Kentucky State University

Best Practices

System Shut Down
Shutting down your PC at the close of business is very important. For security reasons PC should be shutdown each night. DO NOT LEAVE IT LOGGED ON. Shutting down your PC allows applications to update and. All users of the SIS, FRS and HRS systems must also log out before leaving at the close of business. VPN users should shutdown their PC once logged into the host PC in thier office.


Password Screensavers
At all times, users must ensure that private and sensitive information is not disclosed to unauthorized individuals who do not have a legitimate reason for access to the information. Enable a password-enabled screen saver to help protect the information displayed on your computer screen. This feature will automatically lock your PC should you walk away. It can only be unlock by the user logged in.


Strong Passwords
Keeping in mind, your password should only be easy for you to remember, not easy for others to guess. A good idea is to use complex acronyms with interspersed punctuation or numbers. Example: Phrase: Mary Had A Little Lamb - Password: M1H2A3L4L Example: Phrase: God Bless America - Password: G11B22A!!


Virus Software
All Faculty, Staff and Students are required to keep the Virus Scan software installed on their computer to protect against Virus, Trojan and Worms. This is not optional, and is strongly recommended to all students as well. The software installed has been carefully selected by the Univeristy to work in harmony with existing policies and systems. Do not alter or replace it. Periodically, IT will supply update patches to keep your software up to date to enhance protection. Internet & Email Safety.
  • Scan any downloaded file for viruses before installing it. Never install from the internet unless you know that you know the software creator and provider.
  • Never opening an unknown email files attachment.
  • Always delete suspicious emails as soon as they appear in your inbox.
  • Never use your KSU Email address when registering on internet websites unless University business is being conducted.
  • Never provide your email address to “unsubscribe me” website. Doing so only confirms you have a valid email address and may result in more SPAM.
  • Place unknown senders on your Junk mail list and/or delete their messages.
  • Make sure your firewall is turned on.
  • Keep Anti-Virus and Anti-Spyware Software installed on your PC.
  • Never send sensitive files or personal information over the internet, unless you know your Internet connection is secure. Remember, a determined hacker can get your unsecure information, don't just hand it to them.
  • Safe-guard personal information. Never provide
    • KSU ID Number
    • Social Security Number
    • Credit Card Numbers
    • Drivers License Numbers
    • Phone numbers in conjunction with personal data
    • Personal Bank Information


“KYSU Account” Email Scams
Several e-mail scam has been forwarded to several Kentucky State E-mail account holders. The subject of the emails have been “Verify Your Kysu Account Now” and similar messages. These messages are not generated by Information Technology. Therefore, do not respond; delete these emails. They are attempting to gather your user name and password in order to pass email viruses through the KSU network. Again, please do not respond. Delete the message from both your inbox and your deleted items folder to insure you have removed it from your email account. If you have any questions or if you have responded to the bogus e-mail please contact IT at 7000, we will be glad to assist you.


Spyware
There are programs that automatically download to your computer without your consent or knowledge. These programs are known as drive-by downloads. These downloads are initiated by a simple visit to a Web site, reading a HTML email message, or through the installation of an application. Particularly, be cautious of pop-up windows with security warnings. Typically the company only wants you do download their product, often with hidden costs and parasitic software attached. The pop-up often appears to have come from your system. Don't be fooled; it was not. Apart from the hidden costs and extra software they load, these “security enhancement” downloads often gather information and track your online behavior.