Encryption by Law? If so, what strength or type?
As with any law, it should start with a basic level and then permit restrictions above the level specified. So, the law could say 1024-bit encryption or better. Kind of like the states can make more restrictive laws than the federal gov’t but the states must meet minimum criteria.
View Answer
| November 9, 2012 6:02 PM
cybersecurity, Encryption, privacy, Security
As with any law, it should start with a basic level and then permit restrictions above the level specified. So, the law could say 1024-bit encryption or better. Kind of like the states can make more restrictive laws than the federal gov’t but the states must meet minimum criteria.
View Answer
| November 9, 2012 6:02 PM
cybersecurity, Encryption, privacy, Security
what is athe differrence between domain security policy and domain controller security policy?
One covers the entire AD domain and the other is specific to the hardware/OS of the DC.
View Answer
| June 22, 2009 5:58 PM
Domain Controller, Network Security Management, Security policies
One covers the entire AD domain and the other is specific to the hardware/OS of the DC.
View Answer
| June 22, 2009 5:58 PM
Domain Controller, Network Security Management, Security policies
Do you know of any cases when malware will detect a virtualized OS and exploit this fact?
Not that I’m aware of.
View Answer
| June 22, 2009 4:51 PM
malware, Microsoft virtualization, Microsoft Virtualization Chat 5/14, Virtualization security
Not that I’m aware of.
View Answer
| June 22, 2009 4:51 PM
malware, Microsoft virtualization, Microsoft Virtualization Chat 5/14, Virtualization security
Admin Access to IT Auditor?
In dealing with previous security audits, that’s normally an account they would request. They would have 3 tactics at the account level (null account, regular user account, and a domain admin account). The lower accounts are doing penetration type audits to see for example a server is secure from a visitor (dull account) and domain [...]
View Answer
| June 19, 2009 4:57 PM
Auditor Permissions, Audits, Domain Administrator, IT auditing
In dealing with previous security audits, that’s normally an account they would request. They would have 3 tactics at the account level (null account, regular user account, and a domain admin account). The lower accounts are doing penetration type audits to see for example a server is secure from a visitor (dull account) and domain [...]
View Answer
| June 19, 2009 4:57 PM
Auditor Permissions, Audits, Domain Administrator, IT auditing
Data center security — what advice would you give?
Typical Infosec security definition: Confidentiality, Integrity & Availability – Availabiliity – Power & connectivity. Be sure that redundant power supplies are actually plugged into separate power sources. Plugging dual power supplies into the same power bus is inviting failure. Connectivity – don’t skimp to begin. Be sure that the users have a good experience from [...]
View Answer
| June 19, 2009 4:31 PM
Data Center, Data Center management, Data Center Security, Security management
Typical Infosec security definition: Confidentiality, Integrity & Availability – Availabiliity – Power & connectivity. Be sure that redundant power supplies are actually plugged into separate power sources. Plugging dual power supplies into the same power bus is inviting failure. Connectivity – don’t skimp to begin. Be sure that the users have a good experience from [...]
View Answer
| June 19, 2009 4:31 PM
Data Center, Data Center management, Data Center Security, Security management
Can you be annonymous on a guest VLAN?
Other people have also had this issue, so there is now something called a Private VLAN, where you can only ‘see’ one uplink port, which is usually the gateway. The member ports can not ‘see’ each other. This achieves exactly what you are wanting. It is supported by several manufacturers equipment, you just need to [...]
View Answer
| June 19, 2009 3:56 PM
Guest VLAN, Network, Routing and switching, Security, Switches, VLAN
Other people have also had this issue, so there is now something called a Private VLAN, where you can only ‘see’ one uplink port, which is usually the gateway. The member ports can not ‘see’ each other. This achieves exactly what you are wanting. It is supported by several manufacturers equipment, you just need to [...]
View Answer
| June 19, 2009 3:56 PM
Guest VLAN, Network, Routing and switching, Security, Switches, VLAN
Information Systems Security or Computer and Information Science Degree?
From my experience, I have found two things to ALWAYS be necessary: 1.) Security 2.) Maintenance We will always need security. It will always be an issue. Our systems need to be maintained, and as long as we have them, that will be the case. Hope this helps! -Schmidtw
View Answer
| June 19, 2009 3:25 AM
Career development, CCNA, CCNP, Certifications, CIO, Computer and Information Science, Information Systems Security, IT careers, IT education, Network+, Security+
From my experience, I have found two things to ALWAYS be necessary: 1.) Security 2.) Maintenance We will always need security. It will always be an issue. Our systems need to be maintained, and as long as we have them, that will be the case. Hope this helps! -Schmidtw
View Answer
| June 19, 2009 3:25 AM
Career development, CCNA, CCNP, Certifications, CIO, Computer and Information Science, Information Systems Security, IT careers, IT education, Network+, Security+
How to determine if desktop has been hacked?
