We had a security audit and one of the requirement was to raise an alarm whenever any user does a data extract.
Hi, I am not sure if it works. But had you tried Physical Trigger?
View Answer
| August 21, 2012 6:15 AM
Alert, AS/400, cl 400, DTF, iSeries
Hi, I am not sure if it works. But had you tried Physical Trigger?
View Answer
| August 21, 2012 6:15 AM
Alert, AS/400, cl 400, DTF, iSeries
Firewall
Comodo firewall is compatible to all kind of antivirus It is the world’s best “Free” firewall that a windows user can ever have. It provides almost all the features that a commercial firewall will offer including, Default Deny Protection, automatic updates, sand-boxing and even malware protection.The most important thing is that Comodo offers you all [...]
View Answer
| July 26, 2012 9:10 AM
Firewall
Comodo firewall is compatible to all kind of antivirus It is the world’s best “Free” firewall that a windows user can ever have. It provides almost all the features that a commercial firewall will offer including, Default Deny Protection, automatic updates, sand-boxing and even malware protection.The most important thing is that Comodo offers you all [...]
View Answer
| July 26, 2012 9:10 AM
Firewall
Transparent mode
http://www.juniper.net/techpubs/en_US/idp5.0/topics/concept/intrusion-detection-prevention-standalone-transparent-mode-overview.html Juniper has a good overview of Transparent mode. Basically, you use it as a passthrough device to run an IDP inspection on Layer-3 traffic.
View Answer
| July 6, 2012 7:03 AM
Firewall
http://www.juniper.net/techpubs/en_US/idp5.0/topics/concept/intrusion-detection-prevention-standalone-transparent-mode-overview.html Juniper has a good overview of Transparent mode. Basically, you use it as a passthrough device to run an IDP inspection on Layer-3 traffic.
View Answer
| July 6, 2012 7:03 AM
Firewall
Cannot Ping Public IP from ISA`
hi i have same problem that you have, till now i cant know whats going on and what should to do
View Answer
| December 17, 2012 12:42 AM
IP Routing, ISA firewall, ISA Server 2006
hi i have same problem that you have, till now i cant know whats going on and what should to do
View Answer
| December 17, 2012 12:42 AM
IP Routing, ISA firewall, ISA Server 2006
IPsec monitoring on a network
This Microsoft article has the step-by-step guide
View Answer
| August 26, 2012 12:33 AM
Event logs, IPsec, IPsec VPN, Network Monitor, Windows Server 2003
This Microsoft article has the step-by-step guide
View Answer
| August 26, 2012 12:33 AM
Event logs, IPsec, IPsec VPN, Network Monitor, Windows Server 2003
Is compliance preventing you from moving to the cloud?
I do think this is something that’s holding people back. I’m a proponent of cloud services – have a lot of clients in that space. I’m just concerned because I see so many people blindly trusting cloud service providers. They say “Is your system secure?” The answer is “Yes!”, of course, and then nothing else [...]
View Answer
| January 29, 2013 10:33 PM
Cloud compliance, Cloud Computing, Cloud Computing in 2010, Cloud computing security, Compliance Assessment, IT Compliance, PCI DSS
I do think this is something that’s holding people back. I’m a proponent of cloud services – have a lot of clients in that space. I’m just concerned because I see so many people blindly trusting cloud service providers. They say “Is your system secure?” The answer is “Yes!”, of course, and then nothing else [...]
View Answer
| January 29, 2013 10:33 PM
Cloud compliance, Cloud Computing, Cloud Computing in 2010, Cloud computing security, Compliance Assessment, IT Compliance, PCI DSS
Cisco ACS 3.4
It may actually be the opposite of what you describe…it may be that the console port is not participating in the authorization function of AAA. Try adding to your router: aaa authorization console
View Answer
| November 28, 2012 9:22 AM
cisco ACS, Cisco router
It may actually be the opposite of what you describe…it may be that the console port is not participating in the authorization function of AAA. Try adding to your router: aaa authorization console
View Answer
| November 28, 2012 9:22 AM
cisco ACS, Cisco router
Compliance SOX certification
I would recommend looking at information security or audit-centric certifications such as those offered by ISC^2 and ISACA. You have to ask yourself what you’re trying to learn/accomplish. IT compliance is about information risk and audit concepts. That’s likely the best place to focus your efforts.
