Linux Network Security - Page 45

Harnessing Proxies for Enhanced Threat Intelligence: A Guide with Open Source Tools

Sensitive corporate data can be stolen at this very second; unfortunately, breaches can be invisible. As cyber threats multiply at an exponential rate, reacting to them like before no longer works. The answer lies in more innovative threat intelligen...
Nov 24, 2024
  0

Understanding HTTP Proxy Servers: A Vital Linux Network Security Tool

In this modern digital era, ensuring privacy and securi...
Nov 11, 2024
  0
4.Lock AbstractDigital Esm H115

Exploring Vulnerability Scanners: Tools & Strategies for a Secure Network

The world is becoming 'smarter' and increasingly digita...
Oct 23, 2024
  0
10.FingerPrint Locks Esm H115

Discover Network Security News

CSO survey: Companies lack plans in case of terrorist attacks

CSO survey: Companies lack plans in case of terrorist attacks

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

We have to ask: could this be related to the fact that the marginal risk posed by terrorism to companies in the US are small? Of course, terrorist attacks are spectacularly horrible events, but in terms of the sheer numbers, how large a risk is it compared to, say, internal sabatoge or even accidental fires? Overall, despite the screaming headline, this is a decent article... except that it basically ignores the obvious role of insurance in situations of low average risk but highly catistropihic possible outcomes. . . .

The need for Security Testing

The need for Security Testing

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Will help C-level executives understand what Security Testing is and how the Open Source Security Testing Methodology Manual (OSSTMM) can help raise the level of security within their organization. . . .

Securing the Wireless Enterprise

Securing the Wireless Enterprise

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

With recent technological advances, wireless devices are well positioned to add value as corporate productivity tools. Investments in this area have the potential to provide widespread improvements in mobile worker efficiency, business activity monitoring, exception handling, and organizational throughput. While the potential gains are impressive, many organizations are waiting to deploy this technology due to security concerns. Companies which wait may indeed feel secure. . . .

The DOMINO Theory: How to Thwart Wi-Fi Cheats

The DOMINO Theory: How to Thwart Wi-Fi Cheats

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

By altering the Multiple Access Control (MAC) protocol, one of the series of protocols that govern how bandwidth is distributed between multiple users of the same wi-fi access point by randomly assigning each hotspot user a rate for data transfer, it is possible to siphon off most or all of the bandwidth. . . .

Best Practices for Storage Security

Best Practices for Storage Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Survival in the modern business world requires strong backup and recovery plans. Companies can no longer sit back and wonder if something will happen, but must plan what to do when something does happen. Disaster recovery needs to be addressed immediately before disaster strikes. . . .

The benefits of outsourcing

The benefits of outsourcing

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

With a clear knowledge gap among many IT professionals and security specialists demanding salaries in excess of £50,000, many organisations since the recent downturn in the economy have looked to outsource all or part of their IT security. The main benefits being to deliver improved value across the board and importantly increase profits. With lower investments being made in staff and contracts agreed up front, this becomes entirely feasible. . . .

Multiple Security Roles With Unix/Linux

Multiple Security Roles With Unix/Linux

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

It is a rare organization that has the money to deploy best of breed or integrated commercial software for every security role. Whether your job is perimeter protection, incident response or email server administration, there may be an opportunity to use your favorite Unix system with some additional tools to get the job done faster and cheaper than what you do now. . . .

What Exactly Is Computer Forensics?

What Exactly Is Computer Forensics?

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Computer forensics involves the preservation, identification, extraction, documentation and interpretation of computer data. It is often more of an art than a science, but as in any discipline, computer forensic specialists follow clear, well-defined methodologies and procedures, and flexibility is expected and encouraged when encountering the unusual. It is unfortunate that computer forensics is sometimes misunderstood as being somehow different from other types of investigations. . . .

