RSS |
 |
| W O R K S H O P | |
|
|
|
Securing Windows NT Server
April 3, 2000 |
||
|
|
The Evolution of an Exploit Before you dive into lockdown techniques, you must understand how application and system vulnerabilities are discovered and how this knowledge is propagated and used. OS and application vulnerabilities are discovered by widely different individuals--ranging from the talented folks in the "underground" to system and network administrators who have stumbled into bizarre situations. While the manipulation of certain bugs simply results in odd system behavior, other bugs will crash systems entirely. And some even allow for unauthorized administrator-level access. Many of these flaws are reported to vendors initially, but just as many are not. The release strategy surrounding discovered security bugs depends on the person who discovers the flaw. Some people report the problem to the vendor, some send a warning to public forums like Bugtraq (www.securityfocus.com), some code an application or script to automate the exploitation of the bug, and others do all of the above. The vulnerabilities that are not public knowledge--the ones the vendors are unaware of--will always be a problem. As long as vendors continue to release flawed code, there's very little we can do to protect ourselves (short of not using the product). As a community, we will continually fall victim to these attacks, but we can defend ourselves against known vulnerabilities. Most attackers leverage known holes. If a security flaw is known, both system administrators and attackers are likely aware of it. The result is a race against time, pitting the attacker against the system administrator. Whoever strikes first, wins. So if you aren't patching your systems in a timely manner against known problems, you're inviting disaster. The intruder's specialty is watching for new holes and entry methods, so if you're not ready and willing to match wits when that intruder comes for your servers, you will lose. |
|
|
|
PAGE: 1 I 2 I 3 I 4 I NEXT PAGE |
||
Best of the Web
Data deduplication: Declawing the clones
Data deduplication is emerging as a critically important new arrow in the storage administrator's quiver to answer hard questions about the increasing problem in storage growth costs.
Compression, Encryption, Deduplication, and Replication: Strange Bedfellows
One of the great ironies of storage technology is the inverse relationship between efficiency and security: Adding performance or reducing storage requirements almost always results in reducing the confidentiality, integrity, or availability of a system.
WAN Optimization Whitelists and Blacklists
Optimization is a fantastic way of saving money and creating really happy customers at the same time, but it doesn't work flawlessly for all applications.
WAN Optimization as a Managed Service: It's Not About the Cost
This insight examines how organizations outsourcing their WAN optimization initiatives to a third-party go about achieving their goals for application performance, reducing operational costs, and streamlining enterprise infrastructure.
