Windows IT Pro is the authoritative and independent resource for windows nt, windows 2000, windows 2003, windows xp. Features a collection of resources and magazines for windows IT professionals.
  
  
  Advanced Search 


August 20, 2008

Systematic Paranoia

A Web Exclusive from Windows IT Pro
Orin Thomas
Hyperbole, Embellishment, and Sys Admins
InstantDoc #100069
Windows IT Pro
Email this Article
Printer Friendly
Reader Comments
Digg This
Del.icio.us
RSS
Subscribe to Windows IT Pro | See More Systems Administration Articles Here | Reprints | Or get the Monthly Online Pass—only $5.95 a month!
back to blog index

As a security administrator you do have to assume that “they are all out to get you”. Not you specifically, but the resources it is your responsibility to manage. They aren’t doing this because you are guarding the crown jewels of Denmark. Attackers are trying every doorknob on the street hoping to find one unlocked, not just trying the ones where they suspect there is a brand new LCD TV.

As a good security administrator you need to be systematic with your paranoia. Not only do you have to catalog the threats you face, you need to analyze and prioritize those threats. You need to do this in terms of the likelihood that the threat will be exploited and the possible damage a successful exploit will incur. Working out the likelihood of a threat being exploited is tricky, but as a rule of thumb the one where you have to hop on one leg on the 3rd Tuesday of the month when there is a full moon should be less likely to worry you than the one that is part of an automatic exploit tool available from a hackers website.

Paranoia can help when it comes to cataloging the possible threats, but don’t go overboard with it! Not every USB stick that a user finds on public transport is going to host nefarious software that will take over your network. Think about how you should respond. Is it better to send out an email to the people in your organization explaining why they might not want to plug a USB stick they found into their computer or is it better to apply software policies that restrict USB connections to a specific set of authorized devices? The answer to that question depends on your environment.

The key is to not spend more money protecting an asset than the asset is worth. Asset worth isn’t just a dollar value, it is the cost to the organization if that asset is completely 0wned by a nefarious third party. In some cases even if an asset is completely 0wned, the financial cost to your organization might be negligible. If someone defaces a website you regularly back up, you might be able to restore it pretty quickly at little cost to the organization (obviously this is a bit different if you are running an ecommerce site where the stakes are different). The amount of time and money you spend protecting a static website that hosts a list of the products your company makes is going to be different from an online shop where customers can actually order those products over the web.

Security dollars only stretch so far, so you need to make sure that the holes you plug are the ones that most need plugging. If you’ve got a team working with you, workshop your list of threats and get feedback on what others you work with consider to be the biggest security risks you face. Keep the list up to date. Take it out of the draw and look at it from time to time and ask yourself “have I got these priorities right?” As a part of your security process, systematize and schedule your paranoia.

End of Article

Reader Comments

You must log on before posting a comment.

If you don't have a username & password, please register now.





Search Hyperbole, Embellishment, and Sys Admins
 
Hyperbole, Embellishment, and Sys Admins
NOVEMBER 2008
       1
2 3 4 5 6 7 8
9 10 11 12 13 14 15
16 17 18 19 20 21 22
23 24 25 26 27 28 29
30       
or

 Recently in Hyperbole, Embellishment, and Sys Admins
Systematic Paranoia
Make a Comment
Forums as problem solving tools
Make a Comment
Why good Windows sysadmins are easier to find than good UNIX/Linux sysadmins.

Last Comment
No, Illl stay with the UNIX admins are smarter... They have the ability to see behind the GUI and k...
(2 Comments)
Tales from the Forums: Community Choice Awards
Make a Comment
How to know if you are a Cowboy (or Cowgirl) Systems Administrator

Last Comment
:-) awesome...
(1 Comments)

More blogs about technology,
software, and Windows.


ADS BY GOOGLE

Job Openings in IT SPONSORED LINKS FEATURED LINKS
Is Your Approach to VMware Server Recovery Outdated?
Is your data protected from server failure? Download this white paper to find the best way to back up, recover, and restore your VMware ESX Server 3.x.

Maximize speed, performance and reliablity of your PCs and servers—automatically!
Speed Up Your PC! Try Diskeeper 2008 with InvisiTasking Free Now!

GoGrid Offers FREE Trial for Windows Cloud Servers
Deploy Windows Server 2003 and 2008 with free load balancing through GoGrid’s award winning web-based GUI – all in less than 5 minutes

Order Your SQL Fundamentals CD Today!
Learn how to use SQL Server, understand Office integration techniques and dive into the essentials of SQL Express and Visual Basic with this free SQL Fundamentals CD.
You've Deployed SharePoint...Now What?
This one-day free online conference delivers the technical knowledge needed to kick MOSS up a notch. In one information-packed day, independent SharePoint experts will present practical, real-world information and provide take-away, ready-to-use solutions

Don't Miss 3 Introductory PowerShell Lessons!
Paul Robichaux equips you with PowerShell basics in 3 introductory lessons, each followed by live Q&A—all on your own computer! Register today!

What Would You Do If You Ran Microsoft?
ITTV's 2008 inaugural video contest, "If I Ran Microsoft..." is your chance to tell it like it is. Be goofy or be serious, but don"t miss this chance to have fun, win prizes, and go viral in a major way.

Maximize Your SharePoint Investment
This web seminar discusses how true bi-directional replication of SharePoint content from one server to another enables branch offices to maintain access to current SharePoint content.

Rock Your Knowledge, and Compete with Friends and Colleagues!
Are you the Web Application Performance Guru in your office? It's time to have fun! Download now to access the crossword puzzle. Challenge yourself and complete this fun activity!
Windows IT Pro Home Register FAQ for Windows WinInfo News
Europe Edition About Us Contact Us/Customer Service Media Kit Affiliates / Licensing  
SQL Server Magazine Office & SharePoint Pro Windows Dev Pro IT Job Hound ITTV
IT Library Technology Resource Directory Connected Home Windows Excavator Windows SuperSite 
 
 Windows IT Pro is a Division of Penton Media Inc.
 Copyright © 2008 Penton Media, Inc., All rights reserved. Terms and Use | Privacy Statement | Reprints and Licensing