Data Security Debacle

Data Security Debacle

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Anything short of keeping a computer locked in a room with no network connection represents a security risk. From the moment the device is plugged in and connected to a network, you begin to trade security for functionality. It's always a balancing act, and one that requires you to determine how much functionality you are willing to sacrifice for increased security or vice versa. "Wireless, remote access and outsourcing solutions present many key barriers to security and, if not managed correctly, can expose a corporate network to unlawful intrusion. These threats, however, can be avoided if the proper precautions are taken," says Wreski. . . .

Six ways to justify security training

Six ways to justify security training

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A few days ago, a reader asked if I could help him justify the cost of security training that he and his fellow Unix system administrators felt they needed. I gave the reader a variety of ideas, one of which is sure to resonate with his manager. When making your pitch, you might want to try these reasons. . . .

Defense In Depth

Defense In Depth

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Perhaps the best way to visualize Defense in Depth as it relates to Information Security is to view the recent blockbuster movie: "The Two Towers". When the antagonists approached the perimeter defenses at Helm's Deep, they were first greeted by a volley of arrows. As they approached closer, rocks and boiling oil was thrown on their heads. Then there was the actual wall to contend with. As they brought up siege ladders, they were thrust back with long poles. As they jumped on the tower ramparts they were engaged hand to hand. But despite of the defenses due to the perceived value attached to defeating Rohan, evil nearly prevailed. As of late when one considers network and especially Internet security one might wonder if good will prevail in the real world. . . .

Key Considerations for Outsourcing Security

Key Considerations for Outsourcing Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

As last summer's virus attacks vividly demonstrated, companies of every size are finding themselves hard pressed to maintain around-the-clock network security. Arriving nearly simultaneously, the Blaster, Welchia, and Sobig.F worms invaded hundreds of thousands of corporate computers, resulting in billions of dollars of damages and lost productivity. In this new atmosphere, where crippling attacks arrive almost immediately after vulnerabilities are announced, how can enterprises maximize their IT investments and successfully manage security? They can tackle the job with their in-house IT staff, of course, or they can outsource the task to a managed security services provider (MSSP). This article will look at certain key issues for determining when outsourcing security is the best approach to take. . . .

Security in an ERP World

Security in an ERP World

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Every good hacker story ends with the line: "and then he's got root access to your network and can do whatever he wants." But the story really doesn't end there. This is just the beginning of the real damage that the hacker can inflict. . . .

Do We Suffer From Wi-Fi Security Paranoia?

Do We Suffer From Wi-Fi Security Paranoia?

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Be practical, not panicked. Much of the hacker hysteria is theoretical. As wireless networking settles into the routine of everyday computing, maybe the advice-givers will rely a bit less on trying to terrify the novices, and a bit more on specifics. . . .

Cisco to patent security fix

Cisco to patent security fix

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This concerns us all. Cisco is trying to patent the idea of demanding a confirmation-to-reset packet from an allegedly resetting host. This not only attempts to patent something that fails the 'non-obvious' test (really, is there a more obvious solution?), but it also opens up the door to a new "confirm reset? acknowledge" DoS attack. We all have a stake in making sure that basic TCP/IP security measures do not become proprietary. . . .

Conference Wireless LAN is Hacker Heaven

Conference Wireless LAN is Hacker Heaven

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

AirDefense is one of the more respected companies producing wireless LAN security software. AirDefense performed a research experiment at the recent Networld+Interop conference in Las Vegas. Their monitoring software scanned for vulnerabilities and network attacks during the conference producing some astonishing results. . . .

Safe and insecure

Safe and insecure

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"I opened up my wireless home network to the world, and I've never felt more comfortable." Thus starts a startlingly different perspective on privacy and security. . . .

No WLAN? You still need wireless security

No WLAN? You still need wireless security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A rogue access point is not authorized by an organization's IT department for operation.) Setting up an access point is child's play. In addition to plugging the access point into a power source, all one has to do is connect one end of an Ethernet cable to an available Ethernet port, connect the other end to an access point and voila! A new Wi-Fi WLAN is born. . . .

Students warn of hacking threat

Students warn of hacking threat

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Three Brisbane university students have discovered a major flaw in wireless network technology that means hackers can bring down critical infrastructure in as little as five seconds. . . .

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved