Re: A good router
From: Duane Arnold (notme_at_notme.com)
Date: 05/29/04
- Next message: Alan Illeman: "Re: Kerio 2.1.5 Vulnerability"
- Previous message: Lars M. Hansen: "Re: A good router"
- In reply to: BW~Merlin: "Re: A good router"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 29 May 2004 13:46:45 GMT
"BW~Merlin" <s4076794@student.uq.edu.au> wrote in message
news:c9a091$kpa$1@bunyip.cc.uq.edu.au...
> Duane Arnold wrote:
> > BW~Merlin <s4076794@student.uq.edu.au> wrote in news:c99mq6$3i3$1
> > @bunyip.cc.uq.edu.au:
>
> >>I don't know much about routers and
> >>know a little about home security (like windows is bad and when my new
> >>pc comes Linux's goes on it)
> >
> >
> > You know nothing about security making that statement as a Windows NT
> > based O/S such as Win NT 4.0, 2K, XP, or 2K3 can be secured if one knows
> > what he or she is doing to secure the O/S. I have no problems with
> > security of any Windows NT based O/S machine on my network. However,
> > there is some learning one must face in the area and the link is a push.
> >
>
> Ok maybe I should have said I know a bit more about security then I said
> above but not a lot (depending on what you think is a lot and what is
> not) As for the comment about windows being bad well its just I’m feed
> up with windows as I have spent the past month cleaning people's
> computers of sasser, welcha and blaster worms and trying to explain the
> concept of windows updates to them. I currently run sygate 5.5 free
> version with NAV 2003 with F-Prot for dos as on demand scanner. I also
> use spybot S&D, spywareblaster, IE-SPYAD, HOST files and when I get the
> money ill be getting TDS 4 and Wormgard again (free trial ran out but
> made me want to get them to add more layers of defence) as well I use
> myself (you are the most important security tool you have). I am
> looking for the router to provide additional protection to my home
> network. Most of the above security products stop spyware and related
> junk but I’m looking for some more protection to stop unwanted traffic
> (I keep getting port scanned and it may only be a matter of time before
> one of those scans turns a bit more nasty) and intrusions. I also have
> visited blackvipers website and closed down unneeded processes (on my XP
> computer) such as remote assistance and so on. I think the router is
> the next step in securing my computers but as I said I don’t know much
> about them and I wont be able to administrate it all the time so I need
> something that can be plugged in, configured briefly and left to the
> next time I can get back to it and tightened things up a bit more.
Any NAT router provides the plug it up and go with instant protection from
the Internet. Some have a little more features than others.
Well, instead of installing a bunch of *junk* on the machine, it may be best
to spend the time to understand what the O/S has to offer and what it can
do.
The Windows XP Professional Resource Kit book ISBN 0-7356-1974-3 has
information and concepts that can be applied to XP Home as well is a good
place to start in understating the O/S and its security features.
In addition to that, Windows Security Resources Kit book ISBN 0-7356-1868-2
is a good place to start in understanding and implementing the security
features of the Windows NT based platforms. Both books come with a CD to
install or configure existing O/S security features.
You will then start to look at things a little different like seeing IPsec
that's on the O/S to better secure the O/S and the LAN behind a NAT router
or FW appliance.
http://www.microsoft.com/technet/itsolutions/network/security/ipsecld.mspx
http://www.petri.co.il/block_ping_traffic_with_ipsec.htm
http://www.analogx.com/contents/articles/ipsec.htm
http://www.securityfocus.com/infocus/1559
That' just part of what can be done at the O/S level.
Yes, you can install all the other stuff. But the bottom line is that the
buck stops at the O/S. It don't stop anywhere else. The router, AV, little
PFW and all that other junk is secondary to the O/S. If the O/S is not
secure, than nothing on the machine is secure.
I like the Host as it's a O/S feature. :)
This may help you better understand what a network FW is suppose to do.
http://www.firewall-software.com/firewall_faqs/what_does_firewall_do.html
You can look into Wallwatcher if you get a Linksys or KWIW Syslog daemon,
which works with several makes and models of routers and FW appliances both
are free, and you can review traffic to and from the network.
Duane :)
- Next message: Alan Illeman: "Re: Kerio 2.1.5 Vulnerability"
- Previous message: Lars M. Hansen: "Re: A good router"
- In reply to: BW~Merlin: "Re: A good router"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
