WindowSecurity.com Articles & Tutorials Archive

Articles & Tutorials by date (Click here to sort Articles & Tutorials by topic)

2009
[	5	]	January, 2009	[	5	]	February, 2009	[	5	]	March, 2009
[	6	]	April, 2009	[	5	]	May, 2009	[	5	]	June, 2009
[	5	]	July, 2009	[	5	]	August, 2009	[	5	]	September, 2009
[	5	]	October, 2009	[	3	]	November, 2009
2008
[	8	]	January, 2008	[	6	]	February, 2008	[	6	]	March, 2008
[	11	]	April, 2008	[	6	]	May, 2008	[	7	]	June, 2008
[	8	]	July, 2008	[	6	]	August, 2008	[	6	]	September, 2008
[	7	]	October, 2008	[	6	]	November, 2008	[	5	]	December, 2008
2007
[	10	]	January, 2007	[	9	]	February, 2007	[	8	]	March, 2007
[	6	]	April, 2007	[	8	]	May, 2007	[	6	]	June, 2007
[	7	]	July, 2007	[	11	]	August, 2007	[	7	]	September, 2007
[	12	]	October, 2007	[	11	]	November, 2007	[	7	]	December, 2007
2006
[	13	]	January, 2006	[	9	]	February, 2006	[	11	]	March, 2006
[	9	]	April, 2006	[	12	]	May, 2006	[	10	]	June, 2006
[	9	]	July, 2006	[	11	]	August, 2006	[	9	]	September, 2006
[	10	]	October, 2006	[	11	]	November, 2006	[	9	]	December, 2006
2005
[	9	]	January, 2005	[	11	]	February, 2005	[	12	]	March, 2005
[	12	]	April, 2005	[	11	]	May, 2005	[	14	]	June, 2005
[	12	]	July, 2005	[	14	]	August, 2005	[	10	]	September, 2005
[	10	]	October, 2005	[	8	]	November, 2005	[	9	]	December, 2005
2004
[	4	]	January, 2004	[	3	]	February, 2004	[	5	]	March, 2004
[	3	]	April, 2004	[	6	]	May, 2004	[	9	]	June, 2004
[	9	]	July, 2004	[	8	]	August, 2004	[	8	]	September, 2004
[	7	]	October, 2004	[	9	]	November, 2004	[	9	]	December, 2004
2003
[	6	]	January, 2003	[	5	]	February, 2003	[	10	]	March, 2003
[	8	]	April, 2003	[	15	]	May, 2003	[	8	]	June, 2003
[	11	]	July, 2003	[	5	]	August, 2003	[	6	]	September, 2003
[	13	]	October, 2003	[	5	]	November, 2003	[	4	]	December, 2003
2002
[	1	]	March, 2002	[	9	]	April, 2002	[	7	]	June, 2002
[	29	]	July, 2002	[	7	]	August, 2002	[	4	]	September, 2002
[	537	]	October, 2002	[	10	]	November, 2002	[	8	]	December, 2002
2001
[	6	]	February, 2001	[	1	]	May, 2001	[	1	]	October, 2001
2000
[	129	]	February, 2000	[	188	]	April, 2000	[	5	]	September, 2000
[	2	]	December, 2000

Articles & Tutorials for June, 2004

Software Review: LANguard N.S.S. 5: Date - Jun 30, 2004; Author - Deb Shinder; Section - Articles / Product Reviews; We’re big fans of the security scanner concept; this is software that allows you to take proactive measures to protect your network instead of waiting for hackers to discover where you’re vulnerable. In order to outwit the hackers, you have to be able to think like a hacker – but merely thinking isn’t enough. You must also be able to simulate the types of attackers that hackers use. A security scanner automates the process and makes it possible for you to find the “weak links” in your network’s security more quickly and easily. In this article, we briefly review the latest incarnation of LANguard N.S.S., version 5, focusing especially on what’s new and what those new features do for you.
Using Client Certificate Authentication with IIS 6.0 Web Sites: Date - Jun 24, 2004; Author - Thomas Shinder; Section - Articles / Web