IT Answers » Managed security services

OWA using SelfSSL and Certificate Services removal

TheVyrys — Fri, 05 Aug 2005 12:41:07 +0000

Hey there…

I am curretly running Exchange 2003 on W2k3 member server.

I installed Certificate Services and produced my own certificate and all works well with OWA.

I recently found out that SelfSSL is available but not quite as robust, which would probably be good.

I removed Cert services and was getting ready to install selfssl when one of my domain controllers started getting an error message about the cert being invalid. It happened last time I tried to uninstall cert services and I ended up rebuilding the domain controller to get rid of it.
I don’t want to do that again. So do any of you know how to remove certifcate services from the domain cleanly?
Also, is SelfSSL a good route to take for securing OWA?

thanks a mil…

IM Blocking and URL Filtering

EngineerIT — Thu, 07 Jul 2005 03:18:13 +0000

We have Pix515E which is gateway to Internet.
We also got IWSS Proxy(Trend Micro) along with URL filtering module.
Domain users get directed to IWSS proxy (GPO settings) and restrictions about URL filterings can be imposed as per company’s policy.
Those users who are not on the domain, they can not get GPO settings and they do not get IWSS as there proxy. Hence they can browse any site they want.
My question is how to restrict the browsing for those users who are not on the domain.
Is it possible to redirect all HTTP traffic to IWSS to check before it is out?
Or is there any other way to solve this issue?

2nd MAJOR problem is: blocking MSN messanger and Yahoo messanger in the company’s network….
If we are blocking one particualr port, it still works…
MSN messenger to be blocked for domain users and for other users who are not on the domain.

Data vs. perimeter vs. network security

RobynLorusso23 — Wed, 04 May 2005 16:36:33 +0000

A short time ago, author Wes Noonan wrote some tips for SearchWindowsSecurity.com about deperimeterization. He explained how security is always pitted against business needs, and perimeters have become porous because businesses require traffic from SMTP, HTTP or VPNs to pass through the firewall. He then offered techniques for keeping data safe in spite of the activity at your perimeter.

I realize you have a variety of options when it comes to choosing a Windows line of defense, but I’m trying to get a sense of how many people actually lock down Windows at the data level. Do you invest most of your protection efforts at the data, perimeter or network level? What measures do you take to keep your Windows data secure even if the perimeter is compromised? Do you have data protection plans or products in place?

Another issue is that networks and applications are often treated as separate entities that never interact. This may be because they have different people maintaining them, unique security policies, etc. Is this the case in your shop?

I’m collecting this information for possible technical tips or a trends article on SearchWindowsSecurity.com.

Thanks for your time and attention. I hope to hear from you soon.

Best regards,
Robyn Lorusso
Editor
SearchWindowsSecurity.com

http://searchwindowssecurity.techtarget.com/

iSeries IP adress restruction

Dalibor — Wed, 04 May 2005 04:19:08 +0000

Hi, is there a way to restrict access to iSeries by IP address?
I need to configure something on iSeries to prevent one PC to access on our iSeries and think that best way is to restrict IP address of this PC. Please help.

Is Windows security an afterthought?

RobynLorusso23 — Tue, 19 Apr 2005 15:00:40 +0000

As the editor of SearchWindowsSecurity.com, I often speak with users about their Windows security responsibilities. One senior systems analyst in particular sent me an interesting note recently… To give you some background, he’s in charge of configuring and administering desktop systems (primarily Win2000 and XP)for a large company, and he developed many of the security policies and procedures in place for those desktops. However, even with those seemingly important tasks on his plate, he said he took over Windows security only because no one else had.

He specifically said: “I ended up taking over the security functions because no one else was looking after them. I’ve learned a lot (enough to know there’s so much more to learn), earned my CISSP and started specializing in MS Windows security. I never really set out to do that though.”

Does this sound familiar to you? Were you recently or temporarily assigned Windows security responsibilities because they weren’t being handled? Did you choose to take over Windows security on your own? How long have you been working at it, or plan to?

Any feedback is appreciated. I will include comments in a story for SearchWindowsSecurity.com. I’m just trying to get a sense of how people got into the Windows security field, how long they’ve been in charge of securing Windows systems and if they plan to stay there.

You may contact me publicly or privately. Thanks for your time and attention!

Best regards,
Robyn Lorusso
Editor
SearchWindowsSecurity.com

http://searchwindowssecurity.techtarget.com/

Internet Explorer vs. Firefox

LMullen — Fri, 15 Apr 2005 14:14:31 +0000

New Discussion Post by

I’ve been hacked — I think….

LMullen — Mon, 11 Apr 2005 09:52:01 +0000

I’m an IT administrator with a little over 500 end users, running Windows 2000 and XP. One of our users is experiencing a problem with her Internet connection suddenly dropping for no apparent reason. When she restarts her computer, everything works fine for awhile, but then the connection drops again. The funny thing is, she’s noticed that her AOL Instant Messenger service still works even when she can’t access her e-mail. We’ve already run Netstat and noticed that more unknown open connections are being used to certain ports. This particular user has a laptop and works from home frequently, so we’re not sure all updates have been installed.
Has her computer been hacked? If so, what can I do initially to contain the damage, and what steps can I take to prevent such occurrences in the future?

How did I get a virus on my computer?

jwise410 — Wed, 06 Apr 2005 18:07:21 +0000

Do you hear that question or something similar too often? We’re taking an informal survery on SearchSecurity.com to find out what the most common security-related user questions are. Results will be compiled into a question and answer tip that you will be able to post or handout to your users.

What are the top 5 most common questions asked by your users?

Jenny Wiseman
Associate Editor, SearchSecurity.com

Use of TFTP

AaronD — Thu, 31 Mar 2005 07:13:10 +0000

Why is the use of TFTP discouraged on the network from a security perspective?

MS Office Outlook 2003 Address book

BinooDas1234 — Fri, 18 Feb 2005 05:32:35 +0000

Question Edited by MTidmarsh