Page 20 - Cyber Warnings
P. 20
working constantly to keep ahead of these threats. Running out-of-date software means
that you may be subjecting your server (and your network) to security threats that can
easily be avoided with a simple software update. Similarly, the operating system should
also be kept up to date. Apply service packs and other updates regularly so that
vulnerabilities at the Operating System level are less likely.
7. Don’t use freeware. Most companies that sell Secure File Transfer servers or Managed
File Transfer servers will tell you not to use freeware – and rightly so. They have a vested
interest in encouraging customers to buy these products. But there are legitimate reasons
that you should avoid freeware:
• Development environments may not be secure. This increases the risk of malware in
free downloads.
• Developers can make FTP or SFTP work without strictly adhering to the IETF
specifications for protocols. This may leave some functions unimplemented.
• Choose a company that has an interest in your success. If your SFTP server
encounters problems, how important is it for the company to get you working again?
How concerned are they about your protection and staying current with the newest
security standards?
Even though it’s an unsecure protocol, using FTP is often a technical requirement – perhaps for
connecting with partners or legacy systems, or because it’s easy and cost effective for
distributing files. Use secure protocols if you have the option to do so.
FTP is more frequently used today than you might expect. Use these tips to make sure that your
server is as secure as possible.
About the Author
Michael Ryan is the CEO of South River Technologies (SRT), a global
provider of cybersecurity solutions targeting organizations in need of
secure enterprise collaboration for their distributed workforce. Mr. Ryan
has over 20 years of experience in cybersecurity, initially designing frame-
relay encryption networks to secure banking transactions in Europe. He
serves on the board of the Cyber Association of Maryland and is a
previous president of the Chesapeake Regional Technology Council.
Michael can be reached on Twitter @SRTCEO and at the SRT website:
http://www.southrivertech.com/.
20 Cyber Warnings E-Magazine – June 2017 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