View Answer
| January 28, 2013 8:40 AM
CIO, Compliance, IT certification, IT Compliance, SOX, SOX compliance
I would recommend looking at information security or audit-centric certifications such as those offered by ISC^2 and ISACA. You have to ask yourself what you’re trying to learn/accomplish. IT compliance is about information risk and audit concepts. That’s likely the best place to focus your efforts.
View Answer
| January 28, 2013 8:40 AM
CIO, Compliance, IT certification, IT Compliance, SOX, SOX compliance
Middle ground password security policies
Stringent password policies are often in place for show…to demonstrate that security is taken seriously. However, I think people set themselves, their users, and their business up for failure when their password security policies are too stringent. It’s really that simple. I can’t think of a compelling reason to not permit passwor changes every 6-12 [...]
View Answer
| January 23, 2013 8:13 AM
Password policies, Security, Security management, Security policies, Windows Security
Stringent password policies are often in place for show…to demonstrate that security is taken seriously. However, I think people set themselves, their users, and their business up for failure when their password security policies are too stringent. It’s really that simple. I can’t think of a compelling reason to not permit passwor changes every 6-12 [...]
View Answer
| January 23, 2013 8:13 AM
Password policies, Security, Security management, Security policies, Windows Security
Windows firewall exceptions
think you!
View Answer
| January 30, 2013 7:22 AM
Firewalls, Windows administration, Windows firewall, Windows Firewall Integration
think you!
View Answer
| January 30, 2013 7:22 AM
Firewalls, Windows administration, Windows firewall, Windows Firewall Integration
How was your last IT compliance audit experience?
The pain points I see most often are related to not having enough information. If you don’t have the proper tools and visibility into your network, it’s going to be very difficult to truly assess where things stand. Another common gotcha with compliance audits is that they’re vastly different from IT security assessments. You need [...]
View Answer
| January 28, 2013 7:13 AM
Compliance checklist, IT auditing, IT audits, IT Compliance, Open IT Forum
The pain points I see most often are related to not having enough information. If you don’t have the proper tools and visibility into your network, it’s going to be very difficult to truly assess where things stand. Another common gotcha with compliance audits is that they’re vastly different from IT security assessments. You need [...]
View Answer
| January 28, 2013 7:13 AM
Compliance checklist, IT auditing, IT audits, IT Compliance, Open IT Forum
New member contest: ASK, Answer and Win a $50 Amazon gift card
“As 2008 winds to a close,” implies this is either wrong or a copy-and-paste job. If you are still having trouble getting rid of the $50 Amazon gift card, make it a gift to your local homeless shelter.
View Answer
| June 22, 2012 10:47 PM
AS/400, CIO, CRM, Database, DataCenter, DataManagement, Development, Exchange, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, Security, SQL Server, Storage, Virtualization, VoIP
“As 2008 winds to a close,” implies this is either wrong or a copy-and-paste job. If you are still having trouble getting rid of the $50 Amazon gift card, make it a gift to your local homeless shelter.
View Answer
| June 22, 2012 10:47 PM
AS/400, CIO, CRM, Database, DataCenter, DataManagement, Development, Exchange, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, Security, SQL Server, Storage, Virtualization, VoIP
Secure FTP for one User
Depending upon what OS/system you are running, you should be able to enable SSL without requiring a secure login. It sounds kind of odd, but not requiring login means the rest of your users should be able to cancel on the user name and password window (kind of a pain, so inform them) and still [...]
