C3 Security Consulting LLC
Confidentiality
Integrety
Availability		 company banner
HomeSecurityServicesVistaInformationCompany
  
floating layer default test box
Services
Active Directory
Deployment and
Upgrades
Servers
Remote Access
On this page:
Definitions
Methodoligies
Automation
Related Links
Help Net Security
A great resource for both tools and information.
Security Lockdown: Utilizing Standard Microsoft Tools to Secure Your Network
Learn about tools that enable end users in your organization to lock down their own environment and help protect their desktops. Find webcasts and virtual labs that provide policy strategy, tips and tricks, and prescriptive guidance to help strengthen your organization's security, without sacrificing network performance and flexibility.
NetStumbler
A tool for discovery and mapping of wireless access points.
FreeS/WAN
FreeS/WAN is the popular IPsec package for Linux. Only available with 3DES encryption.
Benefits of Linux
If you are undecided on what OS to use, see some of the added value of Linux.

Deployment

Print view

In this context deployment is the delivery process for new equipment or infrastructure. Upgrades are changes to existing equipment or configurations, and migrations are the process of moving data and configurations between devices or infrastructure. Frequently deployment, upgrades, and migrations will all occur at the same time, or at least as part of the same project.

Methodoligies

There is a contradiction associated with workstation upgrades; they are harder to do in a simple environment. In a simpler situation, users either install their own software or have a network administrator do it for them. They all have passwords of varying standards. They are all administrators on their machines. They share information by whatever medium is available, such as shared network drives, email, IM, etc.

However, in a more complex and tightly controlled group or company there are policies and standards. Workstations share the same configurations. Software is installed in a formalized process. Users may not have administrator privileges on the machine. Shared data is housed centrally, and local data is kept in predetermined locations (well, most of it). Although developing a process for upgrades can be complicated, as the environment is standardized, the one thousandth machine will be a same as the first, capturing very significant savings via economies of scale, and simplifying the process on a per machine basis.

In the first scenario, each workstation to be upgraded is its very own project. It is very unlikely it will be performed all in one go, requiring multiple visits by skilled support personnel. Data will be misplaced, and the learning curve for the user will be greater; there will be no common experience to share between colleagues.

Deployment of new machines and software can also be a painful process. Without proper preparation and planning it is possible for severe business disruption to occur. Gartner recently estimated an upgrade of the computer operating system cost a company the loss of three man-days for each machine. C3SC has extensive experience deploying and upgrading enterprises of several thousand machines.

For infrastructure devices, like servers and network configurations, a single mistake can impact an entire company. To make changes of corporate-wide networks and configurations, it is vital that the entire environment is considered. Without examining the interaction of discrete elements, an error or oversight is almost inevitable.

Without considering third party tools, there are three basic options provided by Microsoft:

Deciding which option is right for your specific needs, without knowing and fully understanding the principles and process in each case, will result in needless expense. C3SC has in-depth experience of all three systems and we can give you guidance, planning, and resources appropriate to your needs.

Call us now for an initial consultation to learn more about the process and how it can work for you.

Automation

To upgrade or deploy more than 10 machines, it is important to utilize automated processes. The two main benefits are reduced man-power requirements and consistency of the end-state environment. Unfortunately, despite the claims of many vendors, there is no complete “out of the box” solution. A successful project will be the integration of best of bread components into a unified methodology. C3SC has exactly this experience. In addition to knowledge of the latest technologies, we have the proven ability to customize and apply these technologies efficiently to a range of situations,

Consider how you:

  • scale a process to work with isolated clients and still be efficient for large, connected, user groups?
  • capture user configurations and re-apply them to new environments?
  • transfer complete computer operating systems over a network for multiple concurrent upgrades?
  • assess your environment and user?
  • provide roll-back contingency planning?
  • provide summary reporting and analysis?
  • deal with the technical issues of new equipment and new software?
  • keep the data secure during transfer, both from physical loss and unauthorized access?
  • provide for user related issues?
  • minimize the disruption to business continuity?
  • include applications for individual, per user, requirements?

▲Top of page
Did you know?
Set up a firewall. Even if you just use dial-up or DSL you are fully exposed to the internet.
This is your primary defense and protects against outside attacks by screening and blocking all traffic between your network and the Internet that is not allowed. The firewall also hides computer addresses. Firewall hardware connects between the cable/ DSL modem and your computers. Windows operating systems have great built-in firewalls.
Size does matter - passwords.
Make it longer, using upper and lower case, with numbers and special characters. Don't forget spaces and punctuation points can frequently be used to make more memorable, but still secure, pass phrases.
Email is a hackers gateway to your network.
Make sure you have adequately trained your employees in good email hygiene to reduce virus attacks.
Scrolling system messages.
To view Linux system log messages in real-time, open a terminal window, su to root, and type tail –f /var/log/messages. You will see the system messages scroll up the screen as they occur.
Who is using your computer?
Don't leave your computer whilst you are logged on. It only takes a moment for someone to send an email with your account. Always shut down at night and set a password for your screen saver so your PC will remember even if you don't.
Trademarks© Copyright (2006) C3 Security Consulting LLC, Washington DC. (+1 866 799 2969) - Hosted by Webmasters.com