| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
HP-UX
|
|
Linux
|
|
Microsoft
|
|
Router
|
|
Solaris
|
|
Implementing a Strong Password Filter in a NetWare Environment Weak passwords create a large hole in any “defense in depth” policy. Implementing a password filter in the NetWare environment is challenging because there is no strong password filter in Novell Directory Services (NDS). This paper discusses two client-based solutions, and documents a process to implement a strong password filter in the NetWare environment.
By Damien Dinh, 04/17/2004
|
|
Securing Novell NetWare 6 Novell NetWare 6 offers several new services and has displaced the longstanding IPX/SPX protocol with TCP/IP as its primary protocol. These changes have exposed the NetWare servers, long isolated by virtue of the IPX protocol, to more dangers than previous versions. This document will discuss some general and specific procedures, settings and precautions now required to keep the NetWare server secure. This discussion will be limited to the standard services included in NetWare 6 operating system.
By Darren Mattila, 04/17/2004
|
|
Assessing and Securing a Novell Netware Environment This paper is designed to aid a Security Administrator and or Security Auditor in assessing the risks and vulnerabilities of a Novell Netware environment and to aid the administrator in removing, limiting, and/or monitoring those risks. Many tools used in this document are freeware; links to all tools can be found in the reference section.
By Justin Northcraft, 04/17/2004
|
|
Securing a NetWare 6.5 Installation and Server Environment Even though NetWare still supports the more secure IPX/SPX protocol, over the past 6 years Novell has increasingly focused more on NetWare running on the less secure TCP/IP protocol. NetWare 6.5 is the latest OS release from Novell Inc. Novell is actively participating in the Open Source movement and has integrated open source applications such as Apache, Tomcat, MySQL, PERL, PHP and OpenSSH into NetWare 6.5. This paper will focus on how to secure the installation of NetWare 6.5 and a number of applications and services that run on it, including Apache, MySQL, PHP and PERL and OpenSSH. In addition, steps for making a more secure server environment will be reviewed. All of this will create a more secure server environment that enables you to “know thy system.”
By Robert Clarke, 04/17/2004
|
|
Security Best Practice - Novell NetWare 6.5 Remote Management Utilities The purpose of this paper is to investigate the remote management utilities available in NetWare 6.5 and identify ways to limit security risks. Although some general NetWare security issues will be addressed, the paper will focus on the utilities Remote Console (RConsoleJ), NetWare Remote Manager, iManager, iMonitor and OpenSSH.
By Adam Schieman, 04/17/2004
|
|
Mainframe Security featuring CA - Top Secret This document will provide an overview of the current status of mainframe security and a detailed understanding of the CA-Top Secret mainframe security product. It will also provide an overview for using Top Secret and an in-depth guide for auditing and reviewing Top Secret security.
04/15/2004
|
|
Perimeter Defense-in-Depth: Using Reverse Proxies and other tools to protect our internal assets The use of a reverse proxy server to provide defense-in-depth security will be discussed in this paper as a practical security solution for protecting our internal assets. There are several tools available that add obscurity to this process. We had a need to disguise our IBM mainframe yet allow access to personal resources. This paper includes a discussion of some of the methods that were successful and some that did not work. With limited resources, we can still provide additional security in our environments.
04/15/2004
|
|
A Return to Legacy Security One thing that these security systems all have in common is that many companies have been running them for many years. The people who maintain these security systems swear by them. Each one is unique in the way that it secures the mainframe. The purpose of this paper is not to prove that these systems have done the job they have been doing for over 30 years, which is securing the mainframe. The goal here is to show how they can be used as security servers for multiple operating system environments. Let us start off with a little history for those who are not familiar with this class of security software.
04/15/2004
|
|
MacOS X: User Friendlier Security for Unix One of the problems of computer security in practice is providing an easy mechanism for the user of a system to take advantage of the security features present in an operating system. A system may have significant security features, but absent an interface that allows the user to easily make use of those features the effective security of the system may be low. FreeBSD is an Open Source Unix system primarily designed for use as an Internet server or development system by knowledgeable users. MacOS X (“Jaguar”) is a consumer-oriented system for the Apple Macintosh based in large measure on FreeBSD. In this paper, we explore the additions and modifications Apple has made to the FreeBSD core to enhance the security of the users of MacOS. We begin with a short history of the two systems, and continue with a discussion of installation and administration. In addition to the strictly program based aspects of security we examine how the target marketing of MacOS has affected the effectiveness.
04/15/2004
|
|
Mac OS X 10.1.4: Security Analysis and Recommendations To my knowledge, Mac OS X is the first commercial version of UNIX that ships with important third party security tools like TCP wrappers, OpenSSH, and the packet-filtering IP firewall. Mac OS X also provides the ability to notify users when system updates are available. Apple’s latest OS lags behind other BSD distributions, though, with regards to some security measures. The operating system lacks any method to hide password hashes from unprivileged users, has insignificant password strength requirements, and lacks the ability to use a password hash algorithm other than DES. Some programs unnecessarily have set-UID and set-GID bits set and this also poses potential problems. This paper is an introduction to the security implications of Apple’s latest offering (Mac OS X 10.1.4 at the time of this writing), providing particular focus on NetInfo, Mac OS X’s directory system, and is intended to be a starting point for your own research.
04/15/2004
|
|
Page: 1 2 3 |
