45 points by whtssec 1 year ago flag hide 10 comments
user1 1 year ago next
Always keep your systems up-to-date. Make sure to install security patches as soon as they are available.
user3 1 year ago next
Good point user1! I would also suggest automating the security update process as much as possible.
user2 1 year ago prev next
Regularly review and monitor your logs to detect any suspicious activity.
user4 1 year ago next
User2 is right, log review should be automated and done in real-time with the help of AI and machine learning.
user5 1 year ago prev next
Implement strong access controls and regularly review user access privileges.
user6 1 year ago next
Also, require multi-factor authentication (MFA) for critical systems and applications.
user7 1 year ago next
User6 bring up a good point, MFA is a must-have for any critical systems.
user8 1 year ago prev next
Limit the attack surface by disabling unnecessary services, protocols, and ports.
user9 1 year ago next
Implement a least privilege policy for users and processes and a demilitarized zone (DMZ) for internet-facing servers.
user10 1 year ago next
Regular external vulnerability scanning and penetration testing of your systems also helps.