University of
ConnecticutEight Security Guidelines
In the hopes of enabling everyone at the University to understand network security-related best practices, we have attempted to distill our practical experience into these eight guidelines. It is important to know that when you connect your computer to the UConn network it is directly linked to the public Internet, and these security precautions must be followed to keep your system protected from attacks. For official State of Connecticut and University of Connecticut policy, visit the IT Policy web site. The site also contains additional guidelines, standards, and recommendations.
1. Use Antivirus Software
Anti-virus software must be installed and regularly updated on all computers on the network. If you do not have anti-virus software installed, you dramatically increase the risk of being infected. Viruses may destroy your personal data and harm other users connected to the Internet and/or UConn network. The University provides excellent antivirus software free of charge to all its members, for more information please check out our antivirus page.
2. Install Security Patches
Windows Update and Automatic Updates:
Windows Update is an integral part of keeping your operating system updated and patched for the latest security vulnerabilities. It's a web site that you can visit which will tell you which updates are available for your environment. You should always install all 'Critical Updates and Service Packs'. Some updates must be installed exclusive from other updates, - you may have to reboot your computer and repeat this procedure again to install all the critical updates. Your system has all the critical updates installed once you have rebooted and visited the windows update site and there are no more critical updates or service packs to install.
Automatic Updates is a feature that is provided in Windows 2000 SP3+ and Windows XP. If you are running Windows 2000 gold, SP1, or SP2 you should upgrade to the latest service pack to provide Automatic Update functionality. Automatic Updates can be configured to automatically download and install updates on a schedule you choose. We recommend that users set this feature up and choose a daily time to download and install updates.
If you would like help learning how to run Windows Update or configure Automatic Updates, visit the following Microsoft security site and choose your operating system to start the instructions. You will find illustrated guides to help you through the process.
General Updates:
Keep your operating system and programs as current as possible by checking frequently for any patches or updates, and make sure that any services and network applications you run (like a web or ftp server, or web browser or email client) are also kept current. Out-of-date operating systems, services, and network applications are the most frequently exploited security problem on the Internet. If you need assistance with updating your operating system, services, or network applications contact your local network Administrator or the UConn Help Desk at 486-HELP (4357).
3. Use Strong Passwords
Put strong passwords on all accounts on your computer and put strong passwords on all write able network shares, including folders shared from your computer and web or ftp servers you choose to run. If you allow write-access to your computer without a password, or with an easy to guess password, someone else will discover your share and fill up your computer with unwanted files, or install applications that allow them to take control of your computer.
4. Do Not Open Email From Unknown Sources
Do not trust any email and especially attachments you were not expecting, even from people you know, and precede all attachments that you send with a message to the recipient. Only open email attachments that you were expecting from people that you trust. Opening email or attachments from people you don't know puts you at increased risk of being infected by a virus.
5. If Possible, Use a Firewall
For students that bring their own personal computers to UConn, use a firewall. For faculty and staff, ask your administrator if a firewall is available for you. Firewall's help protect your computer by regulating the kind of traffic that is able to reach and leave your computer. Properly configured, it can provide good protection from network viruses and worms while not inhibiting your regular network activities.
6. Disable Unnecessary Services
Disable all unnecessary network services and un install all unnecessary network applications, such as a built-in mail server or web server that you do not need, or a media player or file sharing application that you no longer use. These services and applications are easily exploited if a vulnerability is discovered in them, and by disabling unused ones you eliminate this risk. If you need assistance determining which services and applications are necessary, and which you may be able to disable or un install, contact your local network Administrator or the UConn Help Desk at 486-HELP (4357).
7. Download Files From Reputable Sources
Do not trust any downloads that you may have received from file sharing (p2p) networks or non-reputable web sites. These files may not be safe and you put yourself at additional risk by opening them.
8. Backup Your Files
Think about what would happen if you lost all the files that are on your computer right now. Are they backed up? Losing a large amount of your personal files can be a very painful experience, you should take the time out to organize your files and back them up to CD's. Don't wait for a security incident to take away your files forever.
Updated: 10/11/2006