Category Archives: Internet Security

Security issues relating to Internet access and Internet Presence

Design and Implement a Secure Firewall

Posted on April 4, 2011 by admin

Firewalls are one of the most important components of a good security system. A firewall is any computer you set up to evaluate the traffic coming and going through your Internet connection. Many self-proclaimed security experts fail to address the … Continue reading

Posted in Internet Security, Network Secuirty | Comments Off

The Need for a DMZ

Posted on April 4, 2011 by admin

A DMZ, or de-militarized zone, is a network that you can build that connects to the Internet. In this network are all the machines that must talk to the Internet but doesn’t contain any of the machines used by your … Continue reading

Posted in Internet Security, Network Secuirty | Comments Off

Weak External Routers

Posted on April 4, 2011 by admin

Weak external routers is another issue that requires attention when securing a local network. Fortunately, many of today’s routers come configured in somewhat secure configurations. Still, though, you wan to ensure that you aren’t leaving anything to chance by failing … Continue reading

Posted in Internet Security, Network Secuirty | Comments Off

Man in the Middle Attacks

Posted on March 29, 2011 by dgs

Man in the Middle Attacks by David Schlecht The Attack A Man-in-the-middle attack is a type of attack where you think you’re connected to your bank’s web site but are in fact connected to an attacker’s site while he’s mirroring … Continue reading

Posted in Computer Security, Internet Security | Tagged , , | 1 Comment

Domain Name Resolution Attacks

Posted on March 29, 2011 by dgs

Domain Name Resolution attacks by David Schlecht DNS Attacks Domain Name Resolution, often referred to as Domain Name Service (DNS) attacks are the preferred approach for Man-in-the-middle attacks. There are occasionally vulnerabilities reported in the major DNS service providers, such … Continue reading

Posted in Computer Security, Internet Security, Network Secuirty | Tagged , | 1 Comment

Web Application Vulnerabilities

Posted on January 15, 2011 by admin

Case Study Test Leftovers In this last case study, the client left his web server configured to display directories. The attacker got a listing of the directory in the CGI directory structure and started looking for easy targets. The most … Continue reading

Posted in Internet Security | Tagged , , | 1 Comment

Microsoft Web Server

Posted on January 15, 2011 by admin

Case Study Microsoft Web Server Like so many in the news, this client refused to update his Web Server software since “every time it would break more than it fixed.” As painful as it may be to update your MS … Continue reading

Posted in Internet Security | Tagged , , | 1 Comment

Session ID Hijacking

Posted on January 15, 2011 by admin

Case Study Session ID Hijacking I got a concerned call from a client upset by what his webmaster had reported as “strange” web activities by some of the customers. Their web application was reporting error messages coming from multiple users. … Continue reading

Posted in Internet Security, Network Secuirty | Tagged , | 1 Comment

Real Audio Server Compromised

Posted on January 15, 2011 by admin

Case Study Real Audio Server Compromised This client was running the Real Audio server and left the administration server running. The RealAudio system is administered through a dedicated port on the server. Once the attacker was able to guess the … Continue reading

Posted in Internet Security, Network Secuirty, Server Security | Tagged , | 1 Comment

Sendmail e-mail Server Commandeered

Posted on January 15, 2011 by admin

Case Study Sendmail e-mail Server Commandeered In this case a spammer had successfully exploited a vulnerability in the server code which allowed the sender to use the client’s machine for sending hundreds of thousands of spam. The tremendous load on … Continue reading

Posted in Internet Security, Network Secuirty, Server Security | Tagged , , | Comments Off