A good biometric product that I have used is
ActivCard! It allows you to lockdown your desktop and
can store static password and Certificates.
--- Tim Vidas <[EMAIL PROTECTED]> wrote:
> From: "Tim Vidas" <[EMAIL PROTECTED]>
> To: "'ABRAHAM AJI'" <[EMAIL PROTECTED]>
> CC: <[EMAIL PROTECTED]>
> S
I'm not trying to create a separate thread. I'm looking for
a paper (preferably a presentation) on how to install and
implement) on PGP using a Windows (9X/NT/2000/XP)
environment using a variety of e-mail clients, (i.e. Eudora,
Outlook, Netscape [esp], etc.).
If anyone has any ideas or
Hello Dan,
The architecture you set up will depend on the sensitivity of the data, the
risk value involved and the money your company has to spend, as I am sure
you already know.
The need for a firewall is not negated by the need for a two-way connection.
I have experience with PIX so my example
Small device, as in physically small or lightweight?
Cheep What's Cheep, do you mean free?
Anyway here are some links.
http://www.ipcop.org
http://www.smoothwall.org
http://www.gnatbox.com They do a light version that's PUFFware and a new
"RoBox" device.
http://www.gta.com/ Info about the GT
Hows 350.00 for a 3 port (nic) 300 Mhz system running from compact flash or
ide drive thats about 3.5x5" in size with firewall/vpn/ids ?? See
www.microbsd.net
On Saturday 18 May 2002 06:32 pm, Mike Fox wrote:
> Hi,
>
> Somone knows a small device that has a firewall and dns
> server on it and r
normal stuff: http://www.iana.org/assignments/port-numbers
trojans: http://www.sans.org/newlook/resources/IDFAQ/oddports.htm
"Chisholm
/usr/include/netinet/in.h has the list
-avati
On Mon, 20 May 2002, Chisholm Wildermuth wrote:
> Ok, now my turn to tap the vast and un-endless knowledge contained by these
> wonderfully bright admins who subscribe to this list :-)
>
> Does anyone know where I can find an IP protocol list? I m
Hi Ben,
I've written an entire Mail Proxing/Relaying document a while back. You
can find it at http://www.net-gurus.net, with some other documents that
you may find usefull.
Regards,
Nir Simionovich (AKA: Lord Stroud)
On Thu, 16 May 2002, Ben Zino wrote:
> Does someone know a nice smtp pro
If you are using Linux, you have 2 options, load the ftp proxy modules
or, use passive file transfers.
Brian
Fabiano Pacheco wrote:
>Hi All,
>
>Does anybody knows why when I try to FTP anywere, loggin on my FW, I saw a packet
>coming from port 20 (remote) to a randon port on my FW
>
>Bu
This is called active FTP. The server connects back to you
when transferring data. For a full description google for
"active versus passive ftp" you should get some relevant links
pretty quickly.
Michael
-Original Message-
From: Fabiano Pacheco [mailto:[EMAIL PROTECTED]]
Sent: Tuesday
In-Reply-To: <[EMAIL PROTECTED]>
Assuming that your SQL Server is in your local Network)
You can shift the sql server to the DMZ and small changes
in the policy will do.
DMZ Policy
Any request from webserver to sql server on (x) port allow
Any Any Drop
You can also allow one of the p
Hi,
Somone knows an appliance for SOHO that has at least an
integrated Firewall and DNS server and that is really
cheap? I don't want to go for a linux box prefer instead to
go for an appliance.
Thx.
Mike
_
Envoyez des messages musica
Be careful though; you can't generalize all biometrics just because of flaws found in
fingerprint scanning. It would be substantially more difficult to fake an iris or
retina-based biometric device vs. a fingerprint. Fingerprints are much easier to come
by than a retinal image. Even if you c
I wonder if you could register OE as a service ?
- Original Message -
From: "Bradley W. Footit" <[EMAIL PROTECTED]>
To: "John D from Best Price Cruises" <[EMAIL PROTECTED]>;
"Security-Basics Mailing List" <[EMAIL PROTECTED]>
Sent: Saturday, May 18, 2002 12:23 AM
Subject: RE: Strange si
Hey Fabiano,
What you are describing is called "active ftp".
