Irongeek.com Adrian Crenshaw Joseph Hollingsworth
Irongeek.com Joe Professor at Indiana University Southeast Computer Science & Informatics departments Director of professional development for faculty Adrian Runs Irongeek.com Has an interest in InfoSec education (ir)Regular on the ISDPodcast
Irongeek.com Given only 25 minutes, tell us what a small business could do to help their security posture? You can expect a lot of “buts” and “except fors” because that’s the nature of the business.
Irongeek.com The CIA Triad Confidentiality Who needs to know it? Integrity Has anyone changed it? Availability Can the people that need to access it, get to it? Confidentiality Integrity Availability Stuff that will ring your bell security wise
Irongeek.com Not cool or sexy, but important How often? Daily, Weekly, Monthly? Offsite storage! Why? Check to make sure you can restore from the backup What to use? Tape, another box, cloud? Not sure of a “cloud” provider to recommend, but check the provider’s: Privacy Policy Liability for lost data
Irongeek.com Don't run as admin on your own machine This somewhat mitigates what malware can do on a system File shares with too open a permissions set? Lots of Windows software is badly designed to require more rights than it needs Tools to help with this include ProcMon RegFrom App ProcessActivityView
Irongeek.com Always unique is best, but… Levels and domains Different passwords for different purposes (financial, social network, etc.) Users sharing a password? Pass phrases More secure and easier to remember Do you store passwords in apps where others can access them? Password Vaults KeyPass -
Irongeek.com Microsoft Remember patch Tuesday and keep it holy Somewhat automated May want to do testing first Windows Server Update Services Linux apt-get is lovely for package management, but hand installed web apps are a pain 3rd Party Adobe auto updating? Shavlik NetChk GFI Languard Secunia PSI/CSI
Irongeek.com Not a magic bullet If the malware is custom, you are out of luck Should help against wide spread common malware Concentrate on user awareness, patches, and least privilege Some suggestions: Microsoft Security Essentials AVG Malware Bytes
Irongeek.com Do you have a perimeter (hint not totally) Sites and browser issues WiFi – (decreasing levels of protection) WPA Enterprise > WPA > WEP > Open Forget about MAC filtering and SSID cloaking VPN Built into Windows DD-WRT OpenVPN
Irongeek.com What if someone gets access to the physical storage of your data? For Public and private keys GPG For hard drives/data Truecrypt
Irongeek.com Only hardware that goes public: Donations Trashed Stolen Format may not remove as much as you think Data carving File and Drive wiping Secure Erase DBAN
Irongeek.com Louisville Infosec Sept 29th DerbyCon 2011, Louisville Ky Sept 30 - Oct 2
Irongeek.com 42