Hi I am being handed over responsibility of a e-commerce project which has in the past been run, maintained and implemented by an external contractor, who has kindly left no documentation whatsoever. He took it with him.
Without wanting to divuldge too much details, the basic configuration is as follows. Two ISP feeds using diverse routing, feeding into two VRRP firewalls, two HA IIS webservers, with two packet filtering routers, into two db servers into two firewalls into two websphere applications servers which feed off of two as400s. Two being the operative as they should all be configured for failover. My mission should I choose to accept it is to keep all these systems secure, using ISS Real Secure. As there are internet facing hosts, the routers, the firewalls, and sort of the iis servers, I think I should start by trying to find holes in them, and ensuring they are up to the correct patch level. I use various scanners, languard, cybercop, iss internet scanner, but was wondering if anyone can recommend any more? I don't expect anyone to have the same environment, but can anyone recommend a good place to start once external issues have been addressed, any comments on Real Secure, any other advice appreciated. Thanks in advance JM --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.330 / Virus Database: 184 - Release Date: 28/02/2002
