How are people securing their Intranets?
- This topic has 5 replies, 3 voices, and was last updated 10 years, 11 months ago by
.
Viewing 4 reply threads
Viewing 4 reply threads
- You must be logged in to reply to this topic.
Home › Forums › GovIntranetters › How are people securing their Intranets?
Tagged: Security
Gdunn15.
DazbertHI There,
We have done a number of things to secure the site, including locking the server to the GSI network. We are putting a SSL certificate in place once we go live.Ive also got a password generator for when we are creating a new user. You can also do a number of other things such as:
There are a number of plugins you can use to do the above
Of course the biggest thing is to have regular backups taken in case of a problem. We are also going to do some pen testing to ensure that any holes can be plugged going forward.
Hope this helps
Gdunn15Hi Dazbert,
Thanks for getting back to me.
Please forgive my ignorance, but is the GSI network what has now become PSN?
We don’t have support internally for MySQL or PHP, so were considering putting the intranet on some cloud hosting that we already have. Our network guys say we need to either secure with authentication via active directory or restrict access by IP address (both preferably!).
Did you require staff to go onto your intranet and register themselves? Or automate the process?
Thanks again for your time.
DazbertHi!
I guess PSN is the same sort of thing. GSI is the governemnt secure network. We have taken the IP addresses related to this and restricted access that way. We will also have SSL certification authentication in place. We also have minimal MySQL and PhP resource so we are using a managed cloud server and that seems to work well.
With regards to staff, we are registering staff as thier area of business transferrs content. We are also encouraging people to sign up by offering the staff forums and social areas.
Hope that helps!
thanks
Dazbert
Luke OathamHi all
I think you’ve covered most things. We normally lock down by IP address so that only staff within the office network or using a VPN connection can view the intranet.
Luke
Gdunn15Thanks Luke and Dazbert,
We’ll definitely be locking down by IP.
After a bit of discussion, we are looking at having it hosted on an internal box. We will also be trying out one or two of the AD connector plugins for account creation.
Hoping to launch at the end of June so lots to do!
Thanks again,
Gary
| Cookie | Duration | Description |
|---|---|---|
| comment_author_email_{HASH} | Under 1 year | This is purely a convenience, so that the visitor won’t need to re-type all their information again when they want to leave another comment. |
| comment_author_url_{HASH} | Under 1 year | This is purely a convenience, so that the visitor won’t need to re-type all their information again when they want to leave another comment. |
| comment_author_{HASH} | Under 1 year | This is purely a convenience, so that the visitor won’t need to re-type all their information again when they want to leave another comment. |
| cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
| cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
| cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
| cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
| cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
| viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
| wordpress_logged_in_[hash] | Indicates when you’re logged in, and who you are, for most interface use. | |
| wp-settings-{time}-[UID] | This is used to customize your view of admin interface, and possibly also the main site interface. |
| Cookie | Duration | Description |
|---|---|---|
| _ga | 2 years | Used to distinguish users. |
| _gat | 1 minute | Used to throttle request rate. |
| _gid | 24 hours | Used to distinguish users. |