http://bucarotechelp.com/networking/security This section contains information about computer network security. en-us Thu, 06 Jul 2023 09:52:43 GMT http://www.rssboard.org/rss-specification http://bucarotechelp.com/networking/security/75052501.asp Establishing, maintaining, and closing an IPsec VPN consists of five steps which are illustrated in this article. Thu, 06 Jul 2023 09:52:43 GMT http://bucarotechelp.com/networking/security/75060701.asp VPN (Virtual Private Network) technologies such as IPsec (IP Security) with IKE (Internet Key Exchange) offer the ability to transmit over broadband securely. Fri, 23 Jun 2023 13:10:14 GMT http://bucarotechelp.com/networking/security/76070501.asp Wireless LAN (WLAN) security threats include war dialing, war driving, war chalking, WEP and WPA security cracking, and rogue access points. This artilce discuses approaches to WLAN Security. Thu, 26 May 2022 06:13:55 GMT http://bucarotechelp.com/networking/security/76072902.asp Some switches require users to authenticate themselves before gaining access to the rest of the network. Network Access Control (NAC) checks the characteristics of the device seeking admission to the network. Mon, 02 May 2022 06:52:39 GMT http://bucarotechelp.com/networking/security/76090201.asp SPAN stands for Switched Port Analyzer, a dedicated port on a switch that takes a mirrored copy of network traffic from within the switch and sends it to, typically, a monitoring device, or other tool for troubleshooting or traffic analysis. Tue, 29 Mar 2022 07:53:56 GMT http://bucarotechelp.com/networking/security/77030001.asp Large corporations, banks, financial institutions, security establishments are particularly favorite targets for hackers. However, this menace can be prevented to a great extent if proper security measures are taken. Thu, 30 Sep 2021 09:06:52 GMT http://bucarotechelp.com/networking/security/77080102.asp With the proliferation of data on laptops and mobile devices, organizations need to maintain control of how data is being accessed, shared, and distributed. Endpoint backup solutions should encrypt data in transit and in store to prevent unauthorized viewing of sensitive corporate data. Thu, 29 Apr 2021 07:03:50 GMT http://bucarotechelp.com/networking/security/77081901.asp As a Certified Information Systems Security Professional (CISSP), you will be seen as a security professional of proven ability who has successfully met a predefined standard of knowledge and experience that is well understood and respected throughout the industry. Sun, 11 Apr 2021 05:21:50 GMT http://bucarotechelp.com/networking/security/77082001.asp Email has emerged as one of the most important communication mediums. Failing to secure your organization's mail servers may allow spammers to misuse your servers and bandwidth as an open relay to propagate their spam. Sat, 10 Apr 2021 06:25:33 GMT http://bucarotechelp.com/networking/security/77082102.asp Taking some general countermeasures can prevent hacking of your important passwords. Many people use the same passwords on every system they use. For this reason, you might instructg users to create different passwords especially on the systems that protect information that's more sensitive. Fri, 09 Apr 2021 08:50:30 GMT http://bucarotechelp.com/networking/security/77082202.asp It's one thing to know generally that your systems are under fire from hackers around the world and malicious users around the office; it's another to understand specific attacks against your systems. This section discusses some well-known attacks but is by no means a comprehensive listing. Thu, 08 Apr 2021 07:29:37 GMT http://bucarotechelp.com/networking/security/77082301.asp Watch out for hacking from unauthorized routers and wireless clients that are attached to your network. By using NetStumbler or your client manager software, you can test for access points (APs) and ad-hoc devices that don't belong on your network. Wed, 07 Apr 2021 06:36:57 GMT http://bucarotechelp.com/networking/security/78041101.asp Penetration testing is one of the hottest up and coming skills any IT professional needs to have. Companies are actively looking for penetration testers and professionals with a background in IT security and the ability to do penetration testing. Thu, 20 Aug 2020 14:31:37 GMT http://bucarotechelp.com/networking/security/80020401.asp Network sniffing and snooping involve tapping into network traffic for the purpose extracting usernames, passwords, account numbers, and other information. Spoofing is when a hacker creates