Das SANS Institute hat den Monat Oktober zum Cyber Security Awareness Monat ausgerufen und zu diversen Themen ein paar Artikel veröffentlicht:
- Tip #1: Penetrating the This Does Not Apply To Me Attitude
- Tip #2: Multimedia Tools, Online Training, and Useful Websites
- Tip #3: Getting the Boss Involved
- Tip #4: Enabling the Road Warrior
- Tip #5: Social Engineering and Dumpster Diving Awareness
- Tip #6: Developing policies and Distribution
- Tip #7: Host-Based Firewalls and Filtering
- Tip #8: Anti-Virus, Anti-Spyware, and Other Protective Software
- Tip #9: Access Controls, Including Wireless, Modems, VPNs, and Physical Access
- Tip #10: Authentication Mechanisms
- Tip #11: File System Backups
- Tip #12: Managing and Understanding Logs on the Desktop or Laptop (AV, Firewall, or System Logs)
- Tip #13: Patches and Updates
- Tip #14: Data Encryption
- Tip #15: Protecting Laptops
- Tip #16: Protecting Portable Media
- Tip #17: Windows XP & Vista Security
- Tip #18: Mac Tips
- Tip #19: Linux tips
- Tip #20: Software Authenticity
- Tip #21: Understanding Online Threats
- Tip #22: Detecting and Avoiding Bots and Zombies
- Tip #23: Using Browsers, SSL, Domain Names
- Tip #24: Not all patches are released on a Tuesday
- Tip #25: E-mail (PGP, Attachments, etc), IM, IRC
- Tip #26: Safe File Transfer
- Tip #27: Online Games and Virtual Worlds
- Tip #28: Cookies
- Tip #29: Insider Threats
- Tip #30: Blogging and Social Networking
- Tip #31: Legal Awareness (Regulatory, Statutory, etc.)
Nicht alle lohnen sich zu lesen, aber #11 finde ich z.B. spannend.