Security for Systems Administrators
Note: this list of security recommendations applies to campus IT staff. See Security Best Practices for recommendations that apply to all campus users.
Report security incidents and concerns
If you become aware of a security incident or even a security related concern, report it as soon as possible.
Limit remote access
If you are allowing remote access to a system, you should restrict which network ranges are allowed to connect remotely. Caltech's main campus IP range is 184.108.40.206/16. You could restrict remote access to your computer to this range, and still remotely access your computer from home by connecting to VPN first.
Setup multi-factor authentication for SSH or Windows Remote Desktop
Information Security can help you deploy multi-factor authentication to protect SSH, Windows Remote Desktop, and other services. See Deploying Multi-factor Authentication for more information.
Security information for lab workstations and instrument controllers
Refer to our page about securing lab workstations and instrument controllers if you manage these devices.
Store passwords in a password management tool
All passwords should be stored in a password management tool. See password managers for more information.
There are numerous security concerns associated with IPMI technologies. See IPMI Information for more details.