1
OWA using SelfSSL and Certificate Services removal
Hey there… I am curretly running Exchange 2003 on W2k3 member server. I installed Certificate Services and produced my own certificate and all works well with OWA. I recently found out that SelfSSL is available but not quite as robust, which would probably be good. I removed Cert services and was getting ready to install [...]
Answer Question
| August 5, 2005 12:41 PM
Application security, Certificates, Compliance, configuration, CRM, Database, Desktop security, Disaster Recovery, Encryption, Exchange, Exchange 2003, Instant Messaging, Internet Security Systems, Managed security services, Outlook, Outlook Mobile Access, patching, PEN testing, Platform Security, Policies, Risk management, Secure Coding, Security, Security management, Security products, Security Program Management, vulnerability management
Hey there… I am curretly running Exchange 2003 on W2k3 member server. I installed Certificate Services and produced my own certificate and all works well with OWA. I recently found out that SelfSSL is available but not quite as robust, which would probably be good. I removed Cert services and was getting ready to install [...]
Answer Question
| August 5, 2005 12:41 PM
Application security, Certificates, Compliance, configuration, CRM, Database, Desktop security, Disaster Recovery, Encryption, Exchange, Exchange 2003, Instant Messaging, Internet Security Systems, Managed security services, Outlook, Outlook Mobile Access, patching, PEN testing, Platform Security, Policies, Risk management, Secure Coding, Security, Security management, Security products, Security Program Management, vulnerability management
IM Blocking and URL Filtering
We have Pix515E which is gateway to Internet. We also got IWSS Proxy(Trend Micro) along with URL filtering module. Domain users get directed to IWSS proxy (GPO settings) and restrictions about URL filterings can be imposed as per company’s policy. Those users who are not on the domain, they can not get GPO settings and [...]
Answer Question
| July 7, 2005 3:18 AM
Administration, Application security, Architecture/Design, Availability, Benchmarking, Biometrics, Cisco, Database, DataCenter, Digital certificates, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Host-based IDS/IPS, Identity & Access Management, IDS/IPS management, Incident response, Installation, Instant Messaging, Internet Security Systems, Intrusion management, Managed security services, Microsoft Windows, Network monitoring, Network security, Network testing, Networking, Protocol analysis, provisioning, Routers, Secure Coding, Security, Security tokens, Service and support, Service contracts, Service evaluation, Single sign-on, TCP, VPN, Vulnerability Assessment & Audit, Wireless, Yahoo
We have Pix515E which is gateway to Internet. We also got IWSS Proxy(Trend Micro) along with URL filtering module. Domain users get directed to IWSS proxy (GPO settings) and restrictions about URL filterings can be imposed as per company’s policy. Those users who are not on the domain, they can not get GPO settings and [...]
Answer Question
| July 7, 2005 3:18 AM
Administration, Application security, Architecture/Design, Availability, Benchmarking, Biometrics, Cisco, Database, DataCenter, Digital certificates, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Host-based IDS/IPS, Identity & Access Management, IDS/IPS management, Incident response, Installation, Instant Messaging, Internet Security Systems, Intrusion management, Managed security services, Microsoft Windows, Network monitoring, Network security, Network testing, Networking, Protocol analysis, provisioning, Routers, Secure Coding, Security, Security tokens, Service and support, Service contracts, Service evaluation, Single sign-on, TCP, VPN, Vulnerability Assessment & Audit, Wireless, Yahoo
Data vs. perimeter vs. network security
A short time ago, author Wes Noonan wrote some tips for SearchWindowsSecurity.com about <a href=http://searchwindowssecurity.techtarget.com/originalContent/0,289142,sid45_gci1007026,00.html>deperimeterization</a>. He explained how security is always pitted against business needs, and perimeters have become porous because businesses require traffic from SMTP, HTTP or VPNs to pass through the firewall. He then offered techniques for keeping data safe in spite of [...]
