Site-wide links

Rochester Institute of Technology logo
Get Net Ready

Getting
Network Ready

Home
Network Ready
Safety & Security
Up-to-Date
On Campus

Introduction to Digital Self-Defense

Digital Self Defense at RIT

There are basic concepts and practices that are essential to protect you and your computer as well as other network users at RIT and Internet users around the world. These fundamentals apply regardless of your particular hardware or operating system. Most are required for access to the RIT network under the Code of Conduct for Computer and Network Use (http://www.rit.edu/computerconduct/).

The RIT Information Security Office (ISO) has created Security Standards that apply to various faculty, staff, and student computing devices across campus. Some standards always apply to everyone, while some only apply in certain situations. Information on all the standards can be found on the ISO Students page.

Required Standards

Desktop Standard: Sets basic security requirements for all computers that connect to the RIT network. This is explained in detail in the Student Guide to the Desktop and Portable Computer Standard.

Password Standard: Sets requirements regarding the use of passwords for RIT resources.

Passwords for the accounts of users on RIT computing and networked resources must:

For more information on how to select a secure password, see our Essentials page. To change your RIT Computer Account password, visit start.rit.edu. There you can create a new password, or you can allow the secure password generator to create one for you.

The Information Security Office has created additional tips for choosing a secure password and frequently asked questions about passwords located at:
http://security.rit.edu/articles/securepassword.pdf
http://security.rit.edu/faqs/faqs_password.pdf

Other Security Standards

There are other security standards that only apply under certain circumstances. These are also addressed on the ISO Student page. These standards include:

Server Standard: If you own or administer a server on the Institute network.

Web Standard: If you have a website at RIT (official or unofficial) and are using RIT authentication services or hosting Institute-owned information.

Computer Incident- If your computer is infected and is deemed to be a significant threat to Handling Standard: the Institute network (this refers to majorly destructive malware that has the potential to spread across the network).

Signature Standard: Requires all official RIT communications to provide all available contact information. This standard applies to RIT faculty and staff; however, its intent is to benefit students.

If you receive a message purporting to be from RIT but it does not provide a name, department name, phone number, address, building/room number, or other contact information, DO NOT GIVE AWAY PERSONAL INFORMATION.

The requirement for contact information has been put in place so that students and staff who receive Institute communications are able to confirm their authenticity. Always double-check any message that you suspect may be a scam or that asks for private information.

Use Common Sense! Antivirus, firewalls, and other technology-based security solutions can only protect so much. In order to keep yourself and your private information truly secure, you must exercise a healthy level of skepticism and paranoia.

Remember that RIT will never ask you for your password or other personal information in an e-mail. If you receive an e-mail warning that your account will be shut down or services will be disabled, contact ITS directly at 475-HELP to confirm the message.

More information on strategies to stay safe (such as online shopping and banking, safe web browsing, preventing identity theft, and dealing with phishing) can be found on the ISO Safe Practices website.

Remember, you are the first line of defense. If you notice anything strange and aren't sure how to check it out, ask for help!

Stay safe, and enjoy all the RIT network has to offer!

For more information on computer security at RIT, including free training sessions on basic computer security, brochures and current alerts/threats visit the RIT Information Security website at http://security.rit.edu or contact them at infosec@rit.edu.

Other Tips

1. Patch your operating system
This is probably the single most important step you can take towards securing your computer on the RIT network. Attackers are continually probing and testing for vulnerabilities in applications and operating systems which could allow them to gain control over your computer. When a vulnerability is found, software developers release a patch that will fix the vulnerability, which can be downloaded and installed free of charge.

Unpatched systems are targets for attackers, and many forms of malicious software (like worms and spyware) use these vulnerabilities to install themselves on your computer. Leaving a system unpatched threatens not only your personal data, but also potentially provides attackers with a platform for launching remote attacks on other computers. Don't become a victim or allow your computer to be used to victimize others!

Most operating systems, like MacOS and Windows, have options to automatically update set by default. Make sure you have these settings turned on, and your operating system will update itself! Many common applications also have automatic update features. Be sure to check for patches and install them at least once a month to remain up to date.

2. Choose a secure password and change it frequently
The FBI and the SANS Institute cite weak passwords as one of the most critical security threats to networks. Users who leave passwords blank or use easily guessed words make it simple for attackers to log into a network and access information. Additionally, some Internet worms have the ability to "guess" weak passwords and password "cracking" tools are widely available.

3. Install Anti-Virus and Anti-Spyware software for weekly scans.
ITS provides free, licensed copies of McAfee AntiVirus for Windows and Virex for Macintosh at no cost. Go to the ITS download page to download the software and installation instructions. Although it is true that UNIX and Linux users are less likely to become infected by a virus or worm, Linux and UNIX systems are still vulnerable to a number of different forms of malware including rootkits and keyloggers. The Information Security Office suggests using ClamAV, an open source anti-virus program to prevent system compromise by such means.

Once the software is installed, check for new virus definition updates on a daily basis. These definitions show your anti-virus program how to detect and remove new viruses from your computer. Updating your definitions is a very quick process, and without updates your computer is vulnerable to the newest (and potentially most dangerous) viruses! For more details, refer to: http://www.rit.edu/its/services/security.

Viruses aren't the only form of malware you have to worry about these days - adware and spyware are becoming a major headache for computer users around the world. Adware and spyware can pop-up advertisements, slow down your computer, collect personal information about you and severely damage your computer if left unchecked. Install at least two anti-spyware programs and run a scan once a week to make sure your computer is clean.

Currently, Mac and Linux users are relatively safe from spyware problems - so there aren't any anti-spyware programs to download. However, for Windows users, the Information Security Office suggests downloading both Spybot: Search & Destroy and Ad-Aware Personal Edition. Both are free for personal use, and in combination will remove any spyware problems. Just like anti-virus, be sure to keep the definitions up to date before running a scan!

4. Running a Firewall
Think of a firewall like a gatekeeper between you and the Internet...it allows some programs to send and receive information from the Internet, and denies others. By denying access to certain vulnerable programs from the outside, firewalls can keep some attackers and worms out. By preventing some programs from sending information out to the Internet, firewalls can help protect your privacy. While firewalls may sound like the perfect security solution, they can't stop everything, and are only a part of a good layered defense.

Windows users have a variety of free firewall packages available to them, all of which are easily configured. Windows XP users that are up to date on their patches (and, they SHOULD be) already have a firewall installed and running by default. Go to the Security Center under the Windows Control Panel to check if your firewall is running. For a slightly more advanced and more secure firewall that inform you about what's going through (or attacking) the firewall, download and install ZoneAlarm Personal Edition.

Macintosh OS X provides a number of security features, including a personal firewall.

5. Use your Common Sense and be Paranoid!
Always keep in mind that attackers are constantly looking for new ways to get to your personal data and resources. Do what you can to keep them safe!
Be paranoid!

Remember - you are the first line of defense. If you notice anything strange, and aren't sure how to check it out, ask for help!

Stay safe, and enjoy all the RIT network has to offer!

For more information on computer security at RIT, including free training sessions on basic computer security, brochures and alerts visit the RIT Information Security website at: http://security.rit.edu

<- Back   -----   Next ->