an email or a website that appears to genuine but is designed for the purpose extracting usernames, passwords, account numbers. Sat, 27 Oct 2018 09:37:58 GMT http://bucarotechelp.com/networking/security/80062103.asp Data loss is crippling for any business, especially in the age of big data where companies rely on digital information to refine their marketing, contact prospects, and process transactions. The first goal should be to prevent data loss from occurring in the first place. Sat, 09 Jun 2018 12:02:03 GMT http://bucarotechelp.com/networking/security/81010903.asp A remote access authentication protocol is the method by which remote users will be authenticated when they log on the network. Some options are EAP, CHAP, and PAP, explined here. Tue, 21 Nov 2017 11:49:26 GMT http://bucarotechelp.com/networking/security/81011601.asp A Network Firewall acts as a security barrier between a trusted network, such as the local network (LAN), and an untrusted network, such as the Internet. A >Web Application Firewall (WAF) monitors and allows or blocks data packets as they travel to and from a Web application. Tue, 14 Nov 2017 14:05:42 GMT http://bucarotechelp.com/networking/security/81011701.asp Automated scanning techniques and botnets don't care whether your company is big or small, they're only looking for holes in your network security to exploit. Here are 10 of the most critical steps you can take to keep your data secure, and none of them take much time or effort to accomplish. Mon, 13 Nov 2017 07:52:11 GMT http://bucarotechelp.com/networking/security/81021101.asp SSL is a security protocol standard that encrypts communication between a web browser and a web server. Any organization that uses their website to transmit, receive, store, or display confidential or sensitive information such as passwords, credit card or bank account numbers, social security numbers, and so on, needs to use an SSL Connection. Fri, 20 Oct 2017 15:49:25 GMT http://bucarotechelp.com/networking/security/81022602.asp A multi-layered approach can be tailored to different levels of security. Not every asset needs to be completely secure; instead, only the most business critical assets, such as proprietary and confidential information, need be protected by the most restricted settings. Thu, 05 Oct 2017 17:03:54 GMT http://bucarotechelp.com/networking/security/81052602.asp A recent IBM study and revealed that 81% of organizations reported their employees are using their personal mobile devices to connect to "company resources". But BYOD (Bring Your Own Device) doesn't necessarily equate to network security problems. Wed, 05 Jul 2017 13:27:09 GMT http://bucarotechelp.com/networking/security/81052702.asp In this article we cover the basics on Address Resolution Protocol (ARP), Media Access Control Addresses (MAC), Wireless (WiFi), and layer 2 communications. I explain how a 'Man in the Middle Attack' works. The common name for this is ARP poisoning, MAC poisoning, or Spoofing. Tue, 04 Jul 2017 19:35:27 GMT http://bucarotechelp.com/networking/security/81070301.asp Attacks against networks are increasing because attackers find many networks are not properly patched and secured behind a firewall. Once attackers have compromised a machine, they simply install a bot on it to establish communication. The botnet is then controlled by the attacker. Sun, 28 May 2017 16:48:45 GMT http://bucarotechelp.com/networking/security/81070501.asp The methods used to launch a DoS (Denial of Service) attack can be divided into three essential categories: Flood attacks, Logic attacks, and Distributed Denial-of-Service (DDoS) attacks. Attackers may use each method to compromise or completely shut down an Internet server. Fri, 26 May 2017 17:39:18 GMT http://bucarotechelp.com/networking/security/81091801.asp The construction of the Digital Signature entails applying a hash function to the message by concatenation of the message with a known secret key and then applying a mathematical function which will produce a fixed length output known as the digest. Mon, 13 Mar 2017 17:27:37 GMT http://bucarotechelp.com/networking/security/81102101.asp No book nor any checklist or method can show you all the kinds of harm that can happen to computer assets. There are too many ways to interfere with your use of these assets. Two information sources are of value however. The CVE list and the CVSS measurement system. Tue, 07 Feb 2017 20:39:51 GMT http://bucarotechelp.com/networking/security/81110001.asp As a Professional Ethical Hacker you need to understand