This experience was really scary and frustrating because my only defense was that the times the hacker was logging with my identity I was at my workplace away from my home computer which was the one connected to the spoofed Cable Modem but still not a strong enough defense.

After arguing with the Security Dept. and not getting anybody to sympathize with me, even though I was only getting a warning I decided I couldn’t use the high speed internet (the only choice in my area) and make myself a victim of the hacker so I wrote a letter detailing my ordeal to the Security Dept. naming the people I have talked to and detailing my story and how I was being forced out of their high speed internet service because of another person impersonating me thru my MAC and IP address. I closed my account and had to get back to dial up service.

After a year I got brave enough to reopen my account but this time I rented a modem from the ISP so I didn’t loose my money if somebody spoofed my equipment again. I have been almost three years and the experience hasn’t been repeated. Now I have installed a wireless network at my home in order to connect my daughter’s computer to the internet. I’ve been reading about how to secure it but my previous experience has got me a bit paranoid, specially with the higher vulnerability of Wireless networks.

What would be the best way to protect my MAC address against spoofing? If a person could do it when it was only one wired computer connected with a cable to the Cable Modem how easier it might be now that I have a wireless network? My brother in law says not to worry, that a bolt of lightning doesn’t falls twice on the same spot but I can’t help to feel very paranoid.

Thanks a Lot!

I am using VPN concentrator 3500. Please let me know how to limit access to certain users that have a VPN account on the VPN Concentrator on certain server when they VPN in.

Looking forward to hearing from you,

With thanks and regards,

Helal

I am interested in positioning myself into the role of InfoSec Admin at my compnay and was hoping that i could get some advice on how to sell the position to a reluctant management team. I know where most of our security issues currently are, but I need a more general description of the role and its value in order to justify dedicating a good percentage of my time to it.

Any advice and help would be appreciated.

I have been instructed by Blue Socket that the certificate used by them will not work through a NAT translation and that I should put this device on the outside of my ASA firewall. Apparently, when the Blue Socket creates the certificate it is using the internal IP address and the server (which is offsite on another network) is trying to compare the external IP address (NATed address) to the internal IP address and is failing to authenticate because they do not match.

I know I have not provided a great deal of specific details, but I was hoping someone has run into this before and can point me in the right direction.

Thanks,

J

I have small workgroup having 10 computers in my office. I do some personal work in office like using yahoo messenger, checking personal e-mails and some online banking site. But how does one of my senior knows it? I do everything lonely and securely so that nobody in the office knows it. But he knows everything about my sites I visit everyday. He has also cracked my yahoo password twice. He even knows it, if I open any site for a few seconds in a day.

My question is, is there any website or any program which can track the details of LAN computers?

I think he is using that to find out everything about my computer. I use win 2000 with service pack 4 and he uses win xp sp2. Windows defender is also installed in my computer.

Any help on this would be highly appreciated.

Thanks