Risk Assessment for Application Systems
This is a complex topic. I’ve written extensively about <a href=”http://www.principlelogic.com/webapps.html”>risk assessments for web applications</a>, <a href=”http://www.principlelogic.com/toolstesting.html”>security vulnerability testing and tools</a>, and <a href=”http://www.principlelogic.com/management.html”>information security management</a> so you may want to check those out. Hope this helps. Let us know if you have some specific questions.
View Answer
| June 30, 2009 2:24 PM
Application security, Risk analysis, Risk assessment, Risk management
This is a complex topic. I’ve written extensively about <a href=”http://www.principlelogic.com/webapps.html”>risk assessments for web applications</a>, <a href=”http://www.principlelogic.com/toolstesting.html”>security vulnerability testing and tools</a>, and <a href=”http://www.principlelogic.com/management.html”>information security management</a> so you may want to check those out. Hope this helps. Let us know if you have some specific questions.
View Answer
| June 30, 2009 2:24 PM
Application security, Risk analysis, Risk assessment, Risk management
Digital document signatures for an enterprise
Have you tried <a href=”http://www.signonline.com/pages/solution_how.html”>eSignSystems</a>? I just finished up a Web app security assessment of their product for a client of mine and it looks like it may do what you’re looking for.
View Answer
| June 30, 2009 2:09 PM
Certificate authority, Digital certificates, Digital signatures, Microsoft Office, PKI
Have you tried <a href=”http://www.signonline.com/pages/solution_how.html”>eSignSystems</a>? I just finished up a Web app security assessment of their product for a client of mine and it looks like it may do what you’re looking for.
View Answer
| June 30, 2009 2:09 PM
Certificate authority, Digital certificates, Digital signatures, Microsoft Office, PKI
putting space in passward
a good password is having complex number like as 123-supertech *********** It is not “bad” to use a space. You can set standards which are easy – say a 6 digit minimum as the only requirement, or more complex like requiring a digit, or more complex yet, requiring a digit and a Capital letter and/or [...]
View Answer
| June 29, 2009 3:58 PM
Password, Password strength
a good password is having complex number like as 123-supertech *********** It is not “bad” to use a space. You can set standards which are easy – say a 6 digit minimum as the only requirement, or more complex like requiring a digit, or more complex yet, requiring a digit and a Capital letter and/or [...]
View Answer
| June 29, 2009 3:58 PM
Password, Password strength
regedit permissions
In the folder options on the folder types tab, manually enter in the extension that the program you are using supports. then windows will ask what program would you like to open this extension. Then make sure your program is operating correctly.
View Answer
| June 27, 2009 4:04 PM
Administrative privileges, RegEdit
In the folder options on the folder types tab, manually enter in the extension that the program you are using supports. then windows will ask what program would you like to open this extension. Then make sure your program is operating correctly.
View Answer
| June 27, 2009 4:04 PM
Administrative privileges, RegEdit
Firewall report on individual users
There are firewalls that have this ability, as well as proxy servers that will monitor similarly. We have a high end proxy service and it catches everything, you can modify restrictions based on the user, and view reports. We use MXLOGIC. Hope this helps! -Schmidtw ================= Try the <a href=”http://www.nirsoft.net/utils/iehv.html”>IE History Viewer tool</a> and other [...]
View Answer
| June 26, 2009 1:39 PM
Firewall management, Firewalls, Terminal Server, User tracking
There are firewalls that have this ability, as well as proxy servers that will monitor similarly. We have a high end proxy service and it catches everything, you can modify restrictions based on the user, and view reports. We use MXLOGIC. Hope this helps! -Schmidtw ================= Try the <a href=”http://www.nirsoft.net/utils/iehv.html”>IE History Viewer tool</a> and other [...]
View Answer
| June 26, 2009 1:39 PM
Firewall management, Firewalls, Terminal Server, User tracking
Lotus domino web access
I am confused here. Web access and inbound emails are two separate issues. Are there problems with email delivery to your organization? Are users having problems getting to Domino web access portal? These are two separate services. I am not familiar with the specifics of Domino web access but can speak from general email and [...]
View Answer
| June 26, 2009 1:32 PM
Domino Web Access, Lotus Domino, Lotus Notes, SonicWALL
I am confused here. Web access and inbound emails are two separate issues. Are there problems with email delivery to your organization? Are users having problems getting to Domino web access portal? These are two separate services. I am not familiar with the specifics of Domino web access but can speak from general email and [...]
View Answer
| June 26, 2009 1:32 PM
Domino Web Access, Lotus Domino, Lotus Notes, SonicWALL
SAS70 audit for Data Center
This sounds like a highly secure (military grade) level network. Is that the case? Physically separate may not necessarily be the right answer as a network can be logically separated using techniques like: encryption separate subnet different protocol Are you being challenged to provide this separation or are you doing the auditing? In the IT [...]
