Good Security is Really Just Good Systems Administration

“Good security is really just good systems administration” – this phrase was uttered by John Strand in his July 27 post, “The Rise of Security Monkeys.” And you know, he’s right.

Think about the basic set of countermeasures often repeated to mitigate various malware, hacker attacks, etc.:

  • Disable/remove unnecessary services
  • Patch systems
  • Update vulnerable software
  • Implement ingress/egress filtering (either at the network or host level)
  • Enforce strong passwords (and provide a way for your customers/users to remember them)
  • Configure user’s account to run in a lesser privileged mode

Easier said than done – I know…and sure, there’s the ninja-like offensive stuff that will win over good systems administration no matter what. But if you look at this list, these basic security tenets boil down to good systems administration. Well said John.


Maryland US Cyber Challenge Camp Starts Today!

The US Cyber Challenge (USCC) Summer Camp starts today at the Community College of Baltimore County (CCBC), Maryland. 22 high school students and teachers from Baltimore and Howard counties will spend the next five days exploring security from a networking, operating systems, and system administrative perspective. The camp includes guest speakers, field trips to the National Electronics Museum and the Department of Defense Cyber Crime Center (DC3), and culminates on Friday, July 15 with a cyber exercise that combines a Quiz Bowl, with networking and system administration exercises. Students from the winning team will each earn a $1,000 scholarship, courtesy of ISC2.