| |
Prevent physical access
One of the best ways to keep your data safe is to keep it physically inaccessible. Take temptation away from passersby.
Desktop/Laptop access 1. Use cables and locks designed to prevent stealing. Even the largest G5 can disappear if a room is unattended for a long period of time. A recommended brand is Kensington. There are locks for laptops like these http://us.kensington.com/html/1434.html or for desktops, http://us.kensington.com/html/1427.html 2. Most desktops have a security bar on the back. Put a lock in the security bar and this will help keep access from it's internal components including the hard drive. You could have the best screen saver in the world, but it only takes five seconds to open a panel, disconnect a hard drive and walk away with it to hack into at leisure. 3. Keep your office door locked. Keep potential thieves at bay. Don't give them free access to your computer, especially if it isn't locked down. 4. Limit access to the keys to the computer area. If only a few people can enter, there is a less chance of items becoming missing. 5. Keep services like file sharing, BlueTooth or web services off on your machine. Don't let thieves on the network get into your computer remotely. You can also turn on the Firewall to keep unwanted visitors out.
6. Have other people that need to use your computer but you don't exactly trust them? Give them their own accounts. With OS X's easy interface, you can limit what another user can or cannot do on your machine.
7. Keep your data where it's supposed to be. In other words, install applications in the Applications folder, your data in your Documents folder, place pictures in the Pictures folder, etc. If another user logs in to their account on your machine, they can't access anything that is in your account. OS X will not let users access another user's folder. There are important system folders and important user folders. Know which is which.
8. Keep files off your desktop. If you haven't set a screen saver, locked your door or turned off your computer, anyone can walk by and read an open file or double-click on a file and then read it.
9. Don't leave your email window open. Again, anyone walking by can see or read what you have. Sensitive data can become compromised in a heartbeat.
10. Share or using a public Mac? Afraid to surf for sensitive data? OS X.4's Safari is your answer. It now features private browsing so cache files and history can no longer be access by snoopers.
Passphrase Security 1. Require all users to log into the Mac. Don't turn on Automatic login no matter how inconvenient. Anybody can then sit down at your computer, turn the power on, and get into your files.
2. Keep your passphrase secret: - DON'T tell anyone, even your best friend.
- DON'T write it down and keep it near the computer (like taped to the monitor or under the keyboard).
- DON'T change it and then change it back to your original phrase.
3. Use passphrases as described at http://www.ecu.edu/cs-itcs/itsecurity/passphrases.cfm 4. Use built-in screen savers with passphrase protection turned on. They're easy to set up in OS X. You can use a hot corner, drag your mouse to it to start the screen saver and walk away. If correctly set, anyone trying to get in will have to enter your password to get access. This helps if you need to leave for lunch or class and you can leave everything running "as is". 5. Log out of the machine so the login screen is displayed. 6. Use the fast user switching mode. The Finder stays exactly like you left it, you don't have to quit any programs and it takes just seconds to log back in. There are some inherent problems with this mode, like Classic only being available to one user at a time so please use with caution.
7. Lock your Keychain application. It keeps track of all your passwords depending on how you've set it up.
8. Use your File Vault. This OS X feature will encrypt your home folder so that it is protected from most hacking. Note that if you lose the master password for the File Vault, it cannot be reset. All data would be lost. Using the File Vault may also have some adverse effects with disk-intensive tasks like video editing.
Verify your surrounding network
Avoid wireless networks whenever possible. They are inherently insecure. You are also using slower data transfer speeds than if you were connected via an ethernet cable.
Use Norton Antivirus
Yes, the Macintosh is fairly secure, but, where there's a will, there's a way. Make sure your Norton Antivirus software (required for any computer connected to the ECU network) is the latest version. Log into your OneStop and access the Software Downloads section to verify this.
Also make sure that your preferences and scan schedules have been set up correctly.
Check your operating system
Make sure you've downloaded all the operating system updates available and checked the system preferences. Also make sure all your applications are up to date. Most should have a Check for Updates section under the Help menu in the tool bar. OS 9 users should consider updating to OS X.
Use Secure Erase Trash
Think that file is deleted when you tell the trash to empty? Not true. The name of the file has been removed from the disk directory but the data is still in place. Secure Erase will immediately overwrite the file with random data so it cannot be reconstructed even while using US DoD specifications.
Backup your data
Take your backup off site if at all possible. Don't leave it in your office or near the computer where a thief can take it AND your computer.
Here are some back up ideas 1. If you have Leopard (X.5), use Time Machine.
2. Use a .Mac account. There's a fee with this account so read the contract. 3. Burn CD/DVDs of your data. You can use the Finder, Disk Utility or a third party software like Toast to create the CDs or DVDs. It's highly recommended to date them so you can easily discern the differences between the copies. 4. Use jump or flash drives which are now available with encryption software and even fingerprint readers for biometric access control. However, be cautious with these small drives. They can be easily stolen, dropped and damaged, or washed while in your pocket.
5. Use your iPod. Turn disk mode on and drag your data to it every once in awhile.
|  |
|
|
