This page aims to give some basic tips to work more safely within a network like UGR. The tips are general and can be followed regardless of the operating system that we use. We made these tips for the Windows XP operating system, but everything we say (except some specific things) are equally valid for previous versions of Windows.
The usual malignant software with which our computer can be infected:
The usual issues by which your team may have a security incident are:
The natural evolution of a security breach is:
These tips are valid for any operating system and version.
Reduce the services offered to the necessary, such as file sharing, web server, ftp server…
Use an antivirus
Use a firewall
Avoid executing programs of dubious nature (email attachments, internet downloads, …)
This section tries to explain in more detail the ideas presented above, specifically for Windows XP but they are equally valid tips for Windows 98, 2000, etc.
It is important to create user and assign them passwords.
When you turn on the computer for the first time, Windows will tell us that you have to choose a user and a password, otherwise we must do it manually. To do it:
Name of the operating system, account, user name or machine that is being used.
Adding a digit or a special character to a word of the previous categories DOES NOT SERVE ANYTHING. For example, IT’S NOT GOOD PASSWORDS: manolo1, 2 sisters, …
REMEMBER: UGR will never ask for your username and password through e-mail, telephone, fax, sms, ….
Process to follow to install the service packs for the first time after the installation of the Windows operating system. To do this, you must access the Windows Update page, which can be accessed from Internet Explorer -> Tools -> Windows Update.
Once found the service packs available for our Windows XP as well as the security patches, we will install them all to have the computer operating system up to date.
Once the operating system is updated for the first time, we can configure Automatic Updates.
To do it: Start -> Control Panel -> System -> Automatic Updates
We choose the option that best suits our needs.
To make sure it is activated, we check the services: Start -> Control Panel -> Administrative Tools -> Services
With this active service our updated Windows XP will be maintained.
Below are the services that may constitute a risk for the safety of our teams and why.
They can be the access route for the intruders to:
The services that must be disabled if they are not used are:
It is important to use an antivirus and have it updated.
The UGR is licensed to PANDA.
The firewall isolates the computer from the connection to the network by filtering information. A general configuration must carry prohibited connections, allowed connections and allowed connections with conditions.
IMPORTANT: IF SOMETHING STOPS TO WORK, BEFORE NOTHING, DEACTIVATE THE FIRE FIGHTER AND TRY IF IT WORKS.
There are many options when choosing a firewall, some examples are:
Home -> Network and Internet connection -> Network connections -> Local Area Connection -> Properties -> Advanced
Primitive version – does not work well especially if resources are shared
If we want to install any other firewall and we have or have had the PANDA active, it is important to uninstall PANDA and then reinstall it without the firewall protection.