How JustAnswer Works:
  • Ask an Expert
    Experts are full of valuable knowledge and are ready to help with any question. Credentials confirmed by a Fortune 500 verification firm.
  • Get a Professional Answer
    Via email, text message, or notification as you wait on our site.
    Ask follow up questions if you need to.
  • 100% Satisfaction Guarantee
    Rate the answer you receive.
Ask Claws224 Your Own Question
Claws224, IEEE Network Engineer
Category: Networking
Satisfied Customers: 1256
Experience:  IEEE, Microsoft
Type Your Networking Question Here...
Claws224 is online now
A new question is answered every 9 seconds

1. What is the best way to avoid conflicts that patches for

Customer Question

1. What is the best way to avoid conflicts that patches for a Windows Internet information server might have with software or settings on the server?
2. How do you protect the server from modification by non-root users?
3. What threats do employee-owned mobile devices present to today’s corporate networks?
4.What policies should be put in place to prevent spyware from getting into an organization?
5.Discuss at least two physical security measures that organizations can use to help secure their networks, data, and company in general
Submitted: 1 year ago.
Category: Networking
Expert:  Joel replied 1 year ago.
Hi, I'm Joel. I look forward to assisting you with your question today.
Expert:  Joel replied 1 year ago.
1. Best for the company to follow a sound patch management process and lifecycle. The IIS production servers should also have a DTL (development test_ environment for testing code and also for deploying patched before they are deployed into a production environment. In this case any conflicts or issues can be identified and rectified before deploying to the production IIS servers.2. The server being IIS and internet facing should be placed into a DMZ (demilitarised zone) with stricter controls placed on it for both external and internal access. It would also be locked down via group policy in the Active Directory domain. IIS servers would undergo set hardening as per best practices and follow principle pf least privilege etc.
Expert:  Joel replied 1 year ago.
3. Employee owned mobile devices present many threats if not properly governed within the organisation by policy or controls such as MDM. If these devices are not and permitted to access the network then the user can install any applications they wish which could be malicious in nature. Even Apple devices can be jailbroken and then malicious software installed or mobile devices could become compromised or infected. If these devices were permitted to access to corporate email then there is risk of data leakage within the organisation.4. From a mobile device perspective, these devices would be managed by mobile device manager, controls enforced such as strong passwords, network access to a segregated zone, for example, different zones of wireless access based on devices. To keep standard operation environment devices seperate from non managed. In general to prevent spyware, Endpoint protection should be deployed to all notebooks and desktops, USB devices locked down by group policy, web traffic proxied and controls applied there such as AV scanning, threat prevention etc.
Expert:  Joel replied 1 year ago.
5. Physical controls such as RFID access can be employed and lock employees to the areas they should be able to access and at the set times allowed. CCTV systems can be a preventative measure to monitor important environments. Desktops and laptops can be secured with appropriate hardware. Bollards can be used to control vehicle access to and from the environment. Fire extinguishes are another important factor in physical controls as this could be the different between saving corporate data and systems or total destruction. Off-site backups would also be vital
Expert:  Joel replied 1 year ago.
Let me know what you think and if answers are sufficient,
Expert:  Joel replied 1 year ago.
Hi mate, do you still need assistance with this?

Related Networking Questions