Network Security Best Practices - Symantec 460R - Gateway Security Administrator's Manual

Administration guide

Hide thumbs Also See for 460R - Gateway Security:

Installation manual (54 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

Table of Contents

Network security best practices

Symantec encourages all users and administrators to adhere to the following security practices:

Additional information, in-depth white papers, and resources regarding enterprise security solutions can

be found by visiting the Symantec Enterprise Solutions Web site at

enterprisesecurity.symantec.com.

Symantec™ Event Manager and Advanced Manager for Security Gateways (Group 2) v2.1 Release Notes.

This document provides a summary of new and changed product features, system requirements, and

issues and workarounds.

Turn off and remove unneeded services.

By default, many operating systems install auxiliary services that are not critical, such as an FTP

server, Telnet, and a Web server. These services are avenues of attack. If they are removed, blended

threats have less avenues of attack and you have fewer services to maintain through patch updates.

If a blended threat exploits one or more network services, disable, or block access to, those services

until a patch is applied.

Turn off unnecessary network services.

Automatically update your antivirus at the gateway, server, and client.

Always keep your patch levels up-to-date, especially on computers that host public services and are

accessible through the security gateway, such as HTTP, FTP, mail, and DNS services.

Enforce a password policy. Complex passwords make it difficult to crack password files on compromised

computers. This helps to prevent or limit damage when a computer is compromised.

Configure your email server to block or remove email that contains file attachments that are commonly

used to spread viruses, such as .vbs, .bat, .exe, .pif and .scr files.

Hackers commonly break into a Web site through known security holes, so make sure your servers and

applications are patched and up to date.

Eliminate all unneeded programs.

Isolate infected computers quickly to prevent further compromising your organization. Perform a

forensic analysis and restore the computers using trusted media.

Train employees not to open attachments unless they are expecting them. Also, do not execute software

that is downloaded from the Internet unless it has been scanned for viruses. Simply visiting a

compromised Web site can cause infection if certain browser vulnerabilities are not patched.

Introducing the Symantec Gateway Security 400 Series

Network security best practices

http://

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Troubleshooting

Need help?

Do you have a question about the 460R - Gateway Security and is the answer not in the manual?

This manual is also suitable for:

Gateway security 400 series Gateway security 420 Gateway security 440 Gateway security 460

Network Security Best Practices - Symantec 460R - Gateway Security Administrator's Manual

Network security best practices

Hide quick links:

Troubleshooting

Need help?

Subscribe to Our Youtube Channel

Related Manuals for Symantec 460R - Gateway Security

Related Content for Symantec 460R - Gateway Security

This manual is also suitable for:

Table of Contents