Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: What to buy?

From: krymson () gmail com
Date: Tue, 22 Feb 2011 09:35:05 -0700
Blocking IP: You can't really block this. This is needed to allow routing of packets back to you.

Blocking MAC: I assume you mean the MAC address on the computers. Why would you want to block this? How are they being 
posted to the Internet in the first place? Most outside entities will only see their routing neighbor's MAC(s).

If you're talking about someone external being able to spoof one of your internal IPs and get it passed into your 
network, any modern stateful firewall on your network perimeter (typically inside your demarc or ISP border router) 
should disallow that sort of spoofing by default.

Note: You lost me on the way people get hacked via Facebook/php forums...that would usually be through the web browser 
on the app layer.

If you need a solid stateful firewall to purchase, a low-end Juniper SSG should be relatively easy to handle... With 
250 hosts, I imagine you're behind a firewall of some sort already.


<- snip ->
Hows it going security gurues.

My job is now taking on the security responsibilityes for my network. We have nearly 250 pcs on the network and theres 
about 30 macs too (ugh). I was just doing the network before this but the security guy got fired on the weekend after 
getting caught with drugs.

My boss wants to stop people being able to post their IP number on the internet. I was telling him that you have to 
worry about the MAC numbers getting posted too, otherwise you can get hacked using them if the hackers get those 
numbers. Most people dont really know thats how you can get hacked on facebook or some of the forums (especially php 
forums).

If I wanted to buy something to block these getting posted, what would be the best? Or should I look into doing it 
myself with linux?? Any good books you think I should read about this?

Thanks in advance,
Justin

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: