[ Thanks to Mike
Golvach for this link. ]
“Unfortunately, as long as there’s profit in breaching
that security, building industries devoted to thwarting those
breaches or some interdependent mish-mosh of the two, there’s no
way to achieve absolute security on the Internet unless you opt not
to use it (The Internet, that is 😉“To get us started, I wanted to gloss over some points taken
directly from RFC 4732 which, although it is (admittedly) more
geared toward Denial Of Service attack prevention, still provides
many useful and simple guidelines with regards to Internet security
in general (identity protection, etc). The RFC is from 2006, but it
seems to be the most concise and easily digestible security RFC out
there. Of course, I don’t read them all 😉 I mainly chose this one
because of it’s easy blending of useful information and
readability.“We’ll blaze through some of the points made in RFC 4732 at a
quick pace. Check out the link for more information. The following
is a quick bullet list of just some of the (now standard)
recommendations for DOS protection (and general Internet User and
Site Security) – I’ll follow each selected point (taken from the
RFC almost verbatim) with a quick (hopefully, one line) summation
so we get the flavour but don’t have to eat the whole bird 😉 Some
of the suggestions for enhanced general security include:”