Re: What to use, what to use?
From:Date: 08/03/02
- Next message: James Smithsonian: "Help.. Blocking P2P (kazaa, morpheus) and IM (AIM, ICQ, YAHOO)"
- Previous message: Biff: "Re: ZAPro stopping ICS in High Security"
- In reply to: Duane Arnold: "Re: What to use, what to use?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 03 Aug 2002 01:01:10 GMT
Clarification, if user password has expired, can user give new password when
he tries to logon to FTP site?
"Duane Arnold" <darnold92@Insightbb.com> wrote in message
news:ugF29.130539$uh7.20896@sccrnsc03...
> I am glad you got the point, not many people do. I have looked at Snort
and
> I like it. I will be putting it on machine that I am getting ready as the
> Family/friends FTP/Website. So, the machine will be opened to the public.
>
> I will most likely put the machine in the DMZ on the Linksys router. I am
> not sure about the DMZ thing as to if I really want to do that. At least
> behind the router on a static IP, it's got some additional protection. The
> static IP will be blocked by the other machines on my home network.
>
> On a Win2k machine for FTP user using a user-id and password, I hear that
> you can set the account to have it's password expire. Do you know how or
> what needs to be done to make that happen, if possible?
>
> If there is any other advise you can give to better protect the machine, I
> would appreciate it.
>
> Duane
>
> "Nard" <newspost@nardware.co.uk> wrote in message
> news:pan.2002.08.01.10.01.58.928065.1340@nardware.co.uk...
> > I think we get the point
> >
> > I am making the following assumptions...
> >
> > A) This is a home user that only rearly needs internet access to "Surf
the
> > web" Email etc
> > B) This person will not be hosting externaly accessable services to a
> > large userbase.
> >
> > I can make this assumption because of tha latency associated with
satalite
> > links is huge and can make life a nightmare if you want to do anything
> > else, eg VPN, Terminal Services etc.
> >
> > As far as IDS Systems go, I beleive that "IDS" has become a bit of a
buzz
> > word at the moment, The amount of administerative overhead that
assiciated
> > with maintaining a quality IDS is far from minimal. Anyway as this user
is
> > familiar with smoothwall, i can assume that if one is required, he would
> > feel at home using a Win32 port of snort from silicon defence.
> >
> > ( http://www.snort.org ).
> >
> > On another note, Why do you not use this machine as your webserver
instead
> > of forwarding data to another host? If solid security is an important
fact
> > ( as it allways is ) then considder creating an DMZ.
> >
> >
> > !Web!---!firewall/webserver!------!Firewall!-----!protected!
> >
> > I know it takes a little more work, but as you know it, you could use
> > smoothwall on the protected firewall.
> >
> > Just to inforce a point, Sat links have latency involved, I do not know
> > how one will perform as a webserver. Win2k supports TCP Window scaling,
> > where you can increase the window size above the maximum. This may give
> > you a little performance boost.
> >
> > Check out RFC 1323
> >
> >
> > Hope this helps
> >
> > Nard
> > nard@nardware.co.uk
> >
> >
> >
> >
> > On Fri, 02 Aug 2002 01:48:15 +0100, Duane Arnold wrote:
> >
> > > One other thing, just because you have a software firewall like
Winproxy
> > > or something else, don't think that you cannot be attacked on OPENED
> > > port 80.
> > >
> > > Not NAT, ISP or firewall can check network traffic for malicious
> > > activity, if you have ACCEPTED an IP on port 80. However, an
Intrusion
> > > Detection System will inspect the network packets and block traffic on
> > > an ACCEPTED IP, if a worm, Trojan horse, etc., etc. is found.
> > >
> > > I understand that Linux using IPCOP has IDS. I also know that BlackICE
> > > Defender is an IDS/firewall application and is the only desktop
firewall
> > > application for the Windows platform that has IDS with the firewall.
> > >
> > > So I would think about putting BlackIce IDS/firewall back on your
> > > Webserver machine. BlackIce is on my Webserver machines
> > >
> > > Duane
> > >
> > >
> > > "Jim Wightman" <jim.wightman@neverlandsystems.com> wrote in message
> > > news:37d3b6c7.0207312304.2acd0ee6@posting.google.com...
> > >> Hi everyone,
> > >>
> > >> A piece of advice please, if I may ask of it.
> > >>
> > >> I'm after a software based firewall solution. Until recently I've
been
> > >> using Smoothwall which I was more than satisfied with...unfortunately
> > >> I've moved house and am having to use Satellite Broadband so I need a
> > >> windows machine to drive the connection.
> > >>
> > >> So I reformatted my Smoothie box and installed Windows 2000 Server.
> > >>
> > >> I'm not planning on running any other software on the firewall box.
> > >>
> > >> What I found most useful in Smoothwall (apart from security features)
> > >> is the tunneling features. I could easily tunnel port 80 onto my
> > >> webserver.
> > >>
> > >> I have installed and tried out the free stuff like BlackIce and Tiny
> > >> PF, but neither product seems to provide port forwarding.
> > >>
> > >> I don't mind having to pay for a firewall solution, I just want solid
> > >> security with tunneling. Can you advise on the best solution to go
for
> > >> please?
> > >>
> > >> Thanks in advance,
> > >>
> > >> Jim
>
>
- Next message: James Smithsonian: "Help.. Blocking P2P (kazaa, morpheus) and IM (AIM, ICQ, YAHOO)"
- Previous message: Biff: "Re: ZAPro stopping ICS in High Security"
- In reply to: Duane Arnold: "Re: What to use, what to use?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
