Skip to main content

Security Checklist

Run through this list of security tips to make your computer more secure:

Update your operating system

No operating system is perfect, and all of them, if not fully patched, are at risk of being exploited by hackers and viruses. On the other hand, a fully patched operating system can be the best first line of defense. An unpatched machine on the network is harmful not only to its user but to other computers on the network. For that reason, we require all machines on the network to have the latest patches as outlined in ResNet's Acceptable Use Policy.

  • For Windows, automatic updates are located in your Control Panel or PC Settings menu.

  • For macOS, updates are available through Apple's "Software Update" tool via the Apple Menu.

We highly recommend that you set your computer to download and install critical updates automatically.

For Windows 10

  1. Hit the windows key on your keyboard and search for "Check for Updates".
  2. Click "Advanced Options".
  3. Select Automatic (recommended) in the drop down menu and close the window.
  4. If you don't want to receive major build upgrades, select "Defer upgrades"

For macOS

  1. Open the App store
  2. Select "Updates"
  3. Select "Install all"

Update your computer software

Keeping programs on your computer up-to-date is just as important as updating your operating system. Most malware use security vulnerabilities in your internet browser or internet plug-ins to infect your machine.

Keep your web browser and plugins up-to-date

New web exploits are found all of the time. Keeping your web browser up to date is paramount in ensuring that your system is secure.

Plugin Security

The most important action you take to keep your computer secure when browsing the web is to make sure your plugins stay up-to-date, including:

  • Adobe Flash
  • Adobe Acrobat
  • Quicktime
  • Java

Many computers that become compromised with a virus are due to security vulnerabilities within these programs. Adobe has released security advisories for Flash in the past, stating that vulnerabilities exist that cause the infected computer to crash and allow an attacker to take control of the computer. Java can enhance the way you experience the web, but also comes with many security vulnerabilities that allow malicious code to run on your computer, infecting it in the process. We recommend using HTML5 video players whenever possible instead of Flash, and only enabling Java when required to view a web applet.

Read more about web browser security here.

Set unique passwords or passphrases on all your accounts

To prevent unauthorized access to your computer (hackers, malware, viruses), strong authentication must be used for all access.

We recommend using a password manager like LastPass to make it easy to generate and store unique passwords for all of your accounts. To sign up for a UCSD LastPass account, go here: https://blink.ucsd.edu/go/lastpass.

If you can't use a password manager, we highly recommend using a passphrase (a collection of words) instead of a password. A phrase is significantly more secure and is often easier to remember. Here are some examples:

  • You can do the Boogie 2!
  • Call dad re: the party!
  • Pickles make me want to HURL.

Use the following guidelines to create your passphrase:

  1. Do not use a famous quote or a well-known line from a song.
  2. Make sure you can remember it.
  3. Use characters from at least three of the following four groups: lower-case letters, upper-case letters, numbers, non-alphanumeric characters (!$@#,etc).

Don't share access to your computer or online accounts

Your computer settings may allow other users to access files and folders on your computer and devices connected to your computer through file sharing. This ability to share files can be used to infect your computer with a virus or compromise your identity.

When logging into websites on public computers, make sure to never save your password and remember to log off when you're done working.

Set a password on your computer so others cannot log in to your device if you're not there.

Use a firewall

A firewall serves as another line of defense between your computer and all the dangers waiting for you on the internet. It is kind of like the moat around your castle — you get to decide what comes in and what goes out. Windows 10 and MacOS both have built-in firewalls. To enable your built-in firewall, follow these easy steps.

Windows 10

  1. Search for "Windows firewall"
  2. On the left side bar click "Turn Windows Firewall on or off"
  3. Choose the "On (recommended)" option.
  4. Click "Ok" to apply the settings to your computer

With Windows Firewall enabled, if you run internet connected software for the first time you may be asked to "Block" or "Unblock" the program from accessing the internet. In general, you should only allow programs to access the internet that you are familiar with. If you are not sure, block the software and check the company's website.

An exception list can be created from the Windows Firewall control panel. Read more about Windows Firewall.

MacOS

  1. Go to Apple, then System Preferences, click on Security & Privacy, and then click the Firewall tab.
  2. Click "Turn On Firewall" if it is not already on.

Keep an updated antivirus program on your computer

An updated antivirus program will alert you when a potential threatening file is being downloaded onto your computer.

Virus Scanners need to be updated constantly because new viruses are always emerging. Most antivirus clients will update automatically when connected to the internet. Check your client settings to make sure this is performed at least on a daily basis. Also check your subscription status for the expiration date. An expired subscription will not allow the client to receive regular virus signature updates. Without the latest virus signatures your antivirus client will be ineffective.

Please keep in mind that when downloading any type of software, download from a credible source. For example, if you choose to download an antivirus software, download from the company's website. Downloading software from a non-credible source may potentially infect your computer with viruses and may make your computer vulnerable to security threats.

See ResNet's recommendations for antivirus software.

Other ways to protect your computer

Back Up Your Data

ResNet highly recommends getting an external hard drive to back up your data daily. Free software, such as Apple's Time Machine, Windows Backup and Restore/File History, or CrashPlan can create easy daily backups of your files.

Alternately, cloud backup services are available for reasonable prices, usually around $5-$10 per month.

Be Careful What You Click On

Use caution when clicking on unfamiliar links in emails or on websites. Try Google's phishing quiz to see how well you can identify phishing attempts: https://phishingquiz.withgoogle.com/

Contact Us

Phone: (858) 246-4357
Email: resnet@ucsd.edu
Walk-in: Applied Physics and Mathematics (AP&M) 1313