Answer Question
| May 4, 2005 4:36 PM
Administration, Application security, Architecture/Design, backdoors, Biometrics, Compliance, configuration, CRM, Current threats, Database, Desktop vs network-based firewalls, Digital certificates, Disaster Recovery, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Hacking, Host-based IDS/IPS, human factors, Identity & Access Management, IDS vs IPS, IDS/IPS management, Incident response, Installation, Instant Messaging, Intrusion management, Managed security services, Management, Network security, Network-based IDS/IPS, Networking, Outsourcing/Managed services, patching, PEN testing, Platform Security, Policies, Product evaluation, provisioning, Risk management, Secure Coding, Security, Security management, Security products, Security Program Management, Security tokens, Service and support, Signature updating/Management, Single sign-on, Software vs appliance, Spyware, Trojans, Viruses, VPN, Vulnerability Assessment & Audit, vulnerability management, Wireless, worms
A short time ago, author Wes Noonan wrote some tips for SearchWindowsSecurity.com about <a href=http://searchwindowssecurity.techtarget.com/originalContent/0,289142,sid45_gci1007026,00.html>deperimeterization</a>. He explained how security is always pitted against business needs, and perimeters have become porous because businesses require traffic from SMTP, HTTP or VPNs to pass through the firewall. He then offered techniques for keeping data safe in spite of [...]
Answer Question
| May 4, 2005 4:36 PM
Administration, Application security, Architecture/Design, backdoors, Biometrics, Compliance, configuration, CRM, Current threats, Database, Desktop vs network-based firewalls, Digital certificates, Disaster Recovery, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Hacking, Host-based IDS/IPS, human factors, Identity & Access Management, IDS vs IPS, IDS/IPS management, Incident response, Installation, Instant Messaging, Intrusion management, Managed security services, Management, Network security, Network-based IDS/IPS, Networking, Outsourcing/Managed services, patching, PEN testing, Platform Security, Policies, Product evaluation, provisioning, Risk management, Secure Coding, Security, Security management, Security products, Security Program Management, Security tokens, Service and support, Signature updating/Management, Single sign-on, Software vs appliance, Spyware, Trojans, Viruses, VPN, Vulnerability Assessment & Audit, vulnerability management, Wireless, worms
iSeries IP adress restruction
Hi, is there a way to restrict access to iSeries by IP address? I need to configure something on iSeries to prevent one PC to access on our iSeries and think that best way is to restrict IP address of this PC. Please help.
Answer Question
| June 2, 2005 4:19 AM
AS/400, DataCenter, Intrusion management, Managed security services, Security, Tech support
Hi, is there a way to restrict access to iSeries by IP address? I need to configure something on iSeries to prevent one PC to access on our iSeries and think that best way is to restrict IP address of this PC. Please help.
Answer Question
| June 2, 2005 4:19 AM
AS/400, DataCenter, Intrusion management, Managed security services, Security, Tech support
Is Windows security an afterthought?
As the editor of SearchWindowsSecurity.com, I often speak with users about their Windows security responsibilities. One senior systems analyst in particular sent me an interesting note recently… To give you some background, he’s in charge of configuring and administering desktop systems (primarily Win2000 and XP)for a large company, and he developed many of the security [...]
Answer Question
| April 21, 2005 3:00 PM
Administration, Application security, Architecture/Design, backdoors, Biometrics, Compliance, configuration, CRM, Current threats, Database, Digital certificates, Disaster Recovery, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, IDS/IPS management, Incident response, Installation, Instant Messaging, Intrusion management, Managed security services, Management, Network security, patching, PEN testing, Platform Security, Policies, Product evaluation, Product/Service evaluation, provisioning, Remote users, Risk management, Secure Coding, Security, Security management, Security products, Security Program Management, Security tokens, Service and support, Signature updating/Management, Single sign-on, Spam, Spyware, Trojans, Viruses, VPN, Vulnerability Assessment & Audit, vulnerability management, Wireless, worms
As the editor of SearchWindowsSecurity.com, I often speak with users about their Windows security responsibilities. One senior systems analyst in particular sent me an interesting note recently… To give you some background, he’s in charge of configuring and administering desktop systems (primarily Win2000 and XP)for a large company, and he developed many of the security [...]
