cryptoresync

Windows XP: Surviving the First Day

Scott — Mon, 29 May 2006 06:37:42 +0000

If you have ever been concerned with catching a virus, or having your computer exploited, after completing a fresh install of Windows XP then this guide by the SANS Institute is exactly what you need. Windows XP: Surviving the First Day is written for the average computer user, in order to ensure that they are able to successfully complete an installation of Windows XP without fear of getting 0wned, so to speak.

This is probably one of the best written, well laid out articles on this very subject. Whether you are in to computer security or not, this is a guide that should be followed by all.

Secure Firefox and IM with PuTTY

Scott — Thu, 25 May 2006 11:09:02 +0000

Using public WiFi, while nice because it is free, is a sandbox for hackers to capture data that you might have otherwise thought was secure. Any black hat can use freely available tools that can sniff the data leaving your computer and capture that information so it can be used with malicious intent at a later date. One of the best ways to combat this security risk is by securing Firefox and IM with PuTTY in a sort of makeshift Virtual Private Network (VPN).

There are times when you want to connect to the Internet through unknown and/or insecure networks such as the local Panera or other WiFi hotspot. If you arenâ€™t careful, you might make it all too easy for someone to sniff your connection using Ettercap.

This HOWTO is an easy to read, well written reference guide for setting up Firefox and GAIM so that it uses PuTTY as a sort of proxy server. The only piece missing is the SSH server that you are going to need access to in order for this to work properly. Look around the internet and you should be able to find something that suits your needs.

What is a DMZ?

Scott — Wed, 24 May 2006 06:04:51 +0000

Have you ever wondered what a DMZ is when you hear your information security people talking amongst themselves?

The main purpose for a DMZ is to separate hosts that need to be accessed from an external network from the internal network. This is useful for companies that need to offer information and services to external users like Web, DNS, Mail and FTP access to the outside world. In this case, the hosts on the internal network can initiate communication with the hosts on the DMZ network and hosts from the external network can initiate communication with hosts on the DMZ network. However in most cases hosts from the external network cannot initiate communications with hosts on the internal network and hosts on the DMZ network cannot initiate communications with hosts on the internal network.

If you are interested in information assurance then this article is a good place to start. It is a quality overview of some of the basic scenarios that we run in to when consulting with clients interested in deploying network security measures throughout their enterprise.

Infosecpedia

Scott — Mon, 22 May 2006 04:11:38 +0000

The Infosecpedia looks to be an interesting Wiki project that is dedicated to information security. Apparently the project was started in August 2003 but I just now ran across it. There is a serious deficiency in articles therefore it would be a good idea to hop on over there and contribute if at all possible.