I found conflict between Foudnstone and Shavlik when Foundstone reported missing patch while Shavlik reported patch installed. The bad news is you have no clue how Foundstone determines that so I had to call the support. Fourtunately the support is quite helpful and here is the signature they are looking for:
IM risks
Here are the risks presented by IM:
1. Viruses and worms over IM.
It provide new spreading path and faster than traditional path.
2. Identity theft/authentication spoofing
Identify of public IM users is not controlled by corporate security measures.
3. Firewall tunnelling:
IM software are designed to bypass firewall/proxy controls. But if you are not limiting employee's Internet usage by firewall control, this won't apply.
VA and Security Risk Management
Risk matrix
ossec application
1. Some fine tune examples:
vmware price list
From http://storagemojo.com/?page_id=415
StorageMojo.com Is Not A Dealer or Reseller. Please Do Not Request Bids.
Please read the Price List intro (click on Price List above) to understand these numbers and their limitations.
Please comment if this list isn’t meeting your needs. Updated about every 6 months. Let me know if there is something you are interested in that isn’t on the list. You can comment or email.
SNMP OID for Dell switch fdb table
The dot1qTpFdbTable (mib-2.17.7.1.2.2) contains the information regarding the MAC addresses learned the switch. The dot1qTpFdbPort OID (mib-2.17.7.1.2.2.1.2) lists the bridge address table. When you walk this OID, the values returned represent the MAC addresses in decimal form. You need to convert the last 6 decimal values to hex to get the MAC address. The INTEGER value is the port number on which the address was learned.
I tried this on both Dell powerconnect 3448 and 5324. They both works as for example:
Security reference from http://www.linuxquestions.org/questions/showthread.php?t=45261
|
This is from http://www.linuxquestions.org/questions/showthread.php?t=45261 and this local copy is for my convenience. Security references |
IDS and IPS
IDS and IPS application tips
Links:
- Snortcenter original homepage
- Snortcenter v2 at sf.net
- http://www.securityfocus.com/ids
- http://midas-nms.sourceforge.net/
regular expression
tips tricks
Recent blog posts
- Vmware Server Management Service Restart Tips
- Triple Sure Your Web Servers Are NOT the Open Proxy
- What is the proper way to install HP Color LaserJet CM1312nfi MFP network printer
- ModSecurity Community Console Application Tips
- dailyD is coming to Canada
- Review of PMTU - Fix Broken Communication Caused by VPN
- Dance with McAfee
- Qinghai Earthquake Memorial Day - April 21st
- Add Virtual Disk on the Fly with Free XenServer
- Recent EMR Related Learning Material
Syndicate
Recent comments
3 hours 44 min ago
1 day 8 hours ago
2 days 15 hours ago
3 days 12 hours ago
1 week 2 hours ago
1 week 20 hours ago
1 week 6 days ago
2 weeks 2 days ago
2 weeks 2 days ago
2 weeks 2 days ago