View Answer
| June 26, 2009 1:23 PM
Auditing, Data Center, Data Center Audits, IT audit, SAS 70
This sounds like a highly secure (military grade) level network. Is that the case? Physically separate may not necessarily be the right answer as a network can be logically separated using techniques like: encryption separate subnet different protocol Are you being challenged to provide this separation or are you doing the auditing? In the IT [...]
View Answer
| June 26, 2009 1:23 PM
Auditing, Data Center, Data Center Audits, IT audit, SAS 70
Information Security Degrees
I cannot answer this question for you but I think a good option would be to talk to some recruiters/headhunters and get their perspectives on this. My thoughts on this are that any education is good but real world experience is best. I would take a look at these degrees from this angle and then [...]
View Answer
| June 26, 2009 1:15 PM
american military university, amu, Degree, information assurance, Information security careers, Information Systems Security, IT careers, IT education, nsa cae, Security careers, umuc, university of maryland university college
I cannot answer this question for you but I think a good option would be to talk to some recruiters/headhunters and get their perspectives on this. My thoughts on this are that any education is good but real world experience is best. I would take a look at these degrees from this angle and then [...]
View Answer
| June 26, 2009 1:15 PM
american military university, amu, Degree, information assurance, Information security careers, Information Systems Security, IT careers, IT education, nsa cae, Security careers, umuc, university of maryland university college
authorization
Can you please provide more details than this? Thanks.
View Answer
| June 25, 2009 1:19 PM
Authentication, Password
Can you please provide more details than this? Thanks.
View Answer
| June 25, 2009 1:19 PM
Authentication, Password
Prevent users from stopping services on workstations
Typically, this is a function of the user being a local administrator on the machine. You could create a GPO that specifies the exact membership of the local administrator group on the OU the machine is located in. This will <i><b>REPLACE </b></i>the current members of teh local administrator group with the ones you supply in [...]
View Answer
| June 24, 2009 4:56 PM
GPO, Group Policy, User Permissions
Typically, this is a function of the user being a local administrator on the machine. You could create a GPO that specifies the exact membership of the local administrator group on the OU the machine is located in. This will <i><b>REPLACE </b></i>the current members of teh local administrator group with the ones you supply in [...]
View Answer
| June 24, 2009 4:56 PM
GPO, Group Policy, User Permissions
biometrics
I imagine that depends on where you are applying for re-entry.
View Answer
| June 24, 2009 4:43 PM
Biometric Security, Biometric signatures, Biometrics
I imagine that depends on where you are applying for re-entry.
View Answer
| June 24, 2009 4:43 PM
Biometric Security, Biometric signatures, Biometrics
connecting 2 networks
Madpawn, please see my answer on your previous question about this. It is perfectly possible, and I put the nat commands there. It source nat’s the PCs and destination nats the server. All you need to add is the VPN config, based on the nat IP’s and not on the ‘real’ ones, and it will [...]
View Answer
| June 23, 2009 11:00 PM
ASA, DHCP, IP, LAN, Network management, network setup, Network Topology, Subnet, VPN, WAN
Madpawn, please see my answer on your previous question about this. It is perfectly possible, and I put the nat commands there. It source nat’s the PCs and destination nats the server. All you need to add is the VPN config, based on the nat IP’s and not on the ‘real’ ones, and it will [...]
View Answer
| June 23, 2009 11:00 PM
ASA, DHCP, IP, LAN, Network management, network setup, Network Topology, Subnet, VPN, WAN
Prevent unauthorized users from accessing SQL Server 2000
Create another domain group for the users you don’t want to have access, and put them in the group. Add that group as a Login to the SQL Server, but set the SQL Server to deny access to that login. This will prevent the users from having any access to the SQL Server.
View Answer
| June 23, 2009 6:24 PM
Integrated Logon, SQL Server 2000, SQL Server security, Windows authentication
Create another domain group for the users you don’t want to have access, and put them in the group. Add that group as a Login to the SQL Server, but set the SQL Server to deny access to that login. This will prevent the users from having any access to the SQL Server.
View Answer
| June 23, 2009 6:24 PM
Integrated Logon, SQL Server 2000, SQL Server security, Windows authentication
workgroup is not accessible. you might not have permission to use this network resource. contact the admin of this server to find it.?
It is possibility that your computer is not a member of this particular network segment. You should make sure about thins. Second thing try to run network setup wizard. To run the Network Setup Wizard on the ICS host, click <b>Start -> Control Panel -> Network And Internet Connections -> Setup</b> Or Change Your Home [...]
View Answer
| June 23, 2009 5:18 PM
User Permissions, Windows XP, Workgroup
It is possibility that your computer is not a member of this particular network segment. You should make sure about thins. Second thing try to run network setup wizard. To run the Network Setup Wizard on the ICS host, click <b>Start -> Control Panel -> Network And Internet Connections -> Setup</b> Or Change Your Home [...]
View Answer
| June 23, 2009 5:18 PM
User Permissions, Windows XP, Workgroup
SPOF best practices
The short and too-easy answer is “have more than one of everything”. The longer answer is much more complicated, and really depends on what vendors you’re buying or looking to buy gear from, what features you’ve paid for an installed/enabled, now your network is laid out, how much you’re prepared to spend, what you’re willing [...]