The ftp is a TCP-only protocol and uses a data port(20) and a command
or control port (21).
It depends on 2 modes, active and passive ftp, and is a very unusual
protocol, because the data port is not always 20.
For you to understand t
Good all
Taking a stab in the dark here as i am not a exchange person but would it
not be a good idea to set this person up with a web based e-mail account
like they do for hot mail. I receive about 120 mssgs day here and it does
not hold up my system vewing all the mail. In this way the user
An increasing number of sites are actually starting an IS security
program/department/whatever (yay!).
In my opinion, to get the most "bang for your buck" (largest security
yield for minimum cost) as well as providing the foundation that almost
everything later will be built on is a review of the
http://www.lanauditor.com/
FREE 25 NODE
19MB.
- Original Message -
From: "PEPE TECATE" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, May 17, 2002 11:25 PM
Subject: AUDITING LICENSES
> Hello all, do you know some auditing sw tool, free if possible? I am
> making an evaluat
Hi Mike. I know you've stated you don't want to go for a Linux box, but I'm
going to read more in that and guess you don't want to install and manage a
Linux box? If you want something off the shelf and ready to go than my
advise below is off mark.
However if you have a low spec PC and don't want
If you are running a Microsoft Exchange Server, I'm sure you have the option
of storing all emails remotely, on the Exchange Server, rather than
transferring the emails to the client box.
Even with 500 emails in the morning, it should load up instantly, as all you
are transferring is the subject
Hi Ben,
>> (...) and accordign to the MDaemon support, there is now way to hide or
modify the mail server identification header (...)
Do you mean that there is "now" a way or do you mean there is "no" way?
I am sure that there was "no" way to hide/modify the mail server name and
version informat
This is definitely your Yahoo! Messenger. Based on the information
cs12.msg.sc5.yahoo.com:smtp
I would suggest your YM app was checking your Yahoo account for mail
since there is an SMTP connection going on.
Cheers,
Tremaine
On Thu, 2002-05-16 at 10:40, Alex Tarata wrote:
> Hey everyone ... I
On my cisco 3600 router. How can I disable telnet into
serial 0/0. I do need to leave telnet open on
FastEth0/0 but I don't want anyone to be able to
telnet in from the outside.
Any Ideas?
Thanks
__
Do You Yahoo!?
LAUNCH - Your Yahoo! Music Experie
On Mon, 2002-05-20 at 10:51, Chisholm Wildermuth wrote:
> Does anyone know where I can find an IP protocol list? I mean..like this
> "Protocol 47" we seem to love and cherish. I read on another list ICMP is
> Protocol 1 ? Where's the other 46? What do they do..etc..etc.
http://www.iana.org
You are using "active" ftp. To solve this, set your ftp client to use
"passive" ftp. For more information and a better explanation than I will
be able to dream up:
http://slacksite.com/other/ftp.html
-Original Message-
From: Fabiano Pacheco [mailto:[EMAIL PROTECTED]]
S
Two things: a) Don't reply to the list with this email, since it's a bit
long, and I'd hate to clog everyone's inbox with it. b) I don't pretend
to know what it all means other than what's on the list - protocol names
and numbers
In an IP packet/datagram, one of the header fields is the "pr
I use AuditWizard in the corporate environment ...
http://www.auditwizard.com/pages/prod_aw.html
If you're just needing a solution for a small number of computers, I
remember seeing a web-based app on TechTV last night ... can't remember the
site though. Perhaps it'll ring a bell for someone els
Fabiano Pacheco wrote:
> Hi All,
Moinsen
> Does anybody knows why when I try to FTP anywere, loggin on my FW, I
> saw a packet coming from port 20 (remote) to a randon port on my FW..
Yes. It is the Data port of FTP.
> But there is anything very strange occurring.I can authenticate on
> F
On Mon, May 20, 2002 at 04:52:53PM -0300, Fabiano Pacheco wrote:
> Hi All,
> ?
