Nhưng những gì về các yếu tố con người? Một kỹ thuật nổi tiếng mà hoạt động khá tốt cho mật khẩu đạt là "vai lướt sóng". Đây là nơi mà ai đó nhìn qua vai của bạn để ăn trộm, hoặc tất cả các mật khẩu của bạn. Thiết lập một chương trình tốt cho nhân viên của bạn sẽ là một trong nhận thức an ninh và giáo dục | This material is copyright and is licensed for the sole use by Thomas Rosenblum on 4th December 2008 1010 SW High Ave. Topeka 66604 Chapter 1 Check your physical security you your employees How much information do you leak The author uses the term coffee-house rules to describe a method of communicating in public. What this means is that with the plethora of wireless hot-spots in coffee shops and other areas an intruder can and it has happened set up a fake hot-spot for free. Your machine connects and he or she is the man-in-the-middle now. He or she forwards your requests on all the while collecting vital information. But what about the human element Another famous technique that works quite well for gaining passwords is shoulder-surfing . This is where someone watches over your shoulder to steal some or all of your passwords. Establishing a good program for your staff would be one of security awareness and education. The metric could be attendance testing and so forth. One other item to be somewhat aware of is the physical key loggers that can be attached to a keyboard. They appear innocuous but are deadly. If there is any possibility of outsiders being in your facility it s a great idea to establish a program to check your equipment for tampering. Wireless security Have you tested it Can anyone get on There are several attack tools meant to break WEP encryption. So again establishing a good password schema and a plan to update and change it on a regular basis is vital. If by some weird chance you are running default settings on your wireless equipment put this book down right now and go set up your security. Rouge devices Has someone added a wireless device that you don t know about in your facility It has been known to happen frequently. Sweep your building for these devices on a regular basis. 37 This material is copyright and is licensed for the sole use by Thomas Rosenblum on 4th December 2008 1010 SW High Ave. Topeka 66604 Let s Get Started Incident .