Software and Procedures Approved by University Technology Services
Approved Operating Systems (Subject to Change)
- Windows XP Professional Service Pack 2 with all critical updates. Windows XP Home and earlier version of Windows are no longer approved by UTS.
- Any version of Unix (including Mac OS X and Linux) that is actively maintained by a third party provided that security patches are kept up to date.
Approved Personal Firewalls (Subject to Change)
- For Windows, be sure to turn on Windows Firewall. Recommendations of other firewalls are not yet available.
- Firewalls for other operating systems have not been evaluated.
Approved Anti-virus Software (Subject to Change)
- For Windows, Antivirus for Windows or Sophos.
- For Macintosh, AntiVirus for Macintosh.
- Anti-virus software other operating systems has not been evaluated.
Approved Anti-spyware Software (Subject to Change)
- For windows, Spy Sweeper from Webroot (preferred), Ad-Aware from Lavasoft (free), or Spybot Search and Destroy from Safer Networking (free).
- Anti-spyware software other operating systems has not been evaluated.
Approved Data Protection Tools (Subject to Change)
Normally deleting files just marks space that the files were using as available. It does not actually remove data. Someone else who is assigned the available space could easily retrieve the data. Even after disks have been overwritten with new data, it may still be possible to determine what was there before by physically inspecting the magnetic surface with special tools.
There are four ways to prevent the inadvertent transfer of data that should be kept private when a computer is transferred to someone else or discarded:
- Only save private data on protected disk drives.
University Technology Services operates computers that provide disk drives for this purpose. This is the preferred method for dealing with reports generated by Banner.
- Encrypt all private data written to disks.
The free open source program TrueCrypt allows a section of a hard disk to be treated as special disk drive on which files are automatically encrypted before they are saved. A password of your choice is required to map the encrypted disk drive. Once the encrypted disk drive has been mapped, it behaves just like any other disk drive attached to your computer.
This method has the advantage of protecting private information while your computer is in use as well as after it is discarded. University Technology Services recommends that TrueCrypt be used to protect data on laptops and computers in insecure areas.
- "Scrub" disk areas that may have contained private data before transferring or discarding a computer.
The free open source program Eraser is recommended for erasing portions of a disk. It repeatedly overwrites deleted files and unused disk area with bit patterns selected to remove any residual data that could be picked up by physically inspecting the disk.
The free open source DBAN program can be used to overwrite all hard disks on a computer. This eliminates software as well as data. It should be used to completely clean hard disks before a computer is sold or discarded.
- Physically altering the media.
Physical destruction of the media is the only method other than encryption that is suitable for preventing access to private information stored on CDs and DVDs. It can also be used for hard disks and other magnetic media. Magnetic media can also be altered by re-aligning magnetic domains in the material with a process known as "degaussing."