> Does anybody knows why when I try to FTP anywere, loggin on my FW, I saw a packet
>coming from port 20 (remote) to a randon port on my FW
> ?
> But there is anything very strange occurring.I can authenticate
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
You might want to look into HushMail as an option for your email encryption needs.
regards,
Init 6
- - Original Message -
From: "TERRA209792" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, May 17, 2002 12:18 AM
> Hi people,
Hi Pepe,
M$ has some free tools for licensing, like License Tracker (Access DB), etc.
http://www.microsoft.com/piracy/samguide/default.asp
Fred Hoot
-Original Message-
From: PEPE TECATE [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 17, 2002 7:25 PM
To: [EMAIL PROTECTED]
Subject: AUDITIN
Would it be possible to give me some ideas on testing to see if GRE protocol
is getting from A to B?
Thanks for all your help.
Mark
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review,
"Jay D. Dyson" wrote:
> On Fri, 17 May 2002, TERRA209792 wrote:
> > What is the best free software
> > for encrypting e-mail? Any sugestion?
> With the demise of NAI PGP,
> your options are somewhat limited.
Well, the history of all of this
and the outcome of it all is
kind of interesting.
Anyone know of a good 3rd party viewer to view CheckPoint FW-1 logs? I
have a chron job every night to tar, then FTP my logs to a logging server.
I want the capability to have a viewer to view the logs without using CPU
and memory from the FW itself. Any thoughts?
http://www.iana.org/assignments/protocol-numbers
Port numbers are on:
http://www.iana.org/assignments/port-numbers
Alan Spicer ([EMAIL PROTECTED])
- Original Message -
From: "Chisholm Wildermuth" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, May 20, 2002 1:51 PM
Subject: IP
The 3550-24, with the Enhanced Multilayer Image (EMI), is the replacement. It will do
security and just about any other switch feature you could want on a small switch.
Full blown router support is built in, and the MLS technology switches packets pretty
fast compared to a software-based rout
I would not call that a problem. By the nature of a Switch it's a layer
2 device. There needs to exist somewhere in the network a layer 3
Router to handle the communication of packets between VLANS/subnets.
While you can save some money by going with options like the 3com
hardware mentioned, I w
AFAIK, it also works with OE. not sure if older versions are supported
though
From: "Rohit Nagarajan" <[EMAIL PROTECTED]>
> --- TERRA209792 <[EMAIL PROTECTED]> wrote:
> > Hi people,
> >
> > What is the best free software for encrypting
> > e-mail?
> > Any sugestion?
> >
> > It must be compatible
Dear All,
I use openBSD 3.0, now I want to set my computer can't be ping or scan from
another computer / network , how can i do this ?
Another my question is about improving security on OpenBSD, i'm already
install patches, closed some ports, how make my OpenBSD more secure, i just
need for ss
Actually, when I had Windows at home I used AtGuard until they sold to Symantec, then
I got Norton Personal Firewall mainly to ensure upward compatibility. NPF seems to
have the same features as AtGuard with the exception of the ad blocker, and offers
some small improvements over AtGuard's lat
Hi Nico,
If you are looking for program deditated to provide a Secure File
Replication function, here are some that I have in my mind:
- rsync or scp over SSH. If you need a commercial SSH, just check
http://www.ssh.com.
- WANSync File: http://www.xosoft.com/products/wansync_file.htm
- SafeKit:
Thanks to all who responded. I appreciate all the input. Given the
responses (and from the people I've talked to) it's evident that most shops
expect their sysadmins to stay on top of all patches while the security
folks play more of an advisory role and a technical go to when needed. The
benef
I would personally recommend against the free version of ZoneAlarm. In
my not so humble opinion, you get what you pay for ;) As I work in an
IRT, I can tell you that in my experience the free version may not be
what you are looking for.
Additionally, don't be lulled into a false sense of securi
if you dont require really realtime you can always use rsync, however it is
possible to tunnel the linux network block device over ssh(more specificly
enbd), and you could software raid 1 it to a local volume. however my
experiences with it have shown it to be slow under some circumstances. bot
44 matches
Mail list logo