Install ZoneAlarm Firewall and it will show you all connections with ports to and from your computer. Good way to find out quickly. **************** Keep in mind also that the person you sent the email to may have given others delegate rights to view their mailbox. You would have no knowledge they had done so [...]
View Answer
| June 18, 2009 1:49 PM
Desktop security, Email security, Enterprise Desktop, Hacked
Install ZoneAlarm Firewall and it will show you all connections with ports to and from your computer. Good way to find out quickly. **************** Keep in mind also that the person you sent the email to may have given others delegate rights to view their mailbox. You would have no knowledge they had done so [...]
View Answer
| June 18, 2009 1:49 PM
Desktop security, Email security, Enterprise Desktop, Hacked
Single login account for CAD lab
In AD Users and Computers you can select a list of computers the user can logon to. You can also deny logon localy and grant only one user rdp permissions.
View Answer
| June 18, 2009 10:39 AM
Active Directory, Authentication, CAD workstation, Login, User account management
In AD Users and Computers you can select a list of computers the user can logon to. You can also deny logon localy and grant only one user rdp permissions.
View Answer
| June 18, 2009 10:39 AM
Active Directory, Authentication, CAD workstation, Login, User account management
VLAN Routing
On the L3 switch, in ‘config’ mode, first turn on routing (if it is not already on) with the <b>ip routing</b> command. Then create an interface in each vlan, and give it an IP address. <b>interface vlan 2 ip address 192.168.2.1 255.255.255.0 interface vlan 3 ip address 192.168.3.1 255.255.255.0</b> Replace the VLAN numbers, and IP [...]
View Answer
| June 18, 2009 6:15 AM
Cisco, Cisco 3560, Cisco switch configuration, Cisco VLAN, InterVLAN, Switch configuration, Switches, VLAN, VLAN Routing
On the L3 switch, in ‘config’ mode, first turn on routing (if it is not already on) with the <b>ip routing</b> command. Then create an interface in each vlan, and give it an IP address. <b>interface vlan 2 ip address 192.168.2.1 255.255.255.0 interface vlan 3 ip address 192.168.3.1 255.255.255.0</b> Replace the VLAN numbers, and IP [...]
View Answer
| June 18, 2009 6:15 AM
Cisco, Cisco 3560, Cisco switch configuration, Cisco VLAN, InterVLAN, Switch configuration, Switches, VLAN, VLAN Routing
Can I create high availability (HA) with switches and network interface Card (NIC) bonding?
When you stack switches up you actually don’t provide any high availability (HA) functionality but you get more number of ports with better management. You should have both the network interface cards (NICs) connect to two different switches (you use only two switches if you have less than 48 servers) or two different stacks (if [...]
View Answer
| June 17, 2009 8:57 PM
Dell PowerConnect, Dell PowerConnect 6248, High Availability, Networking, NIC, Switching
When you stack switches up you actually don’t provide any high availability (HA) functionality but you get more number of ports with better management. You should have both the network interface cards (NICs) connect to two different switches (you use only two switches if you have less than 48 servers) or two different stacks (if [...]
View Answer
| June 17, 2009 8:57 PM
Dell PowerConnect, Dell PowerConnect 6248, High Availability, Networking, NIC, Switching
What types of Layer 4 (L4) or transport layer switch exist?
Layer 4 defines the quality and nature of data delivery and provides for end-to-end integrity controls such as flow control, retransmission etc. These switches control traffic through the use of policies or filters using Layer 4 or transport layer protocol port IDs to differentiate and act upon application-specific traffic. This layer contains application services and [...]
View Answer
| February 27, 2013 8:55 PM
Layer 4, Layer 4 Switches, Networking, OSI, SDN, Switches, Transport Layer Switches
Layer 4 defines the quality and nature of data delivery and provides for end-to-end integrity controls such as flow control, retransmission etc. These switches control traffic through the use of policies or filters using Layer 4 or transport layer protocol port IDs to differentiate and act upon application-specific traffic. This layer contains application services and [...]
View Answer
| February 27, 2013 8:55 PM
Layer 4, Layer 4 Switches, Networking, OSI, SDN, Switches, Transport Layer Switches
Biometrics with Visual Basic 6
<b>Moderator Note:</b> This question has come up several times on IT Knowledge Exchange – and I did see this <a href=”http://itknowledgeexchange.techtarget.com/itanswers/how-to-compare-fingerprint-images-in-vbnet/”>member response</a> but but no sample code. A quick Web search turned up an inexpensive SDK called <a href=”http://www.componentsource.com/features/authentication/visual-basic/index.html”>Fingerprint SDK 2009</a> that you might find interesting. I’ve never used this component and am not recommending [...]
View Answer
| June 17, 2009 1:17 PM
Biometrics, Sample code, VB 6.0, Visual Basic 6
<b>Moderator Note:</b> This question has come up several times on IT Knowledge Exchange – and I did see this <a href=”http://itknowledgeexchange.techtarget.com/itanswers/how-to-compare-fingerprint-images-in-vbnet/”>member response</a> but but no sample code. A quick Web search turned up an inexpensive SDK called <a href=”http://www.componentsource.com/features/authentication/visual-basic/index.html”>Fingerprint SDK 2009</a> that you might find interesting. I’ve never used this component and am not recommending [...]
