Tisma.net

Keeping your home computer secured is one of the most important things that you should consider because this is where you store your personal files such as pictures, videos, and personal information such as curriculum vitae. If you will let somebody gain access to these personal files of yours, then your identity is at stake. You should not let anybody such as a total stranger gain access to your personal files since he or she may be able to use this against you such as in identity theft cases.

You should make your computer secured by considering these several tips especially if you are connected to the internet.

The first thing that you should consider is to have good and reliable antivirus software. Since you will just use this for personal purposes then you don’t really need to purchase a corporate license. There are even antiviruses that offer free license for personal use. You should consider getting an antivirus software that already have established goodwill in this industry in order for you to make sure that you really are secured whenever you are connected to the internet. Remember that you should update your antivirus client as often as possible to ensure that you will have the latest protection against newer computer threats.

The second thing that you should consider is to put password on your personal files. If this is a regular Word document, there is actually a feature wherein you can specify a password. All you have to do is to click that feature and key in the password that you like your document to have. This way, you will be able to secure the file itself if in case it falls on the hands of a hacker – this will give him hard time guessing and cracking your password thus making sure that he will not gain access to the information on the file itself.

Web servers and FTP

Each network has an Internet connection is at risk, compromised. Although there are several steps you is at your local network, can provide the only real solution, close to your local network for incoming traffic, and restrict outgoing traffic.

But some services such as Web or FTP servers require incoming connections. If you need these services, you must determine if it is important that this part of the LAN server, or are in a physically separate network, according to a DMZ (demilitarized zone or placed on the public if you prefer his real name ). Ideally, all servers in the DMZ is a standalone server, with unique applications and passwords for each server. If you have a backup server for the machines in the DMZ, you must buy a dedicated machine and keep separate backup solution for network backup solution.

The DMZ from the firewall directly, which means that there are two roads in and out of the DMZ, traffic to and from the Internet, and traffic to and from the local network. Traffic between the DMZ and the LAN would be completely separated from the movement of data between your DMZ and the Internet. Incoming traffic from the Internet would be routed directly to your DMZ.
So, if all the pirates in which a machine inside the DMZ compromise, the only network they have access would be the DMZ. The hacker would have little or no access to the LAN. It is also the case where a viral infection or endangers the safety of others on the LAN would not be able to migrate from the DMZ.

For the DMZ, to be effective, you must keep the traffic between the LAN and DMZ to a minimum. In most cases, that is only traffic between the LAN and the DMZ FTP needs. If you do not have physical access to the server, you also need some kind of remote management protocol such as Terminal Services or VNC.

Database Server

If your Web server will need access to a server database, then you must make sure if your database instead. The safest place is to find a server database, or a physically separate network, called the Secure Zone to create a server and database for the placement.
The security zone is a geographically separate network connected directly to the firewall. The safety zone is by definition the safest place on the web. The only access to or from the security zone would be the database connection from the DMZ (LAN and, if necessary).

Exceptions to the rule

The dilemma faced by network engineers, where the server e-mail address provided. It requires an SMTP connection to the Internet, but it also requires access to the area of the LAN. If you know this server in the demilitarized zone to another, could compromise the integrity of the traffic sector of the DMZ, it is just an extension of the LAN. Therefore, in our opinion, the only place where you can e-mail server is stored on the local network and allow SMTP traffic on this server. However, we would therefore oppose any form of access to the HTTP server recommended. If your users access to their e-mails from outside the network is required, it would be much safer to get some kind of VPN solution. (With the use of firewalls and VPN. LAN VPN Server to allow VPN traffic is authenticated on the network before, which is never a good thing.)