Dealing with threats by EUN Partnership aisbl

Emiliana, Italy

emiliana_rufo — 2017-01-09 17:05:29 UTC

I will recommend to change computers. Having Apple-Macintosh computers and laptops will probably avoid problems with malware and viruses.

Fernando Coelho, Portugal

fernando_coelho — 2017-01-09 18:04:42 UTC

I am from a school (agrupamento) in Portugal, so, we have the pretty same architecture implemented, but i think we improved a lot, introducing virtualization and automation. We invest a lot on a data center because we have to do a lot of backup of all the information at school.
We were granted the silver seal award of the ESAfety Label Program.

Tatyana Vidolova, Bulgaria

2017-01-09 18:38:59 UTC

In my school there administrator who takes care of data security.
Students have access to the server. The programs are installed by the administrator. Dangerous sites are prohibited. Students do not use flash drives.

Ken W; Northants, UK

kitkatninja78 — 2017-01-09 18:55:40 UTC

Dealing with threats should not only come from a technical point of view. User training is key when it comes to security.

Lidia, Romania

lidiaristea2004 — 2017-01-10 13:32:20 UTC

In the school where I teach I don't have a network administrator , only a collaborator who comes when I call to fix any computer, but in general the safety and security of data , I have took care of installing the OS and programs utility applications, creating backup,
For backup I use "Acronis True Image", very useful ,because I don't have to much time.

Victoria. Spain

2017-01-10 14:59:34 UTC

I do not know a lot about this topic because we have people who are in charge of the technical part. We are blocked if we want to access to dangerous web.

Pietro, Italy

pgiando — 2017-01-10 14:59:42 UTC

As I've already said in the previous Padlet, in our school I decided to use a free basic business antivirus that is very effective.
Even if the solution is freemium, it has the basic features useful to manage all the machines in a centralized way, such as notifications about blocked threats, remote update of software and signatures as well as PC restart and sending specific messages

Patrizia, Italy

patriziae6 — 2017-01-10 16:13:45 UTC

I think I can suggest to other ICT administrators to protect their schools’ ICT infrastructure from attacks by

using the following security measures:

computerized authentication systems by using credentials;
authorization systems, which allow to differentiate access privileges at the same computer system by multiple parties by means of profiling;
anti-intrusion and anti-virus solutions to be updated every six months;
weekly backup of the school answering machine data;
use of removable media for quick and efficient retrieval of information.

In addition to these security measures, it is essential to train teachers on the usefulness and the correct use of security measures.

Marilena, Italy

marilena_baci33 — 2017-01-10 17:08:12 UTC

In my opinion the first thing to do to prevent the school ICT infrastructure from attacks is using a firewall and a good antivirus, then using different network servers, one for staff and the other for students, least but not last requiring a good training for all users, and a protocol to follow in order to avoid problems.

Bijan, Bangladesh

bijanc — 2017-01-10 18:03:27 UTC

I like the way to deal with the threat. It is Obviously, we have to use strong security system, / firewall for protecting our school network system. besides this, we have to introduce some do and don't rule to using computer, different storage drive and using internet for all staffs. As well as it seems to me, we have to educate all the students, parents and school authority about the safe use of computer.

knockans — 2017-01-10 18:11:01 UTC

Thomas IE.
3 Defenses...
Anti -Virus.
Firewall.
Licensed SoftWare.

Lucia, Italy

2017-01-10 20:43:14 UTC

Both students and teachers in my school cannot install anything on PCs (not even the useful Chrome apps/plugins that I love), but pendrives normally come and go with no supervision. Now I wonder whether this is safe?
Many thanks to Patrizia, below, who wrote an interesting and detailed post. I think I will copy some of her suggestions onto my Tackk.

Silvana, Italy

silvana_romio — 2017-01-10 20:49:53 UTC

The main actions applied in our school are: administration server is different from didactic one; firewall updated regularly that filters some websites (e.g., FB cannot be accessed through the school net); no access from external machines; students have access to machines in the computer labs but always under supervision of teachers and ICT assistant who checks the status of all machines once a week; good antivirus software (regularly updated)

Ana, Spain

2017-01-10 22:32:53 UTC

Be careful with Mac Computers. Recently, a colleague has suffered a physing at home, with her Amazon account, using a Mac.
I recommend strongly using Linux, never mind if you use Linux Mint, Ubuntu or Lubuntu if you have quite old computers to optimize. Forget about antiviruses and firewalls.
Separate networks is a good tip I would give my colleagues.
Using AP with integrated software is quite useful to monitor your wifi, and check who is accessing. We use Ubiquity LR with a good result and low cost.
Train to tthe end users about the importance of logging out of sessions in public computers, and the importance of using private browsing if they are going to enter passwords or sensitive data.

