General Guidelines
Step1
Use the latest operating systems and other software including anti-virus, anti-spyware, anti-phishing, anti-spam and firewall. Newer versions are usually equipped to handle common viruses and hacking strategies. Additionally, always install licensed software and download patches and updates soon after their release.
Step2
Create unique user accounts for all users so anybody working on a computer is required to give his or her username and password before accessing the network.
Step3
Assign role-based privileges to users. For instance, employees or part-timers working with you may not need to access all customer data. When creating user accounts, you can give them limited access to information.
Step4
Set restrictions on Internet access. You may want to restrict access to adult content sites if you have employees working from your home office and/or have school going kids.
Step5
Ensure that passwords used are difficult to crack and are changed regularly.
Step6
Maintain detailed logs of user activity. This is especially important when the network is connected to the Internet.
Step7
Have a security policy in place. Clearly communicate its rules and guidelines to all users including kids.
Step8
Shut down all hosts and networking devices if you are traveling or will not be using the network for extended periods.
Keeping the Internet Connection Safe to Avoid Unauthorized Access
Step1
Change your default login information soon after setting up and configuring the Internet connection.
Step2
Avoid remote administration of the network or any of its hosts.
Step3
Ensure that the network is protected by a firewall.
Step4
Use a router to connect a network to the Internet. All routers come with some form of firewall automatically providing a layer of security to the network. Additionally, routers are a good means of sharing one Internet connection among multiple hosts. Routers support several other features beneficial for a network, wired as well as wireless. Routers used in wired networks are different from those used in wireless networks.
Step5
Feed MAC addresses, unique identifiers of networking devices, into the router and access points so they can identify invalid hosts from those forming the network.
Step6
Disable mobile coding that uses ActiveX, Java and JavaScript especially from sites you do not trust. This restricts outsiders from running malicious code on your PCs.
Step7
Disable SSID broadcast if the network is wireless. Generally, routers and access points regularly and automatically broadcast the SSID making it useful in mobile hotspots where consumers come, use the service and move on. Disabling the SSID, particularly in home offices hides the network from prying eyes though it can still be detected by other means.
Step8
Change the SSID, network name of the router and access points, immediately after setting up the network. The default SSID for ease of configuration is a simple name, which the hackers can easily determine.
Step9
Avoid using dynamic IP addresses. Their ease of use also makes them an easy target. Instead, use static IP addresses for network hosts.
Step10
Use devices that support at least WPE for a wireless network. WPE is a data security protocol especially designed for wireless networks. WPA and WPA2 provide enhanced security. Same levels of data security can be maintained by using equipment conforming to the same security protocol.
Step11
Minimize leakage of wireless signal by placing router and access points in the center of your home. Setting up these devices in a balcony or near a window/door sends the signal outside, where it can be easily used by other appropriately configured devices.
Step12
Do not open emails from suspicious sources. Delete such mails without opening them.
