Security Basics mailing list archives
Re: How to prevent zero day attacks
From: "Littlefield, Tyler" <tyler () tysdomain com>
Date: Tue, 22 May 2012 09:05:35 -0600
On 5/22/2012 12:04 AM, amishra.jsr () gmail com wrote:
Hello,
Traditionally all the anitvirus, IPS works using signature based technique. This doesn't help in zero day attack.
Therefore, what can be done to prevent zero-day attacks?
That's kind of the point of a 0-day attack. People don't know about it and thus, can't prevent it.
You've got a few things you can do to help limit it though.1) Keep your attack surface small. If you don't need 1000 ports open, don't open those. If something does not need to be accessed on the internet (but only on your internal network), limit it.
2) Use IDS to help keep trakc of what is going on.There's of course a lot more, but I think the attack surface and ids+firewall is the most important.
HTH,
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- How to prevent zero day attacks amishra . jsr (May 22)
- Re: How to prevent zero day attacks AK (May 22)
- Re: How to prevent zero day attacks Cody Alexander (May 22)
- Re: How to prevent zero day attacks Littlefield, Tyler (May 22)
- Re: How to prevent zero day attacks Brandon Edmunds (May 22)
- Re: How to prevent zero day attacks Nathan Sherlock (May 22)
- RE: How to prevent zero day attacks David Gillett (May 22)
- Re: How to prevent zero day attacks GreyHat LispHacker (May 23)
- Re: How to prevent zero day attacks Peter Thomas (May 25)
- RES: How to prevent zero day attacks Fábio Soto (May 28)
- <Possible follow-ups>
- Re: How to prevent zero day attacks securityfocus (May 22)
- Re: How to prevent zero day attacks Matt J. Corrigan (May 22)
- Re: How to prevent zero day attacks synja (May 22)
- Re: How to prevent zero day attacks Stephanus J Alex Taidri (May 22)
(Thread continues...)
- Re: How to prevent zero day attacks AK (May 22)