Emma Giurlani Italy

egiurlani — 2017-01-11 08:30:56 UTC

As I said previously I’m not the ICT administrator in my school but I can say how we protect sensible data and how we try to avoid malware intrusions into the system and on the other end to raise awareness in families and among students about the need of a safe and responsible approach to the net. As suggested by Patrizia we have differentiated access privileges. Students have limited privileges. They cannot access the net with their own devices using the school net system: they must use their own internet account Students can access internet through school account only when using school devices and under the control of teachers, for example through the info lab or mobile labs. Everyone has to go through a computerized authentication system by using credentials. We(as teacher) have the format Family name.first name (as username ) and a complex password made by numbers and letters However no one is allowed to install programs on school devices or access external discs because this could damage our computers by viruses. Only the responsible school administrator for ICT issues is allowed to do that. We have differentiated domains to access the server (for instance the administration so that users cannot enter other servers and the information is separated)Parents and students can access the electronic logbook the teachers compile every day on a safe internet site called scuola viva, so they can directly control what have been done every day and access materials and the evaluations and assessment in each subject . Parents can also arrange a meeting with some teacher in order to speak about some issues or problems . Through our eTwinning projects we help students to become more aware of the internet dangers and gain more effective consciousness of e-safety. Of course our school has its own safe internet web site whose public part everyone can access to. On this web site there are in fact some public sections and in addiction to that there are some others that can be accessed by students , parents and teachers by using personalized passwords. Students have created an online school magazine where they collaborate with school mates and expert teachers, discussing also issues related to the safe and responsible approach to the net. We have also a safe google classroom environment with separate authentication access ,where teacher and students interact. Beside that there is a anti virus and intrusion system which is regularly updated, as well the backup of data in the system.

Koldo, Spain

koldo — 2017-01-11 11:30:46 UTC

First of all I think that is very important to have an agreement in the school about the information system policies and to have them in a formal document, not only in the ICT administrator’s mind. As well as a good firewall, updated operating systems and an updated antiviru, to train teachers and students it’s a basic strategy.

Tim Gayton - Sweden

2017-01-11 15:24:43 UTC

Free Avast Antivirus.
Most devices are not centrally controlled.
Fairly anarchic.
Some risk but a trust system in practice has been less bother than attempting a super secure system with low competence staff.

Mirela Epureanu, Romania

2017-01-11 15:38:12 UTC

I am not an ICT administrator, but I believe that strong antiviruses and a good firewall frequently updated should be used in order to protect the school's ICT infrastructure from attacks. Moreover, every school should have very clear system policies so that all the important information is protected and they should also be careful that both teachers and students don't use computers in a bad way.

José María Díaz, Spain

josemaria_diazfuentes — 2017-01-11 18:24:31 UTC

In our computer room all computers are frozen - a program called deep frezze -. This ensures that each time they are run they are intact.
And, of course, two different networks, one for students and visitors and one for staff.

Sean, Ireland

2017-01-11 18:43:56 UTC

Most important I believe is to have a good AV in place and ensure all updates are applied regularly. Also, if applicable, install a firewall. The network could be divided into subnets to hinder the spread of any threats. Strict guidelines regarding the use of mobile devices and the installation of programs should also be in place.

Jarle Osmund Vågen

jarleosmund — 2017-01-11 19:27:22 UTC

Let a professional set up the firewall and all servers. Have a simple/clear user security policy.

Thomas, Austria

2017-01-12 06:27:00 UTC

We are using linux - and have "self-healing" workstations. so everytime the computer is rebooted or a student logs out it is reset. we are using overlayfs for that. in addition we do have a policy, which informs the students on what is allowed and what is not.

Jelena

jelenapro — 2017-01-12 10:02:15 UTC

In Lithuania we have a website for students, parents and teachers about the safer internet http://www.draugiskasinternetas.lt/en

SLavica

teacher_slavica — 2017-01-12 11:42:29 UTC

Regarding the aspect of e-safety, with OS Linux students have limited privileges, for example they cannot install programes on computers which will damage computers by threads. Some sites as facebook are blocked. Moreover,
it is evident that students have many opportunities using computers and internet but frequently are unaware of online dangers. Thus, a need for a protocol with strategies to follow becomes apparent: updating the antivirus, scanning files before downloading them, using USB portable devices, etc. Then, more workshops on how to cope and deal with e-safety is what our students and parents miss. Many things to be taken into consideration obviously.

