Fortigate Zones vs Interfaces
Fortigate v7.0+ (?) allow for Zones. I usually call my zones Public and Private. then I can add interfaces to those zones, ie add the WAN interface to the Public
Fortigate v7.0+ (?) allow for Zones. I usually call my zones Public and Private. then I can add interfaces to those zones, ie add the WAN interface to the Public
Best Keep current with updates. When updates are released to the public, bad actors will reverse-engineer the changes and make “Hackz” based on those flaws. Many have methods to include
Always: uBlock Origin Blocks Ads etc, used it for years, never had any reason to changeBitWarden Password manager, the last remaining free one When needed: Read Aloud lets me multi-taskGoogle
Free software to audit your AD passwords. Compares passwords to HaveIBeenPwned database. Other software can do the same but this does it for free and it’s easy to use. https://specopssoft.com/blog/checking-pwned-passwords-active-directory/
Teamviewer shares the clipboard with anyone remote controlling it. And it will synconSo if you ask someone to remote control your PC or a 3rd PC you are remote controlling
We can think of Cybersecurity as having 3 basic zones; Red, Yellow, Green.Red Zone is the internet. Make sure everything here is locked down tight, No compromises. Zone includes your
Disable HSTS thusly https://campus.barracuda.com/product/ContentShield/doc/73699516/how-to-clear-the-hsts-cache-or-disable-hsts-for-firefox/
Backups: Automated backups & tested +1, offsite +1, encrypted +1 versioned controlled OR immutable +1, our data in cloud services is also backed up +2 Hardware: support contract OR spare
SpamHaus is a well known service that keeps a curated downloadable list of Internet offenders. to see a link to the list https://www.spamhaus.org/drop/ You can see the DROP list and
Level 1: Free / easy / 1 hour fixes-Block China, Russia, Ukraine on your firewall and email-Turn on email banner for external emails-make sure PCs are running a version of