SysAdmin Day!

29 Jul
Company, Industry, Partners

Today July 29, 2016, is the 17th Annual System Administrator Appreciation Day!

So we wanted to show our appreciation for all the SysAdmins out there who day in and day out work to keep our systems safe. Secure Sense Partner Sophos, wrote up a great blog that we just had to share!

 

“As a sysadmin you know better than everyone the mind-blowing complexity of the modern corporate network. Your company’s computer systems are a digital riddle, wrapped in a mystery emulator running in a turnkey hybrid cloud enigma.

At any time, on any day, you could find yourself staring at a unique system failure that has never, ever, ever happened anywhere before in the history of the universe. Whatever the alignment of the intermeshed, inadequately logged events that caused the glitch, slowdown, shutdown, failure, failover, fire, disaster or apocalypse, it’s your job to fix it. Now. Against the clock. Backwards. In heels.

Your job is basically impossible.

Well, no more. Today is SysAdmin Day and we’re here to help. We’ve put our heads together and come up with a simple and easy to understand guide to fixing any computer problem on any network, anywhere. Period.

Our foolproof flowchart is yours to cut out and keep:

If you want some advice that might actually help you…

 

sysadmin chart

 

The thing about the tips we’re proposing here is that many of the sysadmins we know are really keen on them, but haven’t quite got round to implementing them yet. Even modest security tweaks mean some sort of change, and possibly even a smidgeon of inconvenience for some users.

That’s often enough to put the frighteners on IT, with the result that many small but effective security measures are put off simply to keep the peace. In other words, this article is actually a “good network citizen” appeal to the rest of us, and these tips are actually for everyone.

Here they are: five little things that can make a big difference!

By the way, although these tips are aimed at sysadmins because some of them can be configured centrally for everyone, all in one go, all from one place…

…you can do them for yourself at home, and for your friends and family, too.

(And while you’re about it, please tell them about Sophos Home, our business-grade security for Windows and Mac, 100% free for home use.)

 

TIP 1. DON’T ALLOW UNTRUSTED APPS ON ANDROIDS.

Google’s default setting for Android phones is to have “Allow installation of apps from unknown sources” off.

That forces you to use Google Play, which isn’t perfect (the crooks have historically put plenty of effort into sneaking malware into it), but certainly makes you think twice before grabbing apps that may not have been scrutinized at all for security holes. Unfortunately, this is a setting that often gets turned off, for example to install hot new games that aren’t officially available yet, like Pokémon GO.

Sysadmins can use tools such as Sophos Mobile Control to enforce this setting; if they do so on your phone, please go with the flow.

If you really need an app from an alternative market, you can always ask nicely.Note, however, that not all Android device vendors support setting this feature remotely, so your sysadmins may have to rely on asking/warning/cajoling you to check the setting yourself.If they do, give them a SysAdmin Day present: say, “OK, Sysadmin.”

 

TIP 2. SHOW FILE EXTENSIONS ON WINDOWS

By default, Windows doesn’t show file extensions, which are the characters after the last dot in the filename, such as .EXE, .DOCX or more esoteric extensions such as .JS. This means that by the age-old expedient of giving a file two extensions, crooks can make a suspicious file look more believable.Even if you don’t know what a .JS file is, you’re unlikely to believe an email that tells you it’s “an important document,” or that advises you to “open the attached PDF.”

But if the crooks call the file INVOICE.PDF.JS, then Windows will show it as INVOICE.PDF, and it becomes much.Some people don’t like showing extensions because it just looks like more techie jargon on the screen.However, we think that there’s no reason to make it easier for crooks to make a bad file look OK.

 

TIP 3. SET JAVASCRIPT FILES TO LOAD INTO NOTEPAD

We mentioned .JS files in Tip 2. Those are JavaScript files: programs that run inside a controlled sandbox if you open them inside your browser, but that run as full-blooded programs if you open in Windows itself. Ransomware crooks adore .JS files, especially when the .JS extension isn’t displayed. (We’ve even seen ransomware itself written in 100% JavaScript.)

Few people need to run JavaScript outside their browser, so you may as well tell Windows not to run JavaScript files at all when you click on them. Tell Windows to open .JS files in NOTEPAD instead. Instead of a ransomware attack, you’ll just get a harmless window full of text that looks like gunk.

 

TIP 4. TURN ON ENCRYPTION AND PASSCODES ON MOBILE DEVICES

Lots of people are still afraid of strong passcodes and device encryption on their phones: they think they’ll forget the passcode, and they assume that the encryption will slow the phone down annoyingly. But most people can remember their own phone number easily enough, so why not a passcode?

And even modestly-priced phones are perfectly usable these days when everything is encrypted. Sure, crooks love encryption when they use it, because it helps them keep their criminal activities secret, but they hate it when you use it, because it means they can’t simply grab your phone and learn everything about you in a few minutes.

 

TIP 5. STOP BY IT AND SAY, “THANKS.”

OK, this isn’t a tip that sysadmins can do for you. This is one for you to do for them.

Spare a thought: sysadmins often bear the brunt of everyone’s complaints about the inconvenience of computer security.

So make SysAdmin Day the day you take some of that brunt away!”

Connect with Secure Sense to protect data, your network, and systems 24/7, 365 days a year. If you have questions or want to learn more, please contact Secure Sense by calling 866-999-7506.

You can find Secure Sense on Facebook,  LinkedIn and Twitter. Follow us for current company and industry news.