Lynda, Ireland

lyndamck — 2017-01-12 17:19:47 UTC

User training is paramount - educate and inform your students on good practices using computers, usb (or other external devices) , virus scanning, sharing devices and of course acceptable behaviour on-line.

Organise an information evening for parents of new students (we do this every year) and inform them on good practice regarding using computers, devices etc and on the dangers and pitfalls of being on-line.

Forewarned is forearmed

We have also had a guest speaker in to talk to our TY students about what can happen to things they post on-line, predators and cyber bulling. The same speaker does an evening session with parents.

Having a user validation system in place is also a good practice and user privileges to limit student activity on school computers. Online activity is limited by and large by the PDST.

TY students run a Safer Internet Campaign - where they peer inform younger students about how to stay save online - produce booklets, stickers and an information noticeboard.

M. Glòria Solà - Catalunya

msola127 — 2017-01-12 18:37:40 UTC

In our school we have a firewall and antivirus. A network for Internet access by teachers and one for students. We publish a Tuitter and Facebook links to information documents on security. Every year Catalan police talks to students about network security. However problems are often

Ispir Iuliana-Florentina, Romania

ispiriuliana — 2017-01-13 07:41:03 UTC

To see the activities they carry children in kindergarten, we created a closed group on Facebook, where parents and teachers can discuss.

..

cristinapeicuti — 2017-01-13 12:31:35 UTC

..

cristinapeicuti — 2017-01-13 12:31:37 UTC

...

Alessandro / Italy

2017-01-13 15:15:29 UTC

In my opinion to protect own computers it will be need a good Antivirus, Firewall active and training for all so everybody knows to pay attention when surf on Internet

Voichita from Romania

2017-01-13 15:36:32 UTC

We have blocked if we are in danger.

Mazzotta Liberato, Italy

2017-01-13 18:23:28 UTC

First of all, I think it is mandatory for a school to create an infrastructure network in which there is a complete separation between the administrative and educative field. The presence of constantly updated firewalls that allow incoming and outgoing traffic filtering, will also be compulsory. This filtering can be implemented through different mechanisms based on the mac, DNS filtering or other services. Managing and updating firewall is challenging and should entrust it to an outside company. It is important that the teachers and students access the computer using personal credentials with different levels of privileges. A good practice is to freeze PC using special software so after the shutdown will be deleted all the data stored during the session, including any malware.

Clara Elizabeth Báez - Italy

2017-01-13 21:31:03 UTC

I think that we need not only to provide with good Antivirus software, but also to train students, teachers and parents and to let know parents and students the risk of internet. I think that is very important to organize the Internet Safety Day not only the 7th of February but many times in the year and to speak with the students.

Anamaria, Romania

anamaria_go — 2017-01-14 04:51:53 UTC

Is important to have antivirus, firewall, licenced softwares and to train all about the risks.

Alexandros, Greece

2017-01-14 07:50:48 UTC

Use Linux instead of Windows. It's much safer and it's free!
Second train the students to identify and report possible threats/attacks. I really liked that students in Tito's school reported the Facebook incident. That's really important

Esther, Spain

2017-01-14 10:08:40 UTC

Many of the advice has already been given, but I think they are important.

A good antivirus: many of the viruses enter through the USB keys, it must be detect them without problems

We only install licensed or free programs.

Students are not allowed to download stuff

The access points have integrated programs that allow monitoring the status and access to the network, if a misuse of the network is detected, the device can be locked.

And most important of all, we must educate students and teachers about the correct use of the Internet to prevent potential problems.

Pepe López, España

njlopezg — 2017-01-14 11:50:08 UTC

I think is important to have a good antivirus, a good firewall and original and licenced software. Is important too, trainning teachers and students against threats. On the other hand, in my school the computers in the computering class don`t allow students to install their own software. In fact, they must safe their works before turning off the computers. When they turn off, folders, files, documents, software... install by students disappear.

Maruta, Latvia

2017-01-14 14:57:01 UTC

Students in our school have strictly limited privileges - they cannot install programms on computers. Some sites are blocked.

We have to use strong security system, firewall for protecting our school network system, backups are used. Students have access to the server – only particularly their disk. All the programs are installed by the administrator.

Thanassis, Greece

afloros — 2017-01-14 14:57:47 UTC

1. Use antivirus
2. Give appropriate rights to users
3. Use tools to monitor and manage the whole network

Luís Figueiredo, Portugal

2017-01-14 18:07:16 UTC

Do automatic backups of the programs in use in the shool, and other important files.

