David’s Cisco Networking Blog

Dec 5 2007   7:37PM GMT

Before you blame “the users”, check yourself first for that security hole

David Davis David Davis Profile: David Davis

I was reading a recent article entitled “IT departments biggest source of data leaks, says research”. In this article, where the results of a study, published about the source of security holes and leaks at most companies. What the study found was that about 30% of all security leaks.

My takeaway from this article was that before we blame “the users” for causing security issues or getting into things that they shouldn’t have been in, we need to “check ourselves first”.

Let me ask you this-

  • Do you have a security policy?
  • When was the last time you did a security audit of all network and server devices?
  • How about Windows shares and who has access to what?
  • Are there any rootkits installed on your PCs or Servers?

When it comes to Cisco security, I recommend:

  • Check who can login to the routers, switches & firewalls
  • Change the admin/root password on routers
  • Implement password complexity requirements or use RADIUS from Windows AD
  • Check your IOS for old versions that need to be upgraded

And, as much as it hurts and really doesn’t sound fun at all, don’t forget to “Audit IT First” :)

-David
Personal Website: HappyRouter.com – home of Cisco how-to articles & videos
David Recommends:
HappyRouter Cisco VMware Workstation & Server Video Training Series
HappyRouter Cisco CCNA & CCNP Video Training Series

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: