Brian Posey’s article on TechRepublic highlights 10 common network security design flaws. The list has clear headings, with practical advice on how to fix these flaws.
Read more about each one to get the full story, but here is the short list:
1. Set it and forget it
2. Opening more firewall ports than necessary
3. Pulling double duty
4. Ignoring network workstations
5. Failing to use SSL encryption where it counts
6. Using self-signed certificates
7. Excessive security logging
8. Randomly grouping virtual servers
9. Placing member servers in the DMZ
10. Depending on users to install updates
You don’t need to do a public mea culpa, but take a look at your network – is your company at risk as a result of any of these practices, or are these flaws so basic that only a novice would find them on his or her network?