the various kind of hacking, which can be classified into White Hat, Grey Hat and non-ethical hacking. Only a deep knowledge can help in combating any sort of breach or unauthorised access in the information system. Tue, 31 Jan 2017 15:08:59 GMT http://bucarotechelp.com/networking/security/82000501.asp A Rogue access point is any wireless access points that exist on your network without the consent of the business. If an insider were to use a laptop to act as an access point, regardless of the intent, it poses a security risk. Mon, 26 Dec 2016 15:13:06 GMT http://bucarotechelp.com/networking/security/82001001.asp Never store a user's password as plain-text. A Hashing algorithm is similar to encryption. To increase the security of a hashed password, a random value called salt is added to the hash. Wed, 21 Dec 2016 15:54:50 GMT http://bucarotechelp.com/networking/security/82002601.asp PKI (Public Key Infrastructure) uses a public and private key pair obtained and shared through a trusted authority. Public and private keys are used to lock (encrypt) and unlock (decrypt) data. Certificates are the cornerstones of the PKI. Mon, 05 Dec 2016 18:01:15 GMT http://bucarotechelp.com/networking/security/82010002.asp The acronym AAA stands for three network procedures and processes that help to make a network more secure and reliable. The A's stand for Authentication, Authorization, and Accounting. The difference between authentication, authorization, and accounting is described here. Wed, 30 Nov 2016 19:55:42 GMT http://bucarotechelp.com/networking/security/82021301.asp Access control is the method used to block or allow access to a network or network resources. Two types of access control are rule-based and role-based. The difference between rule-based and role-based access control is explained here. Tue, 18 Oct 2016 17:00:27 GMT http://bucarotechelp.com/networking/security/82060501.asp An ethical hacker is a person who performs most of the same activities a hacker does but with the owner or company's permission. Ethical hackers are usually contracted to perform penetration tests or security tests. Sat, 25 Jun 2016 15:47:16 GMT http://bucarotechelp.com/networking/security/82061101.asp Today's business networks consist of numerous remote access connections from employees and outsourcing firms. Often, the security risks from connections outside the network are overlooked. The proper security solution for your organization will neutralize virtually all of these threats to your network. Sun, 19 Jun 2016 15:00:57 GMT http://bucarotechelp.com/networking/security/82101002.asp When it comes to small or medium enterprise the impact of security threat is even more severe. Cyber criminals love to target small business largely due to the fact that SMBs cannot afford to implement strong security protocols. Fri, 19 Feb 2016 22:21:08 GMT http://bucarotechelp.com/networking/security/82102103.asp This book is certified to comply fully with the NSTISSI 4011 federal training standard for information security professionals. The text emphasizes both the technical and non-technical aspects of information security and uses practical examples and real-world assessment tools. Mon, 08 Feb 2016 18:51:26 GMT http://bucarotechelp.com/networking/security/85092003.asp In terms of raw power and features, SNORT, the most commonly used Open Source Intrusion Detection System, (IDS) has begun to eclipse many expensive proprietary IDSes. In terms of documentation or ease of use, however, SNORT can seem overwhelming. Wed, 11 Mar 2015 21:55:59 GMT http://bucarotechelp.com/networking/security/85092002.asp The ISO 27000 standard developed by The (IEC) and (ISO) is an internationally accepted industry standard for Information Security Management (ISM). Wed, 11 Mar 2015 18:48:49 GMT http://bucarotechelp.com/networking/security/85092001.asp Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching and matching, and can be used to detect a variety of attacks and probes. Wed, 11 Mar 2015 14:42:43 GMT http://bucarotechelp.com/networking/security/85092601.asp Have you ever wondered if someone else is on your wireless network, with out your knowledge, watching every site you visit or stealing account information? Thu, 05 Mar 2015 15:17:19 GMT http://bucarotechelp.com/networking/security/85092701.asp A packet sniffer is a program or device that eavesdrops on network traffic and gathers data from packets. Malicious intruders may install packet sniffers in order to retrieve usernames and passwords. Wed, 04 Mar 2015 15:34:37 GMT