How secure is your network?


Every general computer networking class teaches the OSI and/or DoD networking models, and we all learn that everything begins at the bottom, with the physical level. Likewise, when it comes to IT security, physical security is the foundation for our overall strategy. But some organizations, distracted by the more sophisticated features of software-based security products, may overlook the importance of ensuring that the network and its components have been protected at the physical level.

In this blog, we'll take a look at 10 of the most essential security measures you should implement now, if you haven't already done so.
#1: Lock up the server room.

Even before you lock down the servers, in fact, before you even turn them on for the first time, you should ensure that there are good locks on the server room door. Of course, the best lock in the world does no good if it isn't used, so you also need policies requiring that those doors be locked any time the room is unoccupied, and the policies should set out who has the key or keycode to get in.
The server room is the heart of your physical network, and someone with physical access to the servers, switches, routers, cables and other devices in that room can do enormous damage.
#2: Set up surveillance

Locking the door to the server room is a good first step, but someone could break in, or someone who has authorized access could misuse that authority. You need a way to know who goes in and out and when. A log book for signing in and out is the most elemental way to accomplish this, but it has a lot of drawbacks. A person with malicious intent is likely to just bypass it.
#3: Make sure the most vulnerable devices are in that locked room
Remember, it's not just the servers you have to worry about. A hacker can plug a laptop into a hub and use sniffer software to capture data traveling across the network. Make sure that as many of your network devices as possible are in that locked room, or if they need to be in a different area, in a locked closet elsewhere in the building.

#4: Use rack mount servers
Rack mount servers not only take up less server room real estate; they are also easier to secure. Although smaller and arguably lighter than (some) tower systems, they can easily be locked into closed racks that, once loaded with several servers, can then be bolted to the floor, making the entire package almost impossible to move, much less to steal.

#5. Disable the drives.
If you don't want employees copying company information to removable media, you can disable or remove floppy drives, USB ports, and other means of connecting external drives. Simply disconnecting the cables may not deter technically savvy workers. Some organizations go so far as to fill ports with glue or other substances to permanently prevent their use, although there are software mechanisms that disallow it. Disk locks, such as the one at SecurityKit.com, can be inserted into floppy drives on those computers that still have them to lock out other diskettes.

See you next week for more on this topic

Comments

Post a Comment

Ask me any question

Popular posts from this blog

ICT for Education in Uganda

Image
In many countries, information and communications technology (ICT) has a clear impact on the development of educational curricula. Here in Uganda, the ministry of education has identified and defined a framework of ICT competencies for expected outcomes, related to knowledge, skills and attitudes that pupils are expected to achieve at the end of primary school. However, it has never been examined whether teachers are using ICT in accordance with the competencies proposed by the government. In a survey conducted in some schools in 2015, results from some schools that try to teach ICT , show that teachers mainly focus on the development of theoretical ICT skills, whereas the ICT curriculum centres on the integrated use of ICT within the learning and teaching process. This shows the existence of a gap between the proposed and the implemented curriculum for ICT. The findings further conclude with the potential value of a school‐based ICT curriculum that ‘translates’ the national ICT‐
Read more

Does your current job allow for innovation

Image
Last week I was invited by  ITAU  (ICT Teachers' Association of Uganda) Chairperson,  Mukalele Rogers  to take part in the training of trainers' workshop. While there, I was surprised at the discoveries I made and the rate at which our country was taking digital learning. Its here that I realized that sitting at your desk day-in and day-out  impacts on your level of imagination and creativity. First members were given a chance to demonstrate how they were ensuring school continuity during the COVID-19 lock down. Being a member from an International school, I eagerly waited on my turn to showcase my skills and tech expertise. By the time the third participant finished his deliberation, I had lost all the guts to stand-up or say anything. The most annoying part here is when they kept referring to me as a member with diverse experiences and knowledge in these software looking at my background and current position. Hardly did they know that the platforms they were referring to as o
Read more

Automatic repair loop solution

Image
  When you are faced with a problem, in most cases you tend to find an immediate solution to it either by asking a friend for help or by simply trying to figure out the solution yourself. But trust me, the more you try finding the fix on your own, the more you discover and learn several solutions to one problem. Allow me share the several solutions I came up with when I was once faced by an automatic repair loop. NOTE: I RECOMMEND THAT YOU PICK SIMPLE METHODS FIRST FROM THE LIST GIVEN BELOW BEFORE TRYING OUT THE ADVANCED ONES. Method 1: Use Check Disk Utility Connect the Windows installation media (could be a CD or USB drive) or Recovery Drive/System Repair Disc to your PC (Get someone who has one to give you or simply download it from the internet), select your language preferences, and finally click Next button to continue. Click Repair your computer at the bottom. Choose Troubleshoot > Advanced Options > Command Prompt . Type chkdsk /f /r C: and then press Enter Type exit
Read more