View Answer
| June 22, 2012 10:42 PM
AS/400, Data, DCM, FTP, iSeries, SSL, User profiles
Depending upon what OS/system you are running, you should be able to enable SSL without requiring a secure login. It sounds kind of odd, but not requiring login means the rest of your users should be able to cancel on the user name and password window (kind of a pain, so inform them) and still [...]
View Answer
| June 22, 2012 10:42 PM
AS/400, Data, DCM, FTP, iSeries, SSL, User profiles
ASA Implementations
You can use either of the below topologies: 1. ASA — Switch — Server 2. Router — ASA — Switch — Server I would recommend the first option.
View Answer
| June 19, 2012 11:27 PM
ASA, ASA firewall
You can use either of the below topologies: 1. ASA — Switch — Server 2. Router — ASA — Switch — Server I would recommend the first option.
View Answer
| June 19, 2012 11:27 PM
ASA, ASA firewall
Exchange 2010
To identify is simple, your password and the security questions will be changed and you no longer will further be able to use that particular account. Whats more imp is, how to recover that account back.
View Answer
| June 19, 2012 1:48 PM
Email account, Exchange, Security
To identify is simple, your password and the security questions will be changed and you no longer will further be able to use that particular account. Whats more imp is, how to recover that account back.
View Answer
| June 19, 2012 1:48 PM
Email account, Exchange, Security
SSL Certificate error code 20 when trying to access Outlook Anywhere
I have a problem in trying to connect to the proxy server as it comes coming up with (Error Code 20)
View Answer
| June 17, 2012 3:35 AM
outlook anywhere, Outlook error messages, Outlook Errors, Proxy servers, SSL, SSL certificate
I have a problem in trying to connect to the proxy server as it comes coming up with (Error Code 20)
View Answer
| June 17, 2012 3:35 AM
outlook anywhere, Outlook error messages, Outlook Errors, Proxy servers, SSL, SSL certificate
Copy only in a shared folder
Right-click on the folder in question and set it to share. Set folder permissions to read-only for the group, “everyone.”
View Answer
| June 16, 2012 4:40 AM
Shared folders, User Permissions, Windows Server 2003
Right-click on the folder in question and set it to share. Set folder permissions to read-only for the group, “everyone.”
View Answer
| June 16, 2012 4:40 AM
Shared folders, User Permissions, Windows Server 2003
Intermittent Error using FTP/TLS
FTP using TLS usually goes over two port numbers; 989 and 990. Moving to 987 implies that you are either using 987 for data or control but not both. The non-987 port might be defaulting to 989 or 990. That, or you are addressing 987 and using 986 or 988 by default. But this question [...]
View Answer
| June 16, 2012 4:37 AM
Error Code 410, FTP, FTP Server, SSL, z/OS
FTP using TLS usually goes over two port numbers; 989 and 990. Moving to 987 implies that you are either using 987 for data or control but not both. The non-987 port might be defaulting to 989 or 990. That, or you are addressing 987 and using 986 or 988 by default. But this question [...]
View Answer
| June 16, 2012 4:37 AM
Error Code 410, FTP, FTP Server, SSL, z/OS
Latest research in risk assessment
There are books on this. I will try to summarize. For a proper risk assessment, you need several things. Document your assets. People, knowledge, intellectual property, code, data, documents, structures, motivation/morale, real property, and legality (!) can all be assets in need of protection. Document the threat. Know what things ‘want’ to cause damage. Weather, [...]
View Answer
| June 16, 2012 4:21 AM
Risk assessment, Risk assessment metrics
There are books on this. I will try to summarize. For a proper risk assessment, you need several things. Document your assets. People, knowledge, intellectual property, code, data, documents, structures, motivation/morale, real property, and legality (!) can all be assets in need of protection. Document the threat. Know what things ‘want’ to cause damage. Weather, [...]
View Answer
| June 16, 2012 4:21 AM
Risk assessment, Risk assessment metrics
