For almost two decades I’ve seen lots of crap in IT departments, and one of the major problems is the attitude of dealing with things later. So lets say you installed Windows 2008 R2 yet you will deal with windows updates “later” … AFTER you finished configuring IIS or Apache or whatever AND then on top of that all you, did not complete change management or document what you did on that server at all.
Anyway, am not writing this to preach on how you should do your work, but because of the attitude above you might not have one in few months, because your company lost revenue due to hacked system.
Minimal/General things to consider before and after…
- Scan your server for vulnerabilities before you do anything ( Use tools like Nessus, Openvas (open source), Rapid7 and others)
- Install your software, make sure its up to date
- Do windows or linux updates
- Scan your server for vulnerabilities again ( if you find something fix it right away, don’t wait)
- Note information you did on the server , that includes creating any type of usernames, updates, fixes, installs, etc.. basically everything you did on that server.
- If you are installing some type of new software, take screenshots, be very specific as to what you did to install it correctly.
The steps above are really minimal but the impact on security is greater and can sometimes even save you from unwanted attacks.
One thing I always do is join newsletters, blog rss feeds and company events that their software runs on corporate network.. this way you are always up to date. Update notifications for software is fine too, but most likely too late if you get hacked.
The stuff above really applies to everything in life, if you have that little hint of “I’ll do it later” yet takes you 2 minutes to do it, do it right then and there!..
“I’ll clean my teeth tomorrow.. am too sleepy” – you will most likely say same sh** tomorrow!