Skip Navigation

Friday February 10th, 2012 » Winter Quarter, Week 6

OIT > Security > 10 Steps to a more secure computer

Ten steps to a more secure computer

Summary: Here is a list of 10 steps to begin ensuring you have a secure computer.

Ten steps to a more secure computer

  1. Use antivirus software and keep it updated daily- UCI has several software purchase programs for discounted pricing
  2. Apply software updates regularly and consistently
  3. Use a desktop firewall whenever possible- check with your local desktop support team first
  4. Use strong passwords with a minimum of 6 characters- uppercase, lowercase letters, symbols and numbers
  5. Change all of your passwords regularly
  6. Make routine backups of your critical files
  7. Do not open emails that you don't recognize the author or that look suspicious to you- you can call your local support team for more information
  8. Don't post passwords or usernames in plain sight- post it notes on your monitor with passwords and usernames break most security processes
  9. Turn off your computer at night and on weekends- check with your local desktop support team first if this will break nightly updates or backup procedures
  10. Don't leave old computers online- disconnect them or turn them off

We realize that some folks need to have these points clarified.  Please see below for more information on each step.

Use antivirus software and keep it updated daily- UCI has several software purchase programs for discounted pricing

OIT has a web page that has all current purchasing programs available to UCI on it. There are several bulk purchase agreements that can be used to purchase software such as Antivirus programs and new versions of your Operating Systems. Go to http://licenses.oit.uci.edu/ for more information.

Apply software updates regularly and consistently

We recommend that you use an automated software update service for your software. OIT has support services for updating desktops and servers with the latest hot fixes. Please contact the Help Desk for more information on theis service.

Use a desktop firewall whenever possible- check with your local desktop support team first

Using a firewall on your local desktop will normally help you mitigate network attacks that exploit security flaws in your operating system. The decision to use a firewall is going to be determined by the way your local support team operates. If you have a formal support team then they will et you know if you need a firewall, but if you are self supported then you will definitely want to consider using the host based firewalls that work on Linux, UNIX and Windows XP.

Use strong passwords with a minimum of 8 characters- uppercase, lowercase letters, symbols and numbers

A three digit password of lower case letters can be cracked in seconds. A complex password usually will take days or weeks to break. Using a number or symbol in the middle of your password is a simple way to make your password more secure.

Change all of your passwords regularly

If your password changes regularly you will make it harder for someone to use your password without your knowledge. If you change a password and you notice a few days later that your account is locked out then you might have someone trying that old password.

Make routine backups of your critical files

If you don't use a server to store your critical files and you don't have a desktop backup service such as Backup Exec, NetBackup or Legato then you should consider using a CD-Recordable drive to copy files to a secure location. A disk failure usually will happen quickly and you may not have time to copy files at that point

Do not open emails that you don't recognize the author or that look suspicious to you

New viruses usually try to get your attention with Subject lines that look unique. If the email doesn't look legitimate then don't open it. You can look up the latest email and virus issues at the OIT Security site in the Symantec Security Alerts window. The easiest way to stay secure is to use the campus mail servers to get your email, or make sure your local mail server uses Antivirus software on them.

Don't post passwords or usernames in plain sight

One of the most common methods of hacking is internal exploitation of resources. If you have a truly complex password, writing it down defeats the purpose. Use a naming scheme or question to help you remember the password. You can usually remember those passwords easily and keep your security standards high.

Turn off your computer at night and on weekends

A computer that is always on is easily probed for security problems. Turning off a computer on weekends saves power and can prevent unnoticed network abuse. If your local support team uses weekends or weeknights for software updates then you may want to keep the system online, but if that isn't the case then save energy and shut the system down.

Don't leave old computers online- disconnect them or turn them off

Most infected and hacked computers that OIT finds were left on and forgotten.

Top of Page