 |
|
|
|
To help reduce the amount of vulnerabilities found during the Intrusion Risk Assessment, we recommend doing the following: Patch,Patch,Patch - Apply all the patches to your Operation Systems and applications. Make sure to test the patch before mass rollout. Patching the OS and the applications will help reduce the amount of vulnerabilities found. BEST PRACTICES: Implement a policy/procedure to apply these patches as they are released. Novell's ZenWorks Patch Management is a great solution for documenting/implementing a good patch policy. Review old reports - Make sure that the vulnerabilities found in previous reports are fixed and documented. Implement a trend analysis - Having 4 scans per year would help you maintain the security of your network and data. Intrusion risk assessments are sometimes completed because the auditors require them. Their true value come from the information they supply. Using this information to protect data is what these reports can help you do. Don't let the cost restrict you from at least doing 2 per year. Complete a scan after the vulnerabilities have been addressed, this will show your progress. Check databases - To many databases have been installed with the database administrator account having no password. Video/Phone systems - These PCs get put on your network and some are never patched. If you have a PC/Server that runs Video/Phone/Security systems and is on your network, ask the vendor to make sure it is patched.
|
|
|