Annamaria, Italy

annamariavesnaver — 2017-01-14 20:22:59 UTC

Getting for granted that we should use a good antivirus I think we should learn better how to use programmas in general

Kolbrún Iceland

2017-01-14 20:51:01 UTC

I think it is most important that we inform our users about the danger and loss we get if someone brakes into our network. Then the most important thing is to:

Give information/rules to the users how to behave
Use firewall and antivirus software
Take backup often (we do twice a day)
Block some undesirable sites (we can´t though block all :-( )
Give every user a certain login to visit our network
Inform parents/teachers/students about how to behave on the internet
Don't give the users of the school's computers permission to install a software.

Stefanos, Greece

smerliao — 2017-01-15 09:25:29 UTC

Backup
User rights
VM software(* Reboot Restore Rx * Drive Vaccine * Steadier State * Toolwiz Time Freeze.)
Monitor

Maria Panou/ Kalymnos, Greece

maria_themelis — 2017-01-15 15:54:03 UTC

I definitely agree with Stefanos and Thanasis too.

Antonietta Bianca Ferrara, Italy

kyozon70 — 2017-01-15 16:05:16 UTC

Very good job in the video. In my school we have participated in a national program Generazioni Connesse to make lesson plans for students about e-safety. The topic has been part of various projects and also twining activities. More work is to be done though.

Antonietta Amore, Italy

aamore — 2017-01-15 17:32:23 UTC

I agree that the school network should have different domains connected to the same network server;
students and teachers should be placed in different Lans so that they have different permissions on network.
Everyone should have his own username and password.
In order to prevent from the danger (loss of sensitive data) teachers and students should be advised about the risks of possible attacks from the net.

Ada Italy

2017-01-15 18:50:45 UTC

I agree with most of the things said by others. Teachers and students should be more aware about the risks of possible attacks from the net and in fact in November there was a meeting with an expert to talk about these problems. Anyway I think that using cloud system can be a way to partly solve the risks of using usb flash pens from students at school. I have the same register as Emma, it allows to share files to students and it is quite reliable.

Inita, Latvia

initalasmane64 — 2017-01-15 18:54:00 UTC

I am only a teacher and can not give advice to others. I am learning about ICT safety from speakers and others here. There are much information that I haven't heard before.

Conchi Fernández (Sapan)

cfdezmunin — 2017-01-15 20:18:46 UTC

My recommendation would be to use a firewall to block unauthorized access and install on all computers an antivirus that is updated periodically.
Another good option is to freeze the equipment that students use so they can not interfere with them.

Astrid / Italy

AstridVE — 2017-01-16 09:49:00 UTC

First simple step Start to partecipate to the E_SAFETY DAY
Discuss with your team and try to find out TOGETHER what could be the best way to promote E-Safety, does there acrually are problems, how can we prevent and at the same time increase critical thinking skills.
The second step could be test your school on the
E-Safety Label site
Third Step create an action plan with includes teacher/ student training , posters with information in the classes where people are connected, an info-corn about E-Safety on the school website
Fourth Step Check if your plan is working?

Donatella, Italy

dony_col — 2017-01-16 14:25:14 UTC

I would give these tips to other ICT administrators to protect their school's ICT infrastructure from attacks:
- firewall
- different network servers
- daily backup
- good training for all users
- a strict protocol

Elisabetta, Italy

elisabetta_siboni — 2017-01-16 15:00:03 UTC

In my school if students try to access a web site we consider inappropriate, they are blocked and can be identified since they all have access to the network with their own usernames and passwords. The same is for the staff. Both teachers and students have limited privileges unlike the administrators. Fortunately we didn't have any problems so far.

Milan, CZ

mtal — 2017-01-16 16:50:26 UTC

Unauthorized use of website we monitor through Squid proxy installed on Debian Linux.
Bigger threats comes from social networks - they are user-related and aren't blockable by simple software tools.

Anna C. Italy

ciaramellaanna — 2017-01-16 19:48:06 UTC

Many years ago, unfortunately, it happened that some adult had opened a porn link, and when one of the many students he tried to open Internet has found a more than inadequate site, since that time has been installed a lock for access to sites little adequate, particularly for primary school children.
And now if the students of my school seek to access the an inappropriate web site, they can not.

