Basic IT security practices

Follow K-State's guidelines to safeguard your computer, e-mail, data, identity, and finances.

1. Keep the password for your eID secure.

   Don't share it with anyone, not even family or other K-State students or employees.

2. Install K-State's antivirus software.

   All Windows and Macintosh computers connected to the K-State network are required to have the university's antivirus software installed. The software is free to K-State students, faculty, and staff. Download it from K-State's antivirus site.

3. Configure your antivirus software to check for updates at least daily.

   Make sure your antivirus software is loaded when your computer starts and that it is automatically updating its virus signature files on a daily basis. See K-State's LiveUpdate page.

4. Patch your computer software with critical updates as soon as they are released.

   Both Microsoft and Apple publish periodic security/critical updates for their operating systems. Use the Microsoft Windows Update service and the Apple Downloads site.

5. Turn your computer off when you're gone for an extended time.

   If you leave for a few days, unplug the modem and Ethernet connection, too. This saves energy costs and helps make your computer inaccessable to hackers. (K-State offices: Check with your departmental support staff to ensure this won't interfere with maintenance and backup activities.)

6. Be wary of e-mail attachments.

   Antivirus software will not protect your computer completely from e-mail viruses and worms. Be cautious with every e-mail message that contains an attachment. Verify the source first, and scan an attachment before opening it.

7. Use a password on your screensaver.

   Anyone who has access to your desktop can access all your files. Most screensaver applications can be configured to run automatically after a pre-set interval. They can also be set to require a password before the screen saver returns control of the computer. (K-State offices: Check with your departmental support staff before setting a screen-saver password.) SIRT recommends setting the interval before the screensaver kicks in to 20 minutes or less.

8. Install and run anti-spyware software on Windows computers.

   Spyware and adware are malicious software that can intercept information or take partial control of your computer without your knowledge or consent. Spyware may watch what you are doing on your computer and send information over the Internet to a third party. Adware, like spyware, operates surreptitiously and is responsible for those annoying pop-up advertisement windows. Besides the annoyance and the risk of a third party collecting information about you without your knowledge, both can substantially slow the operation of your computer. K-State computers must have anti-spyware software installed with a scan run at least once a week. Trend Micro OfficeScan software provided by K-State (antivirus.k-state.edu) contains anti-spyware/adware features for Microsoft Windows computers. K-State also recommends running Spybot Search & Destroy to complement Trend Micro, since no single tool can catch all spyware and adware. Spybot is available free for students and home use computers from from www.spybot.info.

9. Run a personal firewall on your desktop.

   A firewall protects your computer and the information stored on it from malicious intrusion over the network. It is like a wall between you and the Internet with a gate that only allows appropriate activity to pass through. Microsoft Windows XP SP2 has a limited firewall built into it that provides some protection and should always be enabled. K-State's Trend Micro OfficeScan security software that is provided at no charge to K-State faculty, staff, and students (antivirus.k-state.edu) has a more full-featured firewall which must be installed and run on all K-State-owned computers as well as student-owned computers in the residence halls. Mac OS X that runs on Apple Macintosh computers has a good built-in firewall that likewise must remain enabled.

10. Back up important files.

    No system is completely immune from malicious attack nor from a hardware or software failure that could unexpectedly and suddenly destroy files. The safest strategy is to store important files on a server that is regularly backed up by IT support staff, and not keep copies on your personal computer. If you do have important files on your desktop or laptop computer and do not have access to a supported server, you should copy them regularly onto removable media like a CD, DVD, or an external USB hard drive and store the media SECURELY in a different location. Note that you should NOT back up sensitive files onto a USB flash drive (a.k.a., USB thumb drive) because those are too easy to lose and are a target for theft. However, if you ever need to temporarily store sensitive data on a USB drive, you need to use encryption software to scramble the contents of the files to prevent disclosure should you misplace the device.