|
|
Written by Sherminator
|
|
Tuesday, 19 July 2005 |
It is a rare network that consists of machines running a single operating system. Most administrators find themselves working in mixed, or heterogeneous, computing environments with networks that include Windows, Mac OS, Linux, and other UNIX-based operating systems. Although this might seem like a giant headache, recent years have brought methods that make heterogeneous network administration less problematic than in the past.
 Be first to comment this article |  Add as favourites (97) | Read more...
|
|
Looking securely at TCP/IP |
|
|
|
|
Written by LE Webmaster
|
|
Wednesday, 26 January 2005 |
If you are reading this article, you should have a good understanding of how
computers work and a working knowledge of how to use Internet tools such as web
browsers, Telnet, and e-mail. In addition, you're probably already aware of the
need to protect computers on your network from exterior threats, while still
allowing your web and e-mail traffic to traverse your connection to the
Internet. You may install a firewall to secure your network, but to configure it
correctly you must know just how your computer connects to other computers and
downloads web pages, exchanges e-mail, or establishes a Telnet session. You'll
also need to know how to set firewall rules to differentiate the legitimate
network traffic of your network users from the illicit access of hackers and
other external threats. As TCP/IP is the mechanism by which your computer
communicates with the rest of the Internet, you will need to have more than a
passing familiarity with it. This article will give you a better idea of what is
going on behind the scenes. But why do you care how TCP/IP works if you aren't a
computer programmer or network engineer? You should care, because the hackers
attempting to get past your network security often are computer programmers or
network engineers (self-taught or otherwise), and in order to stop them you need
to understand and correct the weaknesses in TCP/IP or higher-level protocols
that they will attempt to exploit. In other words, know what your enemy knows
Be first to comment this article | Add as favourites (75) | Read more... |
|
|
Kerberos Authentication System |
|
|
|
|
Written by LE Webmaster
|
|
Wednesday, 26 January 2005 |
Kerberos is a private-key encryption based security system that provides mutual authentication between the users and the servers in an open network environment. Kerberos performs authentication as a trusted third party authentication service by using conventional cryptography i.e., shared secret key. It verifies that a user is legitimate when the user logs in, as well as every time the user requests a service. This system is designed to provide authentication for users who may be logging into the server from an unattended workstation. Such stations are regarded as suspect, or untrusted, because their physical security cannot be guaranteed. In order for the client and the server to communicate with each other, both of them have to first verify their identity with the Kerberos Authentication System. So, this system ensures enough security against spoofed attacks. In Kerberos Authentication System, in addition to the client and server there are two other important parts.
Be first to comment this article | Add as favourites (73) | Read more... |
|
|
Practical Guide for Using ipchains |
|
|
|
|
Written by LE Webmaster
|
|
Wednesday, 26 January 2005 |
|
Like you can see in the title, this will be a practical guide, so those ultra technical thoughts will be left aside. My goal on writing this is to give enough knowledge to an ordinary person who doesn't have a clue on how to setup ipchains to firewall it's box or LAN. Grab something to eat and something with caffeine and start going down the hill, uh..text. Let's start reading something useful shall we? Basics needed to mentioned
Be first to comment this article | Add as favourites (76) | Read more... |
|
|
Written by Linx
|
|
Wednesday, 26 January 2005 |
The first implementation for sharing information between global offices was the use of lease lines for maintaining a Wide Area Network (WAN). Leased lines (ranging from ISDN to OC12), provided a company with a way to expand its private network beyond its geographic area. The WAN had answered the needs of each company - secure, better performance, reliability etc., but maintaining a WAN with an OC3 connection can become quite expensive. The cost is a function of distance - as the distance increases, the cost rises and vise versa. Another solution was the famous intranet. Basically, if a company wanted to use an intranet to share information between global or local offices, it set up a password-protected (usually basic HTTP authentication) site the use by the employees. Once again, this method had answered all the needs of the company except security. Nowadays, more and more companies are creating their own virtual private network to accommodate their needs. VPN, or virtual private network, is an Internet service network that establishes a private connection over shared public facilities. VPN acts as a bridge between two or more Local Area Networks (LANs) across the Internet. VPN connections manage authentication between servers and clients using data encryption. VPNs were created, so an access is permitted to authorized users only. VPNs allow users to have access to the same network resources, addresses, and so forth as if they were connected locally. VPNs provide a secure service, because data is sent in an encrypted form between the client and the VPN server - it makes harder to capture sensitive information, but not impossible. Companies and other global services use one of the following VPN types:
Be first to comment this article | Add as favourites (91) | Read more... |
|
|
|
