| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
What is SOCKS? An explanation of the SOCKS protocol (functions, features & benefits) and application proxy gateway systems.
05/20/2004
|
|
Personal Proxy - Online Privacy Protection for Home Users Although online security has drawn increasing attention, online privacy issues have not been well addressed and communicated, especially for home users. Personal information collection is a common business practice for most web sites and this information can be collected without users' knowledge. There are few resources to educate home users effectively on how online privacy can be invaded and what they can do to protect against it. This paper describes certain online information collection methods and related privacy issues and introduces several personal proxy tools, particularly WebWasher in detail, to secure home users' online privacy. It concludes that better and comprehensive home computer security can be achieved when three types of critical security products: personal proxy, personal firewall and anti-virus, all work together.
05/20/2004
|
|
Using ISA Server Logs to Interpret Network Traffic This paper provides an outline of Microsofts Internet Security and Acceleration Server (ISA Server). Firewalls are necessary for a defense-in-depth strategy, Microsoft entered the firewall market with Internet Security and Acceleration Server (ISA Server). ISA Server was a follow-on release of Microsoft Proxy Server and part of the .Net Family. As with most Microsoft products, logging capabilities are included. ISA Server contains detailed security and access logs. You can install ISA Server in three different modes: firewall mode, web caching mode, or integrated mode. In firewall mode, you can secure communication between an internal network and the Internet using rules. You can publish internal servers so that their services are available to Internet users. In web caching mode, you can decrease network bandwidth with ISA Server storing commonly accessed objects locally. You can route web requests from the Internet to an internal Web Server. In integrated mode, all of these features are available.
05/20/2004
|
|
A Reverse Proxy Is A Proxy By Any Other Name This paper will cover the concept of a Reverse Proxy by defining what it is and how it differs from a forward proxy. We will cover the benefits and drawbacks of using this technology as a part of our network infrastructure, along with the security advantages and possible risks. This paper will follow the flow of an HTTP request through the firewall, to the Reverse Proxy, to our backend HTTP servers and then back to the requestor. We will also discuss two different Reverse Proxy infrastructure designs and the pros and cons of each of design. And finally we will cover setting up a working Reverse Proxy using the Apache, showing how the concepts of a Reverse Proxy are implemented.
By Art Stricek, 05/11/2004
|
|
Security considerations with Squid proxy server This paper will cover various security aspects and recommendations to improve Squid's overall security during its installation time. Software configuration parameters and an overview of logging and content filtering software will also be approached.
By Eric Galarneau, 04/30/2004
|
|
Installing and Securing Squid Squid is a high-performance proxy caching server for web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid supports SSL, extensive access controls, and full request logging. By using the lightweight Internet Cache Protocol, Squid caches can be arranged in a hierarchy or mesh for additional bandwidth savings.
By Markus Welsch, 04/18/2004
|
|
HTTP Tunnels Though Proxies This paper discusses the security ramifications of web proxies, including attack methods, authentication, and hardening. Hyper Text Transport Protocol or HTTP is the protocol used for web traffic. Its specification allows the use of proxies. Proxies are used in a large number of companies and network environments to protect internal machines from attack, accelerate web browsing, filter destinations, and to authenticate users. However, due to a weakness in the CONNECT method of HTTP, the proxies are capable of blindly passing more then just HTTP traffic and can be used to check email, connect to P2P (peer to peer) networks, and even allow bidirectional VPN (virtual private networks) traffic to bypass firewalls and other security devices. All that is needed to exploit HTTP tunnels is basic web browsing privileges through a proxy. Detecting this unauthorized traffic is difficult because it is often hidden in ways that make it almost indistinguishable from normal authorized traffic. However, with proper configuration of the proxy server the risks can be minimized.
04/03/2004
|
|
Case Study - Windows 2000 ISA Proxy Server Authentication Inside a DMZ This paper describes the investigation process and implementation of IPSec policies to manage a wide range of communication traffic between two Windows 2000 servers. The use of IPSec allowed us to configure an ISA Proxy server to authenticate user login information back to an internal DC through a high security firewall. Extra configuration involving name resolution and security lockdowns completed our solution for a secure and functional proxy implementation. One of the most difficult aspects of firewall design is balancing security with functionality. In the absence of business requirements it is a straightforward task to design a highly secure firewall and DMZ environment, however, providing functionality to the organization being protected by the perimeter network is every bit as important as providing high security.
04/03/2004
|
|
Anonymizing with Squid Proxy This article has offered a brief overview of how users can configure a simple but secure Web anonymizer using only commonly-used free software. Now Web surfing should be safe from the prying eyes on the local LAN. Readers should be reminded that the use of such set-ups may be prohibited in their workplace. Please, use the proposed setup responsibly without violating your company's ethical guidelines or security policy.
03/22/2004
|
|
Circumventing Access Control Lists by Transparent Proxy - A Case Study Open proxy servers are a well-known security problem that threatens the security of the Internet by making it possible for unscrupulous people to mask their identity while performing any number of malicious acts. Reading about the open proxy problem, one would come to believe that a serious configuration error such as lack of access controls is necessary for a proxy to be abused.
02/21/2004
|
|
Page: 1 2 |
