Security Basics mailing list archives

RE: security advice

From: "Jean-Paul Baillon" <JPBaillon () ContentWise com au>
Date: Wed, 28 Jan 2004 14:06:48 +1100

I wouldn't bother doing the NAT thing on the server and the proxy, well
you can really go without that too. My advice to you would be to get a
firewall ASAP to secure the network from online threats. CheckPoint have
a small box that will do just that.

http://www.checkpoint.com/products/smallbusiness/safe () office html

The Safe@Office 110 also has VPN functionality for remote access or
site-to-site VPN. Very easy to config via browser. This one would be
best suited to your scenario.

Also to save the bandwith Microsoft have Software Update Services

http://www.microsoft.com/windowsserversystem/sus/default.mspx

Once the server has been set up it downloads the updates and stores them
for distribution to the client computers at a specified date.

I hope this is of some value to you
J-P




-----Original Message-----
From: coder [mailto:elite.coder () ntlworld com] 
Sent: Monday, 26 January 2004 10:40 AM
To: security-basics () securityfocus com
Subject: security advice


Hi I just need a bit of advice,

I have recently been appointed network administrator at a charity. The
network consists of a windows server 2003 central server and about 10
windows XP clients.

can anyone give me some tips to secure the network?

so far I have:

installed patches and updates
changed passwords to "strong passwords"
installed AV software on all clients & server


I am also planning on setting up the NAT thing in the server and
installing a proxy then disabling all ports except the proxys (is this a
good idea?)

I appricate any help
thanks

~Davie



------------------------------------------------------------------------
---
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off
any 
course! All of our class sizes are guaranteed to be 10 students or less.

We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion
Prevention, 
and many other technical hands on courses. 
Visit us at http://www.infosecinstitute.com/securityfocus to get $720
off 
any course!  
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any
course! All of our class sizes are guaranteed to be 10 students or less.
We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention,
and many other technical hands on courses.
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off
any course!
----------------------------------------------------------------------------

Current thread:

security advice coder (Jan 26)
- Re: security advice Brad Arlt (Jan 27)
- Re: security advice Meritt James (Jan 28)
- <Possible follow-ups>
- RE: security advice Thomas F. Szabo (Jan 27)
  - Re: security advice Alvin Oga (Jan 28)
- RE: security advice Mike (Jan 27)
  - Re: security advice Byron Sonne (Jan 28)
  - RE: security advice Jimmy Sansi (Jan 28)
- RE: security advice Jean-Paul Baillon (Jan 28)
- RE: security advice Mike (Jan 28)