Basic Tutorials for Computer Security

Oasisfactor

Oasisfactor

New member
Local time
1:08 PM
Messages
7
If this post doesn't belong here, move it.

A little background:

I work at a place where they outsource the IT work and it's a hassle for the company. They have to wait days before they can get help. I only work as office support, but I have a background in Software Eng and Networking. I noticed a lot of carelessness when dealing with personal laptops. Often times they leave their laptops unattended where I can have physical access(gone out to smoke, lunch, etc..). They handle a lot of client data that isn't encrypted, and isn't properly deleted. The computer that I use at my desk has personal information I don't need access to, unencrypted. Some are even running on admin accounts.

What I want:

I was thinking of doing a tutorial and showing them how to protect their data, using encryption (BitLocker, Truecrypt), creating long/complex passwords, and basic computer security.

Any more ideas/suggestions are welcome.
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
None
OS
Lubuntu 32 Bit
CPU
None
Motherboard
None
Memory
None
Graphics Card(s)
None
Hard Drives
None
Antivirus
None
Browser
None
Long time ago, I was outsourced and it was similar to what you describe.

- Remove any admin privileges (may be a problem if IT support is not readily available)
- Enforce password requirements with Group Policy
- Remove all unnecessary software, cracks, etc.
- teach to use Win+L when they leave PC, mess with their desktop if they do :p
- Encryption may be a hassle

short list from top of my head.
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom Build
OS
Windows 7 Ultimate x64 SP1
CPU
AMD Phenom 2 1090T
Motherboard
Gigabyte GA-890FXA-UD5
Memory
2x8GB Kingston HyperX Fury Black 1600Mhz Unganged
Graphics Card(s)
MSI GTX 970 Gaming 4G
Sound Card
Realtek On-Board HD 7.1 Audio / Logitech G35
Monitor(s) Displays
3xAcer GD245HQ
Screen Resolution
1920x1080
Hard Drives
Samsung 850 Pro 512GB SSD - OS /
WD Caviar Black SATA 3 - 1 TBx2 - Dynamic RAID 0 /
WD Caviar Green SATA 2 - 640GBx2 - Dynamic RAID 0 /
WD Caviar Green SATA 2 - 640GB - Internal Backup /
Seagate Barracude SATA 3 - 3TB - External Backup/ Sync
PSU
HighPower 1000W
Case
Cooler Master HAF 932
Cooling
Noctua NH-D14
Keyboard
Logitech G19
Mouse
Logitech G500
Internet Speed
100/4 Mbit Cable (100GB quota)
Antivirus
ZoneAlarm Extreme Security / MBAM Pro / MBAE Free / SAS Free
Browser
IE 11 - Firefox - Chrome
Other Info
Logitech F710/ G27/ G940/ Z5500 // TrackIR 5 // Nvidia 3D Surround Vision
Funny thing is, they have a local level Admin account that's disabled. I don't really understand why(I assumed it was for emergencies, incase they can't reach the domain, they have a local level admin account), since all the other accounts are on the domain.

When I was first hired, I had a bootable USB, I plugged it in and decided to boot from it. Never expected it would. Security is a joke there. I was able to enable the local level admin account, and install what I wanted, and even create another admin level account.

The issue with GP, is that they don't have direct access to the domain server, they have to call. So I was going to teach them about KeePass, and creating a long/complex password. Especially since they use there own laptops, and I can have access to it.

Encryption maybe a hassle, but it's necessary. Simply browsing of the downloads directory I found people SIN numbers, and personal information, ON A RECEPTIONIST COMPUTER! They certainly don't need this. I will teach it to them, and force them to learn it if I have to.:)
 
Last edited:

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
None
OS
Lubuntu 32 Bit
CPU
None
Motherboard
None
Memory
None
Graphics Card(s)
None
Hard Drives
None
Antivirus
None
Browser
None
You must log in or register to reply here.
Back
Top