patch as soon as possible • join mailing lists & community
- 7. Institutional Web Management Workshop September 1998 Information Services Monitor • backups are very useful – initial backup for comparison – later backups as checkpoints • know what 'normal' system is • keep & check logfiles • investigate oddities • synchronise clocks if possible – it makes tracking network attacks far easier • use tools: audits, portscanners etc.
- 8. Institutional Web Management Workshop September 1998 Information Services Educate users • they can outwit everything you do!