Answer Question
| April 21, 2005 3:00 PM
Administration, Application security, Architecture/Design, backdoors, Biometrics, Compliance, configuration, CRM, Current threats, Database, Digital certificates, Disaster Recovery, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, IDS/IPS management, Incident response, Installation, Instant Messaging, Intrusion management, Managed security services, Management, Network security, patching, PEN testing, Platform Security, Policies, Product evaluation, Product/Service evaluation, provisioning, Remote users, Risk management, Secure Coding, Security, Security management, Security products, Security Program Management, Security tokens, Service and support, Signature updating/Management, Single sign-on, Spam, Spyware, Trojans, Viruses, VPN, Vulnerability Assessment & Audit, vulnerability management, Wireless, worms
Internet Explorer vs. Firefox
Hello, I’m the Assistant Editor on SearchWindowsSecurity.com. I’m looking to start a discussion about what browser people are using and why. Also, is anyone considering switching from IE to Firefox, or are your plans to stay with IE? Here’s some food for thought… As of Feb. 2005, an estimated 35 million users had switched from [...]
Answer Question
| June 29, 2012 2:14 PM
Addamark, Administration, Aladdin Knowledge Systems, Application security, AppSec, Architecture/Design, ArcSight, Bindview, Biometrics, Caymas, CipherTrust, Compliance, Computer Associates, configuration, Courion, CRM, Cylant, Database, DataCenter, Desktop management applications, Desktops, Digital certificates, Disaster Recovery, Documentation, e-Security, Emerging technologies, Encryption, Enterasys Networks, Entrust, Exchange, Features/Functionality, GuardedNet, Hardware, Host-based IDS/IPS, IBM/Tivoli, Identity & Access Management, IDS vs IPS, IDS/IPS management, Imprivata, Installation, Instant Messaging, Intellitactics, Internet Security Systems, Intrusion management, Juniper Networks, KavaDo, M-Tech, Magnifire, Managed security services, Management, Maxware, Microsoft Windows, Netegrity, NetForensics, NetIQ, Network Associates, Network-based IDS/IPS, NFR Security, NGS Software, Novell, Ounce Labs, Outsourcing, Outsourcing/Managed services, Passlogix, patching, PEN testing, Platform Security, Policies, Product evaluation, Product/Service evaluation, provisioning, Risk management, RSA Security, Sana Security, Secure Coding, Security, Security management, Security Program Management, Security tokens, Servers, Service and support, Service contracts, Service evaluation, Single sign-on, Snort/Sourcefire, SPI Dynamics, StillSecure, Tech support, Teros, Thor, Tripwire, TruSecure, Vendors, VeriSign, VPN, VSecure, Vulnerability Assessment & Audit, vulnerability management, Watchfire, Waveset/Sun Micro, Windows, Windows XP
Hello, I’m the Assistant Editor on SearchWindowsSecurity.com. I’m looking to start a discussion about what browser people are using and why. Also, is anyone considering switching from IE to Firefox, or are your plans to stay with IE? Here’s some food for thought… As of Feb. 2005, an estimated 35 million users had switched from [...]