View Answer
| June 17, 2009 1:17 PM
Biometrics, Sample code, VB 6.0, Visual Basic 6
App that allows URLs with associated usernames and passwords
I believe what you are looking for is called a credential manager. They often go by names like “AutoFiller” or “Password Protector”. I’m sure a search for that criteria will better point you in a correct direction. Hope this helps! -Schmidtw
View Answer
| June 17, 2009 12:43 PM
log on, Password, URL
I believe what you are looking for is called a credential manager. They often go by names like “AutoFiller” or “Password Protector”. I’m sure a search for that criteria will better point you in a correct direction. Hope this helps! -Schmidtw
View Answer
| June 17, 2009 12:43 PM
log on, Password, URL
SAN material
My recommendations to gain knowledge in SAN would be to pick any SAN vendor from the big boys (EMC, NetApp, HDS,) and then review how their architecture communicates with a server (a vendor you already have in your environment – HP, Dell, IBM). Each vendor has different mechanisms but the flavor is the same. Nice [...]
View Answer
| June 16, 2009 10:20 PM
SAN, SAN architecture, SAN certificate, SAN management, Storage Area Networks
My recommendations to gain knowledge in SAN would be to pick any SAN vendor from the big boys (EMC, NetApp, HDS,) and then review how their architecture communicates with a server (a vendor you already have in your environment – HP, Dell, IBM). Each vendor has different mechanisms but the flavor is the same. Nice [...]
View Answer
| June 16, 2009 10:20 PM
SAN, SAN architecture, SAN certificate, SAN management, Storage Area Networks
File extension and file header mismatch detection
Prodiscover seems to be what I was looking for.
View Answer
| June 16, 2009 8:34 PM
File extensions, Hidden files, Malware detection
Prodiscover seems to be what I was looking for.
View Answer
| June 16, 2009 8:34 PM
File extensions, Hidden files, Malware detection
Virtual Server 2.0 web access default login
It’s normally any local admin account on the physical host. I normally would create a local account called “vmadmin” and use this account as my default admin account for the login portal.
View Answer
| June 16, 2009 4:09 PM
Administrator password, Virtual Server
It’s normally any local admin account on the physical host. I normally would create a local account called “vmadmin” and use this account as my default admin account for the login portal.
View Answer
| June 16, 2009 4:09 PM
Administrator password, Virtual Server
How to recover deleted history
Here’s a link to help you with your issue. You can also browse through temp and temporary internet folders, to get an idea of some of the content or more specific information. Hope this helps! -Schmidtw
View Answer
| May 8, 2013 1:43 PM
Browser history, Desktop security, Enterprise Desktop, Web security
Here’s a link to help you with your issue. You can also browse through temp and temporary internet folders, to get an idea of some of the content or more specific information. Hope this helps! -Schmidtw
View Answer
| May 8, 2013 1:43 PM
Browser history, Desktop security, Enterprise Desktop, Web security
Cisco 3524 and 2610 vlans
The equipment you have is fine. The only issue is that the router will not be that fast routing between LANs, a layer 3 switch would be quicker, but if there is not too much traffic between them the router should be fine. You need to create the vlans on the switches, and then a [...]
View Answer
| June 16, 2009 1:12 PM
Cisco 2620, Cisco 3524, Cisco switches, Cisco VLAN, InterVLAN, InterVLAN Routing, VLAN
The equipment you have is fine. The only issue is that the router will not be that fast routing between LANs, a layer 3 switch would be quicker, but if there is not too much traffic between them the router should be fine. You need to create the vlans on the switches, and then a [...]
View Answer
| June 16, 2009 1:12 PM
Cisco 2620, Cisco 3524, Cisco switches, Cisco VLAN, InterVLAN, InterVLAN Routing, VLAN
Encryption by Law? If so, what strength or type?
Have you examined NIST guidelines? You may take a look at http://csrc.nist.gov/ Data encryption rules, regulations, guidelines varies by state to state. In some states if the sensitive data is encrypted (does not matter the key length/strength) it is OK. Please elaborate a bit more and the context?
View Answer
| June 15, 2009 8:06 PM
cybersecurity, Encryption, Massachusetts Data Privacy Law, privacy, Security, White House Cybersecurity Initiative
Have you examined NIST guidelines? You may take a look at http://csrc.nist.gov/ Data encryption rules, regulations, guidelines varies by state to state. In some states if the sensitive data is encrypted (does not matter the key length/strength) it is OK. Please elaborate a bit more and the context?
View Answer
| June 15, 2009 8:06 PM
cybersecurity, Encryption, Massachusetts Data Privacy Law, privacy, Security, White House Cybersecurity Initiative
