“Good security is really just good systems administration” – this phrase was uttered by John Strand in his July 27 post, “The Rise of Security Monkeys.” And you know, he’s right.
Think about the basic set of countermeasures often repeated to mitigate various malware, hacker attacks, etc.:
- Disable/remove unnecessary services
- Patch systems
- Update vulnerable software
- Implement ingress/egress filtering (either at the network or host level)
- Enforce strong passwords (and provide a way for your customers/users to remember them)
- Configure user’s account to run in a lesser privileged mode
Easier said than done – I know…and sure, there’s the ninja-like offensive stuff that will win over good systems administration no matter what. But if you look at this list, these basic security tenets boil down to good systems administration. Well said John.
Responsible for Cisco networks? Check this tool out: Cisco IOS Software Checker.
Today is the final day of the USCC Maryland Summer Camp.
The students will be competing in an contest that combines a Quiz Bowl with networking and system administration exercises. Students from the winning team will each earn a $1,000 scholarship, courtesy of ISC2.
The awards ceremony starts at 1 PM EST. All are welcome.
Today’s agenda: Rick Doten, Lockheed Martin talks about penetration testing; OSes; and system administration.
The group heads to the National Electronics Museum and the Department of Defense Cyber Crime Center (DC3) for site visits.
Today’s agenda: Vernon L. Rhodes from Defense Information Systems Agency (DISA) talks about Security Clearances; virtualization; OSes; and nmap goodness.
For more information, see www.uscyberchallenge.org.
The US Cyber Challenge (USCC) Summer Camp starts today at the Community College of Baltimore County (CCBC), Maryland. 22 high school students and teachers from Baltimore and Howard counties will spend the next five days exploring security from a networking, operating systems, and system administrative perspective. The camp includes guest speakers, field trips to the National Electronics Museum and the Department of Defense Cyber Crime Center (DC3), and culminates on Friday, July 15 with a cyber exercise that combines a Quiz Bowl, with networking and system administration exercises. Students from the winning team will each earn a $1,000 scholarship, courtesy of ISC2.