Some Easy Things To Do To Secure Your Network

I'm sure we all know IT managers who try their best to be proactive. They update their software as soon as possible, they apply patches as quickly as they can, and they make sure that they have updated firewalls, vulnerability scanners and intrusion prevention appliances. They also spend their time hopelessly backlogged with all of the work, and sometimes it comes home to haunt them as they find themselves being attacked through a opening they haven't patched yet or a vulnerability their scanner missed.

But it doesn't have to be this way. According to Peter Tippett, CTO of the newly-formed security company Cybertrust (formed from TruSecure, BeTrusted and Ubizen), you're better off looking for good solutions instead of perfect answers. "A few solutions that are only 80 percent effective give an overall 99.9 percent solution," Tippett says. In fact, he says that the most effective security solutions require little time and less expense, and can reduce your exposure 40-fold.

The most effective solution, he said, is to simply set your routers to what he calls "default deny." By this he means that your routers should be set so that all traffic from outside your network is denied entry or exit, except for traffic that's specifically allowed. How do you know what traffic to allow? Tippett suggests checking your router logs. You'll see over the course of a couple of days what traffic leaves your network, where it goes and where it comes from. The same is true for incoming traffic.

The link for this article located at securitypipeline.com is no longer available.