Picking Up Pieces

User Tools

Site Tools

Trace:
cybersecuritybasics

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
cybersecuritybasics [2022/10/28 18:37] – [Passwords] jgmac1106cybersecuritybasics [2022/10/28 19:34] (current) – getting rid of meta writing statements jgmac1106
Line 1: Line 1:
-As an Internet activist, a member of a marginalized group, or just a concerned security citizen you may want to take steps to protect yourself online. You can take a few steps to go a long way. Below you will find my best tips in descending order of both capability and complexity. Meaning everyone should "Be Smart" but not everyone needs to use "network segmentation."+As an Internet activist, a member of a marginalized group, or just a concerned security citizen you may want to take steps to protect yourself online. You can take a few steps to go a long way.Based on threats to your self and data think about security as  descending order of both capability and complexity. Meaning everyone should "Be Smart" but not everyone needs to use "network segmentation."
  
 Please share tips you find useful for the average internet activist who may not have networking and IT skills. Please share tips you find useful for the average internet activist who may not have networking and IT skills.
Line 11: Line 11:
 ===== Turn on 2FA/MFA ===== ===== Turn on 2FA/MFA =====
  
-Authentication means proving who you are when you try to gain access to a newtwork. Usually you get authorized by authenticating a username and a password match. You need better security. Enable multi-factor authentication on all your online services.+Authentication means proving who you are when you try to gain access to a network or system. Usually you get authorized by authenticating a username and a password match. You need better security. Enable multi-factor authentication on all your online services.
  
 With Multi-factor-authentication, MFA, you can verify something you know, something you are, and something you own. Many services allow SMS, test messages, as an additional factor. For most use cases this method is acceptable but it is not the most secure. With Multi-factor-authentication, MFA, you can verify something you know, something you are, and something you own. Many services allow SMS, test messages, as an additional factor. For most use cases this method is acceptable but it is not the most secure.
Line 27: Line 27:
 Rarely, better yet, never click on any link sent over SMS or private message. If you do make sure you know the sender. Look at the URL, if not shortened. Make sure it seems legitimate. Remember the accounts of people you trust can get compromised. Rarely, better yet, never click on any link sent over SMS or private message. If you do make sure you know the sender. Look at the URL, if not shortened. Make sure it seems legitimate. Remember the accounts of people you trust can get compromised.
    
-If you work with really sensitive data, or your identity puts you at risk, you should never open links through SMS and make sure any external connection gets scanned for malicious code. You should not use browser based email and only use a client with trusted AV capabilities.+If you work with really sensitive data, or your identity puts you at risk, you should never open links through SMS and make sure any external connection gets scanned for malicious code. You should not use browser based email and only use a client with trusted Anti-virus capabilities.
  
 ===== Passwords ===== ===== Passwords =====
Line 49: Line 49:
 Think of your devices as having two different users. One would have admin rights and the other has user rights. Set up all your laptops and devices with two users. Give one of them full rights to install software, run updates automatically, and modify the system. Think of your devices as having two different users. One would have admin rights and the other has user rights. Set up all your laptops and devices with two users. Give one of them full rights to install software, run updates automatically, and modify the system.
  
-Then make yourself a second user. This user will connect to external systems like we apps and social media. This user should not have rights to modify the system. If you come across a program you need to install you would log out and log in with the admin account. Then grant the user account access to to the application.+Then make yourself a second user. This user will connect to external systems like web apps and social media. This user should not have rights to modify the system. If you come across a program you need to install you would log out and log in with the admin account. Then grant the user account access to to the application.
  
 ===== Backups ===== ===== Backups =====
Line 71: Line 71:
 ===== Wires Rock ===== ===== Wires Rock =====
  
-Every wireless access point and  every Bluetooth connection creates an attack vector for adversaries. Getting into offline hard wired systems will often take physical access. Try to use wires whenever possible. Plus your bitrate to your wireless speaker makes the music awful. Not having your XBOX wwired why you get bodies by little kids and lag, and think about how many Lithium batteries we could eliminate with wired mice.+Every wireless access point and  every Bluetooth connection creates an attack vector for adversaries. Getting into offline hard wired systems will often take physical access. Try to use wires whenever possible. Plus your bitrate to your wireless speaker makes the music awful. You really should use wired cans instead of wireless earbuds(and a lossless format) unless you hate music. Not having your XBOX wired is why you get bodied by little kids and lag, and think about how many Lithium batteries we could eliminate with wired mice.
  
 ===== Separate Networks ===== ===== Separate Networks =====
cybersecuritybasics.1666982260.txt.gz · Last modified: 2022/10/28 18:37 by jgmac1106