Answer Question
| June 29, 2012 2:14 PM
Addamark, Administration, Aladdin Knowledge Systems, Application security, AppSec, Architecture/Design, ArcSight, Bindview, Biometrics, Caymas, CipherTrust, Compliance, Computer Associates, configuration, Courion, CRM, Cylant, Database, DataCenter, Desktop management applications, Desktops, Digital certificates, Disaster Recovery, Documentation, e-Security, Emerging technologies, Encryption, Enterasys Networks, Entrust, Exchange, Features/Functionality, GuardedNet, Hardware, Host-based IDS/IPS, IBM/Tivoli, Identity & Access Management, IDS vs IPS, IDS/IPS management, Imprivata, Installation, Instant Messaging, Intellitactics, Internet Security Systems, Intrusion management, Juniper Networks, KavaDo, M-Tech, Magnifire, Managed security services, Management, Maxware, Microsoft Windows, Netegrity, NetForensics, NetIQ, Network Associates, Network-based IDS/IPS, NFR Security, NGS Software, Novell, Ounce Labs, Outsourcing, Outsourcing/Managed services, Passlogix, patching, PEN testing, Platform Security, Policies, Product evaluation, Product/Service evaluation, provisioning, Risk management, RSA Security, Sana Security, Secure Coding, Security, Security management, Security Program Management, Security tokens, Servers, Service and support, Service contracts, Service evaluation, Single sign-on, Snort/Sourcefire, SPI Dynamics, StillSecure, Tech support, Teros, Thor, Tripwire, TruSecure, Vendors, VeriSign, VPN, VSecure, Vulnerability Assessment & Audit, vulnerability management, Watchfire, Waveset/Sun Micro, Windows, Windows XP
I’ve been hacked — I think….
I’m an IT administrator with a little over 500 end users, running Windows 2000 and XP. One of our users is experiencing a problem with her Internet connection suddenly dropping for no apparent reason. When she restarts her computer, everything works fine for awhile, but then the connection drops again. The funny thing is, she’s [...]
Answer Question
| August 2, 2009 9:52 AM
Administration, Application security, Architecture/Design, Bigfix, Biometrics, Cisco, Citadel, Compliance, Computer Associates, configuration, Configuresoft, CRM, Cylant, Database, DataCenter, Desktop antivirus, Desktop management applications, Digital certificates, Disaster Recovery, Documentation, Ecora, Encryption, Enterasys Networks, Exchange, Features/Functionality, Firewalls, Forensics, GFI, Hewlett-Packard, Host-based IDS/IPS, Identity & Access Management, IDS vs IPS, IDS/IPS management, Incident response, Installation, Instant Messaging, Internet Security Systems, Intrusion management, Juniper Networks, Managed security services, Management, Microsoft Windows, Network Associates, Network Elements, Network security, Network-based IDS/IPS, NFR Security, Outsourcing, Outsourcing/Managed services, patching, Patchlink, PEN testing, Platform Security, Policies, Product evaluation, Product/Service evaluation, provisioning, Redundancy, Risk management, Sana Security, Secure Coding, Security, Security Program Management, Security tokens, Service and support, Service contracts, Service evaluation, Shavlink Technologies, Single sign-on, Snort/Sourcefire, St. Bernard Software, StillSecure, Symantec, Tripwire, Vendors, VPN, VSecure, Vulnerability Assessment & Audit, vulnerability management, Wireless
I’m an IT administrator with a little over 500 end users, running Windows 2000 and XP. One of our users is experiencing a problem with her Internet connection suddenly dropping for no apparent reason. When she restarts her computer, everything works fine for awhile, but then the connection drops again. The funny thing is, she’s [...]
Answer Question
| August 2, 2009 9:52 AM
Administration, Application security, Architecture/Design, Bigfix, Biometrics, Cisco, Citadel, Compliance, Computer Associates, configuration, Configuresoft, CRM, Cylant, Database, DataCenter, Desktop antivirus, Desktop management applications, Digital certificates, Disaster Recovery, Documentation, Ecora, Encryption, Enterasys Networks, Exchange, Features/Functionality, Firewalls, Forensics, GFI, Hewlett-Packard, Host-based IDS/IPS, Identity & Access Management, IDS vs IPS, IDS/IPS management, Incident response, Installation, Instant Messaging, Internet Security Systems, Intrusion management, Juniper Networks, Managed security services, Management, Microsoft Windows, Network Associates, Network Elements, Network security, Network-based IDS/IPS, NFR Security, Outsourcing, Outsourcing/Managed services, patching, Patchlink, PEN testing, Platform Security, Policies, Product evaluation, Product/Service evaluation, provisioning, Redundancy, Risk management, Sana Security, Secure Coding, Security, Security Program Management, Security tokens, Service and support, Service contracts, Service evaluation, Shavlink Technologies, Single sign-on, Snort/Sourcefire, St. Bernard Software, StillSecure, Symantec, Tripwire, Vendors, VPN, VSecure, Vulnerability Assessment & Audit, vulnerability management, Wireless
How did I get a virus on my computer?