http://bucarotechelp.com/networking/security/85100802.asp A firewall is able to achieve its functions through the capabilities it is able to provide. These are the capabilities determine the type of firewall to needed to meet a certain and specific set of security needs. Fri, 20 Feb 2015 15:20:24 GMT http://bucarotechelp.com/networking/security/86001301.asp A security policy is a statement of what your systems' users are and are not allowed to do. Make sure that the policy is consistent and clearly-written. Thu, 18 Dec 2014 15:45:49 GMT http://bucarotechelp.com/networking/security/86001401.asp Network security covers a multitude of issues. The first issue to address is physical access to your network. Wed, 17 Dec 2014 15:40:14 GMT http://bucarotechelp.com/networking/security/86011202.asp Hackers can be crippling for small businesses who, many times, never recover from the theft. Here are some precautions you can take to help keep your business protected against hackers. Tue, 18 Nov 2014 21:24:18 GMT http://bucarotechelp.com/networking/security/86011301.asp The original design of the DNS did not include robust security features. DNS vulnerabilities open networks to various types of attacks, cache poisoning and DDoS attacks being the most common. Mon, 17 Nov 2014 17:45:02 GMT http://bucarotechelp.com/networking/security/86012001.asp DDOS attacks are costly in terms of lost revenue and added costs. DDoS attack protection plays a fundamental role in keeping businesses online. Here are some strategies that can be used to protect against a DDoS attack. Mon, 10 Nov 2014 17:24:35 GMT http://bucarotechelp.com/networking/security/86022401.asp Cross-site scripting attacks are used to steal information from your browser when you visit websites such as ecommerce stores, forums, and even your email accounts. Tue, 07 Oct 2014 15:04:06 GMT http://bucarotechelp.com/networking/security/86022501.asp SQL injection can be used by an attacker to inject code into a website in order to access and manipulate the database behind the site. Mon, 06 Oct 2014 20:54:25 GMT http://bucarotechelp.com/networking/security/86110001.asp In a Man in the Middle (MIM) attack the hacker places eavesdropping equipment between the sending device and the receiving device. He intercepts the data, records it and possibly modifies it, then sends it on to the intended receiving device. Fri, 31 Jan 2014 18:53:12 GMT http://bucarotechelp.com/networking/security/88010001.asp This book serves as an introduction to the steps required to complete a penetration test or perform an ethical hack. You learn how to properly utilize and interpret the results of modern day hacking tools; which are required to complete a penetration test. Fri, 30 Nov 2012 17:34:24 GMT http://bucarotechelp.com/networking/security/88022003.asp As technology and computer networks grow sophisticated over time, so do the intrusion techniques that scammers use in order to infiltrate them. If you're serious about protecting your company's private information , you need to do a lot more than have a router and firewall in place. Thu, 11 Oct 2012 18:59:19 GMT http://bucarotechelp.com/networking/security/88041102.asp The purpose of a network firewall is to protect computer and IT resources from malicious sources while allowing internal network users to access the Internet. For this purpose it uses an Access Control List (ACL). Tue, 28 Aug 2012 19:22:40 GMT http://bucarotechelp.com/networking/security/88041601.asp A DMZ (Demilitarized Zone) or Perimeter Network is the area between the firewall that protects the network from untrusted external networks (the Internet) and the firewall that protects the internal network. Wed, 15 Aug 2012 17:49:15 GMT http://bucarotechelp.com/networking/security/88080401.asp A Denial of Service Attack is when a hacker attempts to consume such a large amount of a server's resources that it's services will be unavailable to its intended users. For example a DoS attack against a web server attempts to prevent it from serving web pages to legitimate Internet clients. Thu, 26 Apr 2012 18:42:52 GMT http://bucarotechelp.com/networking/security/88081902.asp "Most organizations use both IDS and an IPS. The IPS automatically blocks attacks where it is accurate, while the IDS logs and notifies network administrators of suspicious activity so they can use their judgment as to what countermeasures to take. Wed, 11 Apr 2012 19:18:25 GMT http://bucarotechelp.com/networking/security/88082803.asp Nessus is a network vulnerability scanning program that scans network hosts for