Educating Your User Community
The term social engineering was introduced a few chapters back to cover the types of things it is possible to entice employees into do that they should not—such as give out passwords. Obviously, an important part of security is educating your users. This should include not just a one-time class on basic security measures; it should be an ongoing program, reminding users of the usual security practices and introducing them to the newest information.
Basic security practices that affect some of the newer kinds of threats causing a lot of problems lately include the following:
Do not open email attachments unless you know the original sender and you are expecting the attachment. In some environments, it might not be ...
Get Microsoft® Windows® 2000 Security Handbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