Do you hear that question or something similar too often? We’re taking an informal survery on SearchSecurity.com to find out what the most common security-related user questions are. Results will be compiled into a question and answer tip that you will be able to post or handout to your users. What are the top 5 [...]
Answer Question
| April 15, 2005 6:07 PM
Administration, Application security, Architecture/Design, backdoors, Biometrics, Compliance, configuration, CRM, Current threats, Database, DataCenter, Digital certificates, Disaster Recovery, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, IDS/IPS management, Incident response, Installation, Instant Messaging, Intrusion management, Managed security services, Management, Network security, patching, PEN testing, Platform Security, Policies, provisioning, Risk management, Secure Coding, Security, Security Program Management, Security tokens, Service and support, Service contracts, Service evaluation, Signature updating/Management, Single sign-on, Spyware, Trojans, Viruses, VPN, Vulnerability Assessment & Audit, vulnerability management, Wireless, worms
Do you hear that question or something similar too often? We’re taking an informal survery on SearchSecurity.com to find out what the most common security-related user questions are. Results will be compiled into a question and answer tip that you will be able to post or handout to your users. What are the top 5 [...]
Answer Question
| April 15, 2005 6:07 PM
Administration, Application security, Architecture/Design, backdoors, Biometrics, Compliance, configuration, CRM, Current threats, Database, DataCenter, Digital certificates, Disaster Recovery, Documentation, Encryption, Exchange, Features/Functionality, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, IDS/IPS management, Incident response, Installation, Instant Messaging, Intrusion management, Managed security services, Management, Network security, patching, PEN testing, Platform Security, Policies, provisioning, Risk management, Secure Coding, Security, Security Program Management, Security tokens, Service and support, Service contracts, Service evaluation, Signature updating/Management, Single sign-on, Spyware, Trojans, Viruses, VPN, Vulnerability Assessment & Audit, vulnerability management, Wireless, worms
Use of TFTP
Why is the use of TFTP discouraged on the network from a security perspective?
Answer Question
| April 4, 2005 7:13 AM
Firewalls, Forensics, Incident response, Intrusion management, Managed security services, Network security, VPN, Wireless
Why is the use of TFTP discouraged on the network from a security perspective?
Answer Question
| April 4, 2005 7:13 AM
Firewalls, Forensics, Incident response, Intrusion management, Managed security services, Network security, VPN, Wireless
MS Office Outlook 2003 Address book
I use MS office outlook 2003 but this is not adding the e-mail addresses to the address book/contacts automatically when I reply to someone. This feature is available in Outlook express but I didn’t find this feature in MSOO 2003. Is there any simple way I can add e-mail ids to contacts /address book without [...]
Answer Question
| February 18, 2005 5:32 AM
Compliance, configuration, CRM, DataCenter, DataManagement, Desktop management applications, Desktops, DHCP, Disaster Recovery, DNS, E-business, E-mail applications, Exchange, Help Desk, HP OpenMail, IMAP4, Intel, Intrusion management, IT architecture, LANDesk, Managed security services, Microsoft Windows, Netscape Mail, Networking, Networking Products, Networking services, Operating system platforms, Outlook, Outlook Mobile Access, patching, PEN testing, Platform Security, Policies, POP3, Risk management, Security, Security management, Security products, Security Program Management, Sendmail, SMTP, System utilities, Systems management software, Tech support, Third-party services, Vendor support, Vulnerability Assessment & Audit, vulnerability management, Wireless
I use MS office outlook 2003 but this is not adding the e-mail addresses to the address book/contacts automatically when I reply to someone. This feature is available in Outlook express but I didn’t find this feature in MSOO 2003. Is there any simple way I can add e-mail ids to contacts /address book without [...]
