RIT
Information Security

Essentials

This section provides all the software and instruction necessary to comply with the Desktop and Portable Computer Standard. The software on this page is intended for use by students, faculty, and staff at RIT. Inexperienced/non-technical users may want to check out our Digital Self Defense 101 Workshop, which explains the dangers of the Internet and RIT security requirements in greater detail.

Note: For anti-virus, anti-spyware, and firewalls, you do not have to use the software on this page specifically, but you must have them active on your machine.

RIT Faculty and Staff

ITS provides the McAfee Agent (formerly known as the "ePO Agent") for RIT-owned Windows computers on campus. The McAfee Agent can install and manage settings for your anti-virus, anti-spyware, firewall, and host intrusion prevention software.

Before making any changes, end users supported by systems administrators should check with their support organization (FAST, COB, etc.) to find out their policies on making these changes. The McAfee Agent can be requested from the ITS HelpDesk.

Note: If you are currently running the McAfee Agent on your machine, then you should NOT install any of the standalone McAfee products listed below.

Anti-Virus

McAfee Viruscan

RIT has licensed McAfee Viruscan software for use by faculty, staff, and students on both Institute computers and home computers.

Alternative Anti-Virus Products

You may use a different anti-virus product instead of McAfee, however it must have Buffer Overflow protection enabled. Never use more than one anti-virus product on the same computer. Anti-virus products issued by major vendors (such as Symantec, Trend Micro, etc.) are acceptable, or you can try one of the free products listed below. Remember that technical support for free versions of software may not be available.

Product License Company
ClamAV (Linux) Free for personal use Open Source
ClamXAV (Mac) Free for personal use Open Source
Norton Anti-Virus One year subscription paid Symantec
Trend Micro Anti-Virus One year subscription paid Trend Micro
avast! Anti-Virus Free for personal use ALWIL Software
AVG Anti-Virus Free for personal use Grisoft

Anti-Spyware

By nature, spyware is very difficult to detect, and unlike anti-virus it is preferable to run multiple anti-spyware programs.

Spybot Search and Destroy

The license for Spybot Search and Destroy is free for use by faculty, staff, and students on both Institute-owned and home computers.

Additional Anti-Spyware Products

Be wary of other free anti-spyware products on the Internet—many products advertised as anti-spyware actually contain spyware themselves!

Product License Company
SpywareBlaster Free for personal and educational use Javacool Software
Ad-Aware Free for personal use Lavasoft
Windows Defender Free Microsoft

Spyware on Apple Computers

In recent years, spyware on Apple computers has not been a significant problem in comparison with Windows computers; however, this is starting to change. Mac users who are having trouble with spyware or who desire extra security may want to use an anti-spyware program. We recommend MacScan from the developer SecureMac.

Firewalls

Windows and Mac OS Built-in Firewalls

Windows XP, Windows Vista, and Mac OS X all come with built-in firewalls; however, the Windows XP firewall does not block outgoing traffic—meaning any malware or spyware on your computer will be able to communicate to third parties on the Internet. Resnet provides instructions on how to configure these built-in firewalls.

Alternative Firewalls

You may want to check with your Internet Service Provider to see if they provide a firewall or other security software for their customers. RIT recommends the basic ZoneAlarm firewall for Windows users (free for personal use on home computers).

Patching & Automatic Updating

Operating Systems

Regardless of what operating system you run, it must be up-to-date on all security patches. The easiest way to do this is to turn on the automatic update feature. Both Windows and Macintosh operating systems can be set to download updates automatically.

Users of other operating systems such as Linux, Unix, etc., are also required to keep their operating systems up-to-date on security patches.

Software Applications

It is important to keep all software on your computer updated, not just your operating system. This can usually be done from within the program itself or through the vendor's website; some programs have an automatic update feature. Use the links below to find updates for Microsoft, Apple, and Adobe software.

Passwords

Choosing a strong password and changing it regularly are two of the most important things you can to do protect yourself online. The RIT Password Standard sets the requirements for your RIT Computer Account password.

Password Standard

RIT Computer Accounts

To change the password for your RIT Computer Account, visit http://start.rit.edu. If you've forgotten your password or it is not working, you'll need to contact the ITS HelpDesk.

Host Intrusion Prevention (RIT-owned/leased computers only)

Note: This requirement applies only to RIT-owned and leased computers. There is currently no requirement for personally-owned machines to run host intrusion prevention.

The following products have all been tested by the Information Security Office and approved for use on RIT-owned/leased computers.

Program Description
McAfee HIPS Desktop host intrusion prevention (Windows only) (licensed for RIT-owned or leased computers only). This is only available as a centrally-managed component of the McAfee Agent.
Comodo Internet Security Suite
Online Armor - Tall - Emu Firewall
Ossec Open source intrusion detection (multiple platforms)