December 1, 2005A friend asked me to audit his firewall at work.
Honestly, I have no clue even though googled for many days.
In this context, I am planning to audit the firewall as follows: Any
comments/suggestions are welcome.
1) The placement or location of the firewall
2) Vulnerability scanning the firewall from outside, e.g., Internet
3) The rulebase or security policy [...]
Posted in Q & A 
No Comments »
December 1, 2005Dear All,
Is there any tool/method that allow me to detect the IPs of users who are using IM (Instant Messaging i.e. MSN messenger, Yahoo messenger, ICQ, etc) and P2P (Peer-2-Peer programs such Kazaa) in our network?
Thanks
* Try any Forward Proxy (you can try squid!!!).With that you can put
access controls based on the user network,user,ports to [...]
Posted in Q & A No Comments »
December 1, 2005It has been identified a vulnerability in the Cisco IOS Web Server. An attacker can inject
arbitrary code in some of the dynamically generated web pages. To succesfully exploit the vulnerability the attacker only needs to know the IP of the Cisco. THERE’S NO NEED TO HAVE ACCESS TO THE WEB SERVER! Once the code has [...]
Posted in Q & A No Comments »
December 1, 2005hello,
I have a “Working” network who is totally disconnected (physically)
from the Internet.
people do the “search” on the “Internet ” computers and then go on the
“work” computers for analyse and the store the data.
The Question is: I would need a anti virus on the “work” computers and
I should be able to update the virus database daily [...]
Posted in Q & A No Comments »
December 1, 2005Hi all,
Recently my DNS servers get jammed with bogus queries. The attacks come in
series, taking a few minutes each, sometimes from different IPs at the
same time, at least twice a day.
23:05:40.241026 IP 204.92.73.10.40760 > xx.xx.xx.xx.53: 38545+ [1au] ANY ANY? e.mpisi.com. (40)
23:05:41.600902 IP 204.92.73.10.16561 > xx.xx.xx.xx.53: 22242+ [1au] ANY ANY? e.mpisi.com. (40)
23:05:42.091743 IP 204.92.73.10.37547 [...]
Posted in Q & A No Comments »
November 25, 2005Hi group!
Question on file encryption. We want to add a layer to our file security.
Our hard disks are encrypted and we would like to add single file
encryption.
We are using Utimaco Private Crypto for single file but we need to re-save
the file everytime we make a change.
What is the best product that would silently encrypt and [...]
Posted in Q & A No Comments »
Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers, Recent readers,