Answer Question
| February 18, 2005 5:32 AM
Compliance, configuration, CRM, DataCenter, DataManagement, Desktop management applications, Desktops, DHCP, Disaster Recovery, DNS, E-business, E-mail applications, Exchange, Help Desk, HP OpenMail, IMAP4, Intel, Intrusion management, IT architecture, LANDesk, Managed security services, Microsoft Windows, Netscape Mail, Networking, Networking Products, Networking services, Operating system platforms, Outlook, Outlook Mobile Access, patching, PEN testing, Platform Security, Policies, POP3, Risk management, Security, Security management, Security products, Security Program Management, Sendmail, SMTP, System utilities, Systems management software, Tech support, Third-party services, Vendor support, Vulnerability Assessment & Audit, vulnerability management, Wireless
Security COncern, Files deleted from Server
Good morning to all, and hope everyone is dooing well. I have a security issue, and need help solving this. Someone in my company within Engineering staff deleted an entire group of folders. Unfortunately it was on a project that ended, and it was discovered this morning. I have luckily a back up tape of [...]
Answer Question
| January 24, 2005 10:21 AM
Auditing, Compliance, CRM, DataCenter, Disaster Recovery, Hardware, Intrusion management, Managed security services, Policies, Risk management, Security, Security management, Security Program Management
Good morning to all, and hope everyone is dooing well. I have a security issue, and need help solving this. Someone in my company within Engineering staff deleted an entire group of folders. Unfortunately it was on a project that ended, and it was discovered this morning. I have luckily a back up tape of [...]
Answer Question
| January 24, 2005 10:21 AM
Auditing, Compliance, CRM, DataCenter, Disaster Recovery, Hardware, Intrusion management, Managed security services, Policies, Risk management, Security, Security management, Security Program Management
Access to security log in Windows 2000
In my company we want to give full access to the security log of Windows 2000 only to the security manager, but we want to give only read access to the support people, Is there how to do it ?
Answer Question
| January 12, 2005 3:29 PM
Biometrics, Compliance, configuration, CRM, DataCenter, Digital certificates, Disaster Recovery, Identity & Access Management, Managed security services, patching, PEN testing, Platform Security, Policies, provisioning, Risk management, Security, Security management, Security Program Management, Security tokens, Single sign-on, Tech support, vulnerability management
In my company we want to give full access to the security log of Windows 2000 only to the security manager, but we want to give only read access to the support people, Is there how to do it ?
Answer Question
| January 12, 2005 3:29 PM
Biometrics, Compliance, configuration, CRM, DataCenter, Digital certificates, Disaster Recovery, Identity & Access Management, Managed security services, patching, PEN testing, Platform Security, Policies, provisioning, Risk management, Security, Security management, Security Program Management, Security tokens, Single sign-on, Tech support, vulnerability management
DOS attack, DNS question
My question has two parts, first: today at the place where i work we lost the internet, and after checking the firewall (sonicwall, this is a non profit organization so they cant afford the best stuff) i discovered it was more than likely a DOS attack. nobody could access the internet, and i could not [...]
Answer Question
| January 13, 2005 6:07 PM
Compliance, configuration, CRM, Disaster Recovery, Firewalls, Forensics, Incident response, Information risk management, Intrusion management, IT architecture, Managed security services, Network security, Networking, patching, PEN testing, Platform Security, Policies, Product/service procurement, Risk management, Security, Security management, Security products, Security Program Management, Tech support, VPN, vulnerability management, Wireless
My question has two parts, first: today at the place where i work we lost the internet, and after checking the firewall (sonicwall, this is a non profit organization so they cant afford the best stuff) i discovered it was more than likely a DOS attack. nobody could access the internet, and i could not [...]
Answer Question
| January 13, 2005 6:07 PM
Compliance, configuration, CRM, Disaster Recovery, Firewalls, Forensics, Incident response, Information risk management, Intrusion management, IT architecture, Managed security services, Network security, Networking, patching, PEN testing, Platform Security, Policies, Product/service procurement, Risk management, Security, Security management, Security products, Security Program Management, Tech support, VPN, vulnerability management, Wireless
1
