For further information

computersecurity.wlu.cabellswor@wlu.ca

gli@wlu.ca

Laurier Security GuidelinesWireless networksInternet Browsing

Firewall RulesDesktop Configuration

Encryption of mobile devices

Desktop Configuration

Virus software installed and up to datePersonal Firewall Configured

Automatic Software Updates ConfiguredScreensaver Lockout Configured

System Preference--Sharing

Click Start in Firewall Tab

Choose Software Update in System Preferences, check Check for updates: and choose Daily from the drop box next to it, check Download important updates in the background box

Require services such as ssh, ftp, SQL be open to the Internet

Constant Internet scanning of ports such as ssh for brute force password attacks and vulnerabilities in SQL software

ITS offers port and vulnerability scan service

Send name and IP number of server to gli@wlu.ca

Screensaver Lockout

Protects your computer while it is not attended

Requires a password and a timeout period

Right click on Desktop, choose Properties from the drop down menu

In Display Properties window, click on Screen Saver tab, check On resume, password protect, and choose the properwait time, click OK

In Mac OS X, choose Desktop & Screen Saver from System Preferences, choose proper screen saver and start time

In Mac OS X, choose Security from System Preferences, check Require password to wake this computer from sleep or screen saver box

Encryption for Mobile Devices

laptops, usb drives

easily lost or stolen

Date: 10/31/2007

Ferris State University is alerting applicants that their personal information was stored on a laptop stolen from a recruiter's car. The laptop contained the names, address, dates of birth, telephone numbers, e-mail address and academic information on 18,000 2007 and 2008 applicants. According to university officials, the information on the laptops is protected by two levels of user identification and passwords so the risk of identity theft is low. However, the university wants to make sure students are aware of the risks and what steps they can take to protect themselves. Toward this end, the university has created a web site - www.ferris.edu/laptoptheft - as well as a phone line - 800-433-7747 - to help answer questions and provide information.

Date: 10/17/2007

The University of Cincinnati is alerting students after a flash drive containing student data, including names and Social Security numbers, was stolen. The drive, containing information on more than 7,000 graduate and undergraduate students, was stolen from the desk of an employee. According to university officials, there has been no evidence that the information has been misused. The university has sent letters to all affected students and has also alerted the three major credit bureaus.

Confidential information on mobile devices must be protected

Login passwords and file passwords help but are not enough

True security for confidential information requires that the information be encrypted

TrueCrypt

For further information

computersecurity.wlu.cabellswor@wlu.ca

gli@wlu.ca