These guidleines are provided by the ACES/Ag Computer Technology Unit to help PC users secure their computers against unauthorized access. Contact CTU if you have questions or concerns about the security of your PC.

1. Physical Security
   Be sure your office door is locked when you leave work for the day or whenever your office is unattended, such as at lunchtime. CTU does not have access to any offices. You will be notified if at anytime we need access to your computer for maintenance or software upgrades.
2. Authentication
   For residents of Duncan Hall, Duncan Annex, or Extension Hall ONLY: all PCs in these three buildings are authenticated. This means that you MUST PROVIDE a username and password login when the PC boots up. When you turn on your PC, you should see prompts for Username, Password, and Domain. If you do not see all three, or if you can get into Windows by clicking OK or CANCEL at the login prompt without entering your ACESAG username and password, then your PC is not authenticated and anyone can use your PC. Please call CTU to correct this.
3. Password Security
   Be sure your password is a secret. You should not share your password with others. If you believe someone else knows your password, you should change it immediately at http://secure.aces.edu/account.
4. Screen Saver
   Be sure you have a password-protected screen saver installed. You can set this on Windows 95/98 as follows:
   • With your cursor on the windows background (normally teal-colored), right-click the mouse and select Properties.
   
   
   • Select "Screen Saver".
   
   
   • Select a theme from the drop-down menu.
   
   
   • Check the "Password protected" box.
   
   
   • Select "Change..." and type a password in the boxes (use one that's different than your ACESAG password).
   
   
   • Enter a time in the "minutes" box.
   
   
   • Click OK.

When you leave for the day, be sure that your screen saver has engaged. Alternatively, you could log out completely. CTU recommends against using third-party screen savers since they often create performance problems.
5. Turn Off Unprotected File Shares
   To ensure that someone can't get remote access to your files via Network Neighborhood, be sure that you are not sharing files without a password. You can check for file shares by using the Windows Net Watcher utility:
   • Click Start, then CTU Utilities, then Net Watcher (or Start, Programs, Accessories, System Tools, Net Watcher).
   
   
   • In Net Watcher, click View, then By Shared Folders.
   
   
   • To check that all file shares have passwords, select a folder, then click Administer, then Shared Folder Properties.

Note that unprotected file shares are also a prime target for viruses trying to spread themselves. This has been observed by some people who noticed that, upon shutting down their PCs, a remote PC was accessing their shared files.
6. Turn Off Remote Access Programs
   Be sure that remote access software is not running on your PC. Remote access programs are commonly used by many computer support groups, including CTU, to provide telephone support to distant offices. These programs MUST BE TURNED ON in order to be used, and they pose no risk of unauthorized access when they are turned off. Additional information about the programs, how CTU uses them, and how to be sure they are turned off when not in use, is available at the following link:
   • About Remote Control Programs on ACES PCs

This page last updated 3/29/2002.