    
  


         ,           ,        .   ,        ,        .  ,              .





 

    



         ,           ,        .   ,        ,        .  ,              .




 1.      


         .            .

     ,    -     , , - Apache, BIND  Sendmail.                   .      ,         ,   .     ,    .                     .       ,     [1 -             ,    ,   ,           .]  .

           ,  -          -        .

        ,           .    ,       ,        .     .              .

             ,   ,              .        [2 -   phishing ( . c fishing ,  .][3 -     ,            /.].

         ,                   .             .            .

,     ,  ,        ,    ,      .                /  . ,          .

 ,     ,         ,  ,    .         ,     /,       ( )  .

           ,          .  ,             .                 .




 2.    


       .                ,       Windows.          .            ,        ,            .

               .  ,      ,  ,   (firewall)      (IDS)    (IPS).        .       ,    /  [4 -             .],    ,        .

      .      ,               /    .

     ,       .          ,     ( ,  ,     )       .            .            .

        ,      ,      .               ,           .   ,          -,      .          ,            .

          .           ,       . ,        .    ,    ( ,  DLL  . .)   .            - .         ,         .

                 http://www.cbr.ru/mcirabis/po/recommend.pdf (http://www.cbr.ru/mcirabis/po/recommend.pdf) [1].




 3.       ,    


           ,    ,  ,    ,    . ,   ,            .      ,  ,     ,    ,     ,  () ,             .

 ,          - ,     , ,   ,       / -.

    :

The NIST National Checklist Program [2];

    [3];

-  [4];

  Microsoft SAM [5];

    [6].



               ,       ,       .

         (,          )    .  ,                  (,      1       ).      ,        .         .

        ,      ,         .

      :   ,     ,      ,       .  ,    ,                 ,    .

     .            ,    IT- .   ,  ,       .   /            .        ,  , ,     .

          .     :      ,     ,   ,      ,   ,        .         ,             .

 -     ,     ,       ,      .    -      ,    .       ,           .    -     ,   ,    .




 4.     ,  



 ,         .      ,     ,     .

      .      ,  ,  .            ,  ,      .      ,                    : , , .  ,   , ,       ,   ,         .

  ,      ,        .              .

         ,     ,     .  ,     ,    IBM PC,         BYOD[5 - BYOD  Bring Your Own Device,   (, ,   ),    ,    [7].].



         IT     ,    .



               .             .



   BIOS[6 - BIOS  Basic Input/Output System,     ,    -  IBM PC-  [8].]/UEFI[7 - UEFI  Unified Extensible Firmware Interface,       IBM PC- .     BIOS [9].]       /    .



  (BitLocker, TrueCrypt, SecretDisk[8 - BitLocker, TrueCrypt, SecretDisk 4        ,      Windows [10].])       ,               ,      .



       (ESMART Token, eToken PRO, JaCarta PKI[9 - , ESMART Token, eToken PRO, JaCarta PKI       ,     [11].])            .



                   , ,   .



 ,            ,      IT           .        ,      .        .  ,            .     .




 4.1.      


 /           . ,    -,      ,        .                        [10 - Build  ,         ,      .   Windows-     Drive Image, Acronis, Symantec  . [12].].       ,       .



  -   ,          (,   ,        . .).      ,        .     ,  , ,  ,                 .



    ,           .       ,   IT          , ,     .      (,      )       .    ,      ,       . .



               IT-    .       , -        .             .          .




 4.2.     


,   .          .                     .      .



    ,    ,   .         ,   .  ,          .



      .      .          .  ,       .



          1520 .   , . .    ,      .     ,         .



      .       .        .            .



     , .       ,   , , .       ,      .



                 .       .     ,       IT.            .



         ,         .       .        .           .



       .                  .    ,            .



                  ,          .        , ,   .

     ,        , , HP [13].



, ,    ,  . ,     ,         .   ,   ,      ,     ,        .         .




 4.3.   .


         .                   .

          ,  ,   VPN[11 - VPN  . Virtual Private Network,   .].      -    ,        .  ,    -                 -  .   VPN     ,    -. VPN         ,     .   ,  VPN-          ,   VPN-.



  VPN-: RusVPN[12 - RusVPN  https://rusvpn.com], TunnelBear[13 - TunnelBear  https://www.tunnelbear.com]  Hideman[14 - Hideman  https://www.hideman.net].       iOS, Android,      .   Chrome  Opera    ().  ,      ,      .    VPN-    Tor[15 - Tor  https://torproject.org]




  .


   .

   ,     (https://www.litres.ru/book/aleksandr-mihaylovich-samarin/bezopasnost-v-it-malogo-biznesa-24631495/)  .

      Visa, MasterCard, Maestro,    ,   ,     ,  PayPal, WebMoney, ., QIWI ,       .



notes








1


            ,    ,   ,           .




2


  phishing ( . c fishing ,  .




3


    ,            /.




4


            .




5


BYOD  Bring Your Own Device,   (, ,   ),    ,    [7].




6


BIOS  Basic Input/Output System,     ,    -  IBM PC-  [8].




7


UEFI  Unified Extensible Firmware Interface,       IBM PC- .     BIOS [9].




8


BitLocker, TrueCrypt, SecretDisk 4        ,      Windows [10].




9


, ESMART Token, eToken PRO, JaCarta PKI       ,     [11].




10


Build  ,         ,      .   Windows-     Drive Image, Acronis, Symantec  . [12].




11


VPN  . Virtual Private Network,   .




12


RusVPN  https://rusvpn.com




13


TunnelBear  https://www.tunnelbear.com




14


Hideman  https://www.hideman.net




15


Tor  https://torproject.org


