Discussion in 'Windows Desktop Systems' started by sentme_mail, Oct 3, 2002.
what policy would you implement to ensure that your network is secure?
Only one network administrator
Eight characters long login passwords
Disable/uninstall all unnecessary services (IIS first)
Remove all Windows9x systems from the network
Disable cookies, activeX and component downloading from the internet
Disable scripting on email programs
Use a firewall and antivirus
Possibly rely on a router or NAT
Implement IPSec (if got all MSWindows machines)
Disable Remote Desktop/Terminal Services
Use appropriate share and file permission
Use screensaver protection
..that would be enough for protection from the outside and a little from the inside.
If you can set up a Domain with Hisec default policy, but that another story... little more complex than a lan.
I'll keep thinking in case I forgot anything important.
maybe things like what are the steps we should take when connecting PCs, printers,
etc..etc.. onto the network running microsoft OSs?
uh, thought you wanted sort of a generic feedback...
Let's be more specific then... what's the first step you want to make and goal to achieve? we'll consider them one by one.
i have not thought of anything too specific yet, but i hope to have the change to read a real production security policy.
if anybody is willing to share with me.