View Answer
| June 23, 2009 2:37 PM
Network hardware, Network management, Network Topology, Single Point of Failure, SPOF
The short and too-easy answer is “have more than one of everything”. The longer answer is much more complicated, and really depends on what vendors you’re buying or looking to buy gear from, what features you’ve paid for an installed/enabled, now your network is laid out, how much you’re prepared to spend, what you’re willing [...]
View Answer
| June 23, 2009 2:37 PM
Network hardware, Network management, Network Topology, Single Point of Failure, SPOF
site-to-site problems.
Don’t worry, this is a common problem when connecting two organisations together, or two networks that have been configured in isolation. On the WAN routers you can NAT the IP addresses of the remote site, so that site A thinks the other site (Site B) has a different IP address schema, and Site B thinks [...]
View Answer
| June 23, 2009 1:58 PM
ASA, Client, LAN, Network, Network management, VPN, WAN
Don’t worry, this is a common problem when connecting two organisations together, or two networks that have been configured in isolation. On the WAN routers you can NAT the IP addresses of the remote site, so that site A thinks the other site (Site B) has a different IP address schema, and Site B thinks [...]
View Answer
| June 23, 2009 1:58 PM
ASA, Client, LAN, Network, Network management, VPN, WAN
Applying an ACL in Packet Tracer for class
One problem is that you used the source to be ‘any” and not the subnet. Also on the second part, you restricted it to echo-reply, which is a response to a PING, which if you wanted to restrict it to only allow ping should have just been echo. However the question says just ICMP, so [...]
View Answer
| May 8, 2013 12:26 PM
Access Control List, ACL, Packet Tracer
One problem is that you used the source to be ‘any” and not the subnet. Also on the second part, you restricted it to echo-reply, which is a response to a PING, which if you wanted to restrict it to only allow ping should have just been echo. However the question says just ICMP, so [...]
View Answer
| May 8, 2013 12:26 PM
Access Control List, ACL, Packet Tracer
Is there an easy way to revert a user from domain login with roaming profile/offline files back to local profile on the PC?
You don’t have to go as far as removing the computer from the domain, although that may help re-estabilish domain connectivity with the machine. Since these files are offline files on the network. All you have to do is copy the files to the local machine and disable Offline files in My Computer -> Tools [...]
View Answer
| June 23, 2009 12:22 AM
domain profiles, Roaming Profiles, User profiles, Windows Server 2003, Windows Server User Profiles, Windows XP, Windows XP SP2, Windows XP SP3
You don’t have to go as far as removing the computer from the domain, although that may help re-estabilish domain connectivity with the machine. Since these files are offline files on the network. All you have to do is copy the files to the local machine and disable Offline files in My Computer -> Tools [...]
View Answer
| June 23, 2009 12:22 AM
domain profiles, Roaming Profiles, User profiles, Windows Server 2003, Windows Server User Profiles, Windows XP, Windows XP SP2, Windows XP SP3
API – QSYRTVUA – Retieve Users Authorizer to Object
Phil, Try this: http://www.as400pro.com/tipView.php?cat=API&key=1588 , this: http://www.think400.dk/apier_7.htm#eks0007 and if all else fails, this: http://www.google.com/search?hl=en&q=QSYRTVUA&btnG=Google+Search&aq=f&oq=&aqi=
View Answer
| June 22, 2009 7:56 PM
API, QSYRTVUA, RPG, Security
Phil, Try this: http://www.as400pro.com/tipView.php?cat=API&key=1588 , this: http://www.think400.dk/apier_7.htm#eks0007 and if all else fails, this: http://www.google.com/search?hl=en&q=QSYRTVUA&btnG=Google+Search&aq=f&oq=&aqi=
View Answer
| June 22, 2009 7:56 PM
API, QSYRTVUA, RPG, Security
Configuration Management tool
Microsoft Project can do some of this. Microsoft has the Project Management Server and <a href=”http://office.microsoft.com/en-us/epmsolution/FX101935291033.aspx”>Enterprise Project Management solution</a> that might fit your requirements. There are likely bolt-ons that extend the functionality if the native products do not meet your needs. In the IT trenches? So am I – read my <a href=”http://itknowledgeexchange.techtarget.com/it-trenches”>IT-Trenches blog</a>
View Answer
| June 22, 2009 7:52 PM
Application management, Configuration management, Environment Variables, Relational databases
Microsoft Project can do some of this. Microsoft has the Project Management Server and <a href=”http://office.microsoft.com/en-us/epmsolution/FX101935291033.aspx”>Enterprise Project Management solution</a> that might fit your requirements. There are likely bolt-ons that extend the functionality if the native products do not meet your needs. In the IT trenches? So am I – read my <a href=”http://itknowledgeexchange.techtarget.com/it-trenches”>IT-Trenches blog</a>
View Answer
| June 22, 2009 7:52 PM
Application management, Configuration management, Environment Variables, Relational databases
