VPNSCAN: Extending the Audit and Compliance Perimeter
Vandenbrink provides a tool called VPNSCAN for auditing remote IP addresses for compliance with an existing remote access policy.
The Best Guides for Managing Information Security
Thompson reviews several freely available documents that can help with managing IT security.
Automating Signature Updates for Cisco IPS/IDS Sensors
Bernard developed a set of Perl scripts to automate the process of signature update discovery and retrieval. In this article, she describes the details of these processes, highlighting remote management of a Cisco IPS device via SSH.
RAM Nagios vs. HD Nagios: Performance Evaluation
Krein provides Nagios performance information as a follow-up to his article that appeared in the January issue of Sys Admin.
Nagios and Fruity: What Is Their Monitoring Potential for Your Network?
Krein describes an implementation of Nagios and Fruity and discusses how these monitoring tools perform on both a dedicated server and in a virtual environment.
Combating Link Spam
In the first article in this series, I discussed techniques and strategies to combat inappropriate content in Web-based message formats (see March, 2006 Sys Admin). As companies continue to leverage the Internet to open new avenues of communication with customers, they make their Web sites vulnerable to inappropriate content. Abusive behavior is one concern. The pseudo-anonymous nature of the Internet often serves to break obnoxious caterpillars out of their cocoons. Many quiet wallflowers have found themselves transformed into loud bullies in Web-based message forums. Fortunately, this type of behavior is easy to stop.
Using DNSBLs to Monitor Network Security
Many email administrators are turning to DNSBLs -- DNS Block Lists -- as useful weapons in the arsenal against spam. There are DNSBLs covering many aspects of the security spectrum related to spam. A brief sample of the overall focus of the most common lists include:
Open HTTP proxies
Open SMTP proxies
Zombies or trojaned machines
Miscellaneous open proxies
Hosts that send spam to spamtrap addresses
Security Best Practices for Console Servers: An Interface Approach
Console servers have become key components of managing large centralized data centers as well as remote sites and shops that require quick administrative access to systems during outages.
System Security in SolarisTM 10: Privileges and Zones in Perspective -- Part 1
In Unix distributions through the ages, security has been based on two entities: IDs and file permissions. Every file has a UID (user id) and a GID (group id), which determine ownership of the file; and permissions, which determine the rights a user, a group, and the rest of the world will have. Whether a particular user is allowed to read, write, or execute a file depends upon the IDs and permissions that are stored in the file's inode.
Sendmail's New GreetPause Feature
In most cases, spammers are motivated to send their unsolicited emails as rapidly as possible. Slamming is a technique where the spammer simply fires all of the SMTP commands necessary to transmit an email message to another mail server without waiting for the normal SMTP responses from the remote machine. Typically, the remote mail server will end up accepting the message despite the fact that the slammer is actually disobeying the SMTP behavior mandated by various Internet RFCs.
-More-
|
|
 |
|
Find white papers, case studies, Webcasts and analyst reports on everything from design through development to testing and implementation at Sys Admin's Research Papers and Reports.
|
|