Dimitris - Peiraias / Greece

dagelidakis — 2017-01-17 17:11:45 UTC

· Use updated enterprise antivirus

· Use firewall tools

· Take backup

· Use certain user policies

· Define rules for students/teachers

Petra, Slovenia

petra_dermota1 — 2017-01-17 19:37:34 UTC

The main keys to protect ICT infrastructure from attacks are password protected network divided into several V-lans, (such as: computer lab, administrative, pedagogical and guests), turned on firewall and good antivirus program on every computer. The antivirus must be up to date. It's also good to have admin protection on every computer. The users can´t download software to the school's computers, unless the administrator password is entered.

Cork, Ireland

2017-01-17 23:37:34 UTC

By using Virtual Dektop Infrastructure running the best anti-virus, net nanny system possible, you can protect all users from a central system.
VDI means that even if a virtual computer managed to get a virus, the system would be wiped clean when the user logs on the next time as a new 'virtual' machine has been created.

Claudia, Ecuador

2017-01-19 13:33:44 UTC

- Maintain software updated.
- Train staff to keep their USBs clean.
- Train the community to use secure passwords.
- Work with cloud documents as possible.

Arūnas, Lithuania

arunas_pranaitis — 2017-01-19 13:35:16 UTC

In our school we use updated antivirus, firewall tools, use user policies and define rules for susers

Francesco, Italy

babelemultilab — 2017-01-19 16:51:19 UTC

I have a doubt about the use of one single password which is common to lots of users: in the case of troubles we would not able to identify the name of the user responsible for the intrusion or for the robbery of sensible data or for installation of suspicious malware.

Francesca

francesca_lombardi1973 — 2017-01-20 19:29:07 UTC

The administrators can do some things for instance: maintain software updated, use firewall tools, maintain different network services, give appropriate rules to students and teachers, protect from virus.

Fran, Spain

francasalf — 2017-01-20 20:42:29 UTC

Well, I'm doing late this activity, so the most important tips are allready in my partners answers: software updated, computers with automatic freeze system, antiviruses and firewalls, separated networks and drives, different account users, use of non-root accounts, hard passwords,... and strictly rules of use.
I just want to mention another important thing: free software (SO, apps, minor software,...), is a key aspect.

Stratos, Greece

2017-01-21 17:16:41 UTC

This is very similar to our infrastructure and way of administration, as we applied policies to users as we have them in separate user groups.

2017-01-21 22:07:29 UTC

Fabio, Italy

2017-01-21 22:08:54 UTC

My tips:
- check periodically that firewall, antivirus etc are running
- install and maintain a proxy server
- take backups periodically
- implement user policies if possible
- use server controlled authentication and avoid using peer to peer network
- use virtual pcs when possible
- use cloud services to share docs instead of pen drives
- train users

Concetta, Italy

concetta_drago — 2017-01-22 15:09:56 UTC

I think that in order to protect our schools' ICT we should use firewall tools, give appropriate rules to students and teachers, protect from virus, use cloud services to share document and finally it is important to train teachers, students and parents.

Mara

maraguanella — 2017-01-22 17:12:10 UTC

I teach at primary school and I think it's very important to have an updated antivirus, to train users to navigate in safe sites, and be careful when they download files.

Elvia, Italy

2017-01-22 19:28:06 UTC

We have a firewall and a subscription for an antivirus, after that, we are providing for a MdM server to managing the students' apps

Grazia, Italy

2017-01-23 14:17:18 UTC

Last year a teacher surfing in the web visited a site with WORMS that linked to porno site when other went to internet.
This appened during a lesson in the classroom and many parents were worried for the event.
Now we install to our service some filters to resolve this problem

Monica, Italy

MonicaP — 2017-01-27 19:44:10 UTC

We have a firewall, a black-list but not a good antivirus software (it is a free version). We take periodical backups. The students are not allowed to install programs.

Giedrius, Lithuania

2017-01-27 21:03:15 UTC

I would advise to keep the antivirus database updated, block possibly malicious sites, train staff to be more careful when downloading or using USB drives.

Ánxela, Spain

cabeiroweb — 2017-01-28 16:30:08 UTC

Security passes through the step of anti-virus, firewall, and the use of linux in the equipment proposed for the students of 5th and 6th

Caterina Italy

caterina_magrini — 2017-01-29 10:19:22 UTC

In my school we have firewall and antivirus software. Than we download software from only from official

sites and we we try to use rarely USB drives, but our cloud.

Jeane de Fatima, Rio de Janeiro - Brasil

jeanedefatima — 2017-01-29 15:52:48 UTC

The need to stay safe, made us program our computers to perform automatically at 8am a scan to identify some cokies or sites that may have malwere

Marina C, Romania

marinaciubotaru — 2017-02-06 20:16:01 UTC

I use the laptop that I use at school bought antivirus license in their own name.