Fixing the FBI's 'Top 20' security flaws isn't enough

Monday, 7 October 2002, 12:36 AM EST

Like a good sun-block lotion, the SANS/FBI recommendations for keeping these 20 vulnerabilities covered vastly lowers (but doesn't eliminate) your chances of getting "burned." The 20 items represent the weaknesses most frequently exploited by Internet-based attackers and should be a mandatory second step for all enterprises in an Internet security program.

Appendix A of the list provides advice that should be the first step: Enterprises should block all unnecessary ports and services at the enterprise firewall and open only those required for business. Although Appendix A lists the most dangerous ports that should almost always be closed, Gartner believes that "deny all that is not expressly permitted" should be the mantra for Internet security.

[ Read more ]

Related items




Spotlight

Hope is not a strategy, we need more healthy paranoia

35 percent of security experts believe leadership within their organization lacks a healthy paranoia, with 21 percent of leadership "relying on hope as a strategy" to avoid a cyber security breach.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Mon, Aug 31st
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //