In this short but important article, Dan provides us with 10 invaluable tips to secure our networks -- proving that you can't rely on antivirus software alone!In light of the ever-changing methods virus and worm writers use to propagate their malicious creations, security professionals can't rely on antivirus software alone. Although no company can ever be totally secure from future threats, there are practical, common-sense things that security administrators can do today that will go a long way toward lessening their organizations' susceptibility to viruses and worms.

The following is what professionals at the nation's largest antivirus and security firms recommend:

• Install patches for all known vulnerabilities.
• Ensure that end users haven't disabled antivirus software at the desktop.
• At the network administrator level, ensure that the gateway shuts off certain file types, such as .exe or .vbp files. Associate .ebs extensions to open the Windows Notepad editor rather than launch a script.
• Close any unused ports at the firewall.
• Install antivirus software at all entry points and ensure that it's kept up to date across the enterprise.
• Employ a Layer 7, full-inspection firewall. This may seem obvious, but many organizations don't do so.
• Lock down wireless networks. These offer perfect openings for virus and worm writers to spread their creations.
• Shut off unnecessary network services.
• Beware of open shares and Web traversal vulnerabilities. Use strong passwords.
• Know where mobile devices connect to your network. Even if they aren't targeted, they can carry infected files.