vulnerabilities and generates reports on its findings. Mon, 02 Apr 2012 19:38:16 GMT http://bucarotechelp.com/networking/security/88090401.asp When hackers attempt to gain unauthorized access to a computer on the Internet the first things they do is look for open ports. NMAP is a free and open source port scanner that hackers can use to automate the process of finding open ports to attack. Tue, 27 Mar 2012 14:43:14 GMT http://bucarotechelp.com/networking/security/88090504.asp A HoneyPot is a storage area on a network that has fake confidential and valuable data used to trick hackers. Mon, 26 Mar 2012 19:36:00 GMT http://bucarotechelp.com/networking/security/88091901.asp Filtering allows network administrators to control which packets are permitted or denied in or out of a network. It can be used to control how much bandwidth can be used by parts of a network, but is more often used to provide security for a network. Mon, 12 Mar 2012 16:42:19 GMT http://bucarotechelp.com/networking/security/88100904.asp A firewall can detect specific application protocol content and filter out any applications that exhibits certain characteristics. A proxy server sits between hosts and server that filters requests by checking IP Addresses, Protocol and application content. Mon, 20 Feb 2012 23:41:34 GMT http://bucarotechelp.com/networking/security/89112701.asp This article discusses how to secure your home and business wireless network. The process of a client associating and authenticating to an access point is standard. The security requirements vary from a home network, small business network and government departments requiring stringent network security. Tue, 4 Jan 2011 16:57:08 GMT http://bucarotechelp.com/networking/security/90000801.asp Enterprise companies today employ firewalls that inspect sessions between external and internal hosts and devices. The firewall filters traffic by examining the source and destination IP addresses, application port and protocol port before making a decision whether to permit or deny a session or specific traffic. Thu, 23 Dec 2010 14:21:03 GMT http://bucarotechelp.com/networking/security/90020601.asp These are the five primary security groups that should be considered with any enterprise security model. These include security policy, perimeter, network, transaction and monitoring security. These are all part of any effective company security strategy. Mon, 25 Oct 2010 18:51:58 GMT http://bucarotechelp.com/networking/security/94041403.asp If you use a wireless network, chances are good it is not secure. If you don't make some important configuration changes on your wireless router after installing it, your wireless network is wide open to hackers, curious neighbors and people who would rather use your broadband internet service instead of buying their own. Wed, 13 May 2009 18:14:36 GMT http://bucarotechelp.com/networking/security/94102501.asp Before the IEEE completed the 802.11i standard the Wi-Fi Alliance released WPA. After the release of the IEEE 802.11i standard, the Wi-Fi Alliance released WPA2 which is compatible with both the 802.11i standard and WPA. Wed, 13 May 2009 18:14:36 GMT http://bucarotechelp.com/networking/security/94111101.asp There are two kinds of key encryption: private key and public key. In private key encryption a single key is used. Public key encryption uses two keys. One key, called the private key can only be used to decrypt a document. The other key, called the public key, can only encrypt a document. Wed, 13 May 2009 18:14:36 GMT http://bucarotechelp.com/networking/security/95001601.asp If your network is compromised, identity thefts could use your company's customers credit card numbers and social security numbers to destroy their lives. And it's not only your company's customers who are going to suffer. When the source of the security breach is traced to your company, the result will be a negligence lawsuit. Wed, 13 May 2009 18:14:36 GMT http://bucarotechelp.com/networking/security/95091702.asp A firewall provides security by controlling access between a network and an untrusted network. A firewall can be a hardware device, software, or combination of hardware and software. Wed, 13 May 2009 18:14:36 GMT http://bucarotechelp.com/networking/security/97060410.asp Network security starts with physical security. Network components such as servers, hubs, and routers should be located in a secure equipment room. Part of physical security is protecting your cable plant from damage and electronic eavesdropping. Wed, 13 May 2009 18:14:36 GMT