Network

Download Free Network Security Outsourcing Agreement

- Aims of the agreement
- Term of agreement
- Scope of services
- Provider’s responsibilities
- Bank’s responsibilities

Download Free Wireless Network Security Configuration Checklist

Updating default passwords.
Each WLAN device comes with its own default settings, some of which inherently contain security vulnerabilities. The administrator password is a prime example. On some APs, the factory default configuration does not require a password (i.e., the password field is blank). Unauthorized users can easily gain access to the device if there is no password protection.

Establishing proper encryption settings.
Encryption settings should be set for the strongest encryption available in the product, depending on the security requirements of the agency. Typically, APs have only a few encryption settings available: none, 40-bit shared key, and 104-bit shared key (with 104-bit shared key being the strongest). Encryption as used in WEP, simple stream cipher generation, and exclusive-OR processing does not pose an additional burden on the computer processors performing the function.

Controlling the reset function.
The reset function poses a particular problem because it allows an individual to negate any security settings that administrators have configured in the AP. It does this by returning the AP to its default factory settings. The default settings generally do not require an administrative password, for example, and may disable encryption. An individual can reset the configuration to the default settings simply by inserting a pointed object such as a pen into the reset hole and pressing

Using MAC ACL functionality.

Objectives:
- The organization assigns the most restrictive set of rights/privileges or accesses needed by users for the performance of specified tasks; and
- The information system enforces the most restrictive set of rights/privileges or accesses needed by users

Action Steps:
- Examine access control policy, procedures addressing least privilege,

1. User Mobility
Users can access files, network resources, and the Internet without having to physically connect to the network with wires. Users can be mobile yet retain high-speed, real-time access to the enterprise LAN.

2. Rapid Installation
The time required for installation is reduced because network connections can be made without moving or adding wires, or pulling them through walls or ceilings, or making modifications to the infrastructure cable plant. For example, WLANs are often cited as making LAN installations possible in buildings that are subject to historic preservation rules.

3. Flexibility
Enterprises can also enjoy the flexibility of installing and taking down WLANs in locations as necessary. Users can quickly install a small WLAN for temporary needs such as a conference, trade show, or standards meeting.

1. Spammers invest in ways to get their email past your defenses.
They have a two-pronged strategy. First, they misspell words, use images, and do everything they can to get past the text filters that most people use. If they went to all that effort, but sent their email messages from only a few computers, it would be easy to knock those computers off the internet or blacklist them. Therefore, spammers employ a second technique—sending their spam from many different "zombie" computers. Because spammers control a shifting pool of hundreds, thousands, or even hundreds of thousands of zombie machines, their operations are very hard to shut down. Spammers may live in places where their money goes further than it would in New York City. It may make sense for them to invest months of effort for a few thousand dollars. This "cost advantage" enables attacks that many people would dismiss as not worth the effort.

2. A lots of countries where spamming is not illegal
Some countries have made sending spam illegal. The problem is that in lots of other places, spamming is not illegal. Even where it is illegal, there is competition for police resources. Spam is not as important to the police as a mugging or an assault. Catching one spammer takes much time and effort, and the payoff may seem small, especially if the spammer is in another country. Thus, the risks to a spammer are low, because the deterrent effect of the law is so small.