Linux Network Security - Page 70

Discover Network Security News

Network Security: Tuning /proc/sys/net/ipv4 Settings for Linux

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This email address is being protected from spambots. You need JavaScript enabled to view it. submitted a paper he wrote on how to use /proc to tune network security settings. "In additional to firewall rulesets, the /proc filesystem offers some significant enhancements to your network security settings. Unfortunately, most of us are unaware of anything beyond the vague rumors and advice we've heard about this beast. In this article, we'll review some of the basic essentials of the /proc/sys/net/ipv4 filesystem necessary to add to the overall network security of your Linux server. ". . .

Anthony Pell
Mar 04, 2002

Addressing Security Issues in Distributed Computing Projects

The projects' creators describe them as akin to digital ant colonies. They are networks composed of millions of computers working together across the Internet to solve some of the world's most intractable problems: analyzing possible cures for cancer or AIDS, scouting . . .

Anthony Pell
Feb 25, 2002

FBI Monitoring Network Threats: Denial of Service Risks Identified

The FBI is monitoring "potential vulnerabilities" in computer networks that could leave portions of the Internet open to disruption by hackers, the agency said on Tuesday. "We're aware of potential vulnerabilities... and to date there have been no confirmed exploitations of . . .

Anthony Pell
Feb 22, 2002

SFMP Security Advisory: Device Risks And Threat Concerns

It's been over a week since CERT released a seemingly endless list of devices and software products containing SNMP vulnerabilities discovered by Finnish University of Oulu researchers, and to date very little bad has happened, no doubt to the disappointment of . . .

Anthony Pell
Feb 22, 2002

Understanding Wireless Security and 802.11 Networking Standards

Joe Barr sent in a note about wireless security and things you should know before implementing a network. "The 802.11 wireless standard allows computers near each other to communicate using high bandwidth at an attractive price. Products based on the standard are very popular. Unfortunately, the networks these devices create are not secure. Ride along with our wardriving columnist. ". . .

Anthony Pell
Feb 19, 2002

802.1x Wi-Fi Weaknesses: Authentication Attacks Exposed

Proponents deny wireless networking spec is vulnerable to hijack, authentication attacks. But, A University of Maryland professor and his graduate student have apparently uncovered serious weaknesses in the next-generation Wireless Fidelity security protocol known as 802.1x. In a paper, "An Initial . . .

Anthony Pell
Feb 15, 2002

Key Steps For Disabling SNMP To Improve Network Security

Obviously, your quickest and surest fix is going to be disabling SNMP if you don't have to run it. Indeed, disabling unnecessary network services is a normal part of system hygeine, so this is a good opportunity to take the time . . .

Anthony Pell
Feb 14, 2002

SNMP Traffic Monitoring Shows No Major Changes in Scanning Activity

At this point, we do not see a significant increase in SNMP scanning traffic. None of the SNMP sources reported lately scanned more than one target, which usually indicates either a mistake (someone entered the wrong IP into their network admin . . .

Anthony Pell
Feb 14, 2002

CERT Advisory on SNMP Security Risks: DoS And Unauthorized Access

Numerous vulnerabilities have been reported in multiple vendors' SNMP implementations. These vulnerabilities may allow unauthorized privileged access, denial-of-service attacks, or cause unstable behavior. If your site uses SNMP in any capacity, the CERT/CC encourages you to read this advisory and follow the advice provided in the Solution section below. . . .

Anthony Pell
Feb 12, 2002

SNMP Issues Impact Over 200 Network Device Manufacturers

Software bugs in a fundamental language of the Internet could leave routers, switches and even PCs open to attack, an Internet security watchdog said Tuesday. The problems affect the Simple Network Management Protocol, or SNMP, a basic language used to talk to routers, switches, printers and other managed network devices to allow network engineers to glean status and performance information.. . .

Anthony Pell
Feb 12, 2002

Global Crossing Data Breach: 8000 Employees Impacted By Theft

A disgruntled former IT employee at telecommunications firm Global Crossing Holdings Ltd. has been posting the names, Social Security numbers and birth dates of company employees on his Web site. The postings have appeared periodically over the past five months. . . .

Anthony Pell
Feb 12, 2002

Wireless Security Enhancement: New IEEE 802.11i Draft Addresses Flaws

A fix for security flaws in the 802.11a and 802.11b wireless networking standards has moved closer to reality with the release of a draft for a specification that addresses the problem. A draft of IEEE's 802.11i spec to beef up . . .

Anthony Pell
Feb 05, 2002

Navigating Wireless Challenges: Secure WLAN And LAN Operations

The unprecedented openness of internal systems and networks is one of todays greatest security challenges. Illena Armstrong reviews the complex issues of telecommuting, especially in view of the huge growth in wireless technologies.. . .

Anthony Pell
Jan 31, 2002

Understanding Security Needs In Network Defense Strategy

We all know that security is inversely proportional to convenience. And, we know from experience that security is secondary to users' ability to get to the information and services they need. Users' apathy and ignorance is the reason why we spend . . .

Anthony Pell
Jan 31, 2002

Linux Firewall Breach: Immediate Action Required Against DoS Threat

... it's that darn hacker. He's gotten through my Linux firewall and is going for root on our departmental server. If that system gets hacked, my butt is in a sling. That's where our chairman keeps his research results." The two admins looked at each other. They both knew there was only one thing to do: pull the plug.. . .

Anthony Pell
Jan 26, 2002

Major Sites Fail to Address Cross-Site Scripting Threats

The failure of major Web sites to fix an old but serious security flaw has prompted the Computer Emergency Response Team to issue a new warning to Internet users: Self-defense may be your only protection against privacy- and security-stealing cross-site script . . .

Anthony Pell
Jan 24, 2002

Enterasys Networks Wireless Education Sector Audit Uncovers Gaps

Enterasys Networks has rolled out the biggest wireless network in the education sector but admitted it has yet to perform a thorough security audit. Ninestiles School in Birmingham is using 38 Enterasys Roamabout R2 access points to connect its 1,400 . . .

Anthony Pell
Jan 23, 2002

Cloud Nine ISP Shutdown Due To Critical Denial Of Service Attack

Update: Somehow we missed the registration required at silicon.com. TheReg has a better story. Basingstoke-based ISP Cloud Nine has closed its operation this morning after being hit by a crippling security attack. The denial of service attack was so bad the ISP says it will have to rebuild its network.. . .

Anthony Pell
Jan 22, 2002

Discover Qualys Solutions for Efficient RST.b Trojan Detection & Removal

Utilities for detecting and removing a new Trojan horse that targets Linux systems have been posted on the Internet for free download. The tools, created by managed security provider Qualys, battle a new variant of the Remote Shell Trojan, dubbed "RST.b," . . .

Anthony Pell
Jan 13, 2002

Minimize Smurf Attack Threats: Mitigation and Best Practices

Smurf attacks can be devastating, both to the victim network and to the network(s) used to amplify the attack. An Internet Control Message Protocol (ICMP) Smurf attack is a brute-force attack on the direct broadcast feature that is built in to . . .

Anthony Pell
Jan 10, 2002

Community Poll

More Polls