Setting up a server on the Mason network.
A systems administrator
(sysadmin) is an individual responsible for maintaining a multi-user
computing system. Typical duties include: setting up user accounts; installing
software; allocating storage space to user accounts; and patching software. This is a list of some of the
fundamental security measures a sysadmin at George Mason should take.
BEFORE CONNECTING
- Join Mason's Systems Administrators Leadership Team
(S.A.L.T.) listserv and attend meetings.
- Understand your job responsibilities by reviewing the
Responsible Use of Computing Policy.
- Register your computer if you need a Public Internet Address.
- Before connecting your server to the Internet, make sure
you have installed the latest patches. Verify that all ports and
services that are not needed are disabled or closed.
- Before connecting to the network, remediate against the
SANS Top 20.
- Create strong, hard to break passwords, for administrative
account and user accounts.
- Do not use the same password for multiple devices.
- Configure system to create logfiles.
- Physically secure your computer(s).
AFTER REGISTERING AND CONNECTING
- Monitor your log files at least daily.
- Backup important data.
- Ensure that only authorized individuals have access to your systems.
- Limit your use of admin privileges, only use when necessary.
- Know what steps to take if you suspect a security incident.
- Follow the trends and stay current with latest threats and updates.
- Configure system settings to close unused ports and unused system accounts. Deny access to known bad sites.
- Develop a recovery plan in the event you are on vacation and the hardware fails, your system gets hacked, or something 'just
happens.'
- Professional development: develop a plan with your
supervisor. Attend classes, seminars, conferences, workshops, use
Mason's license with Skillport to take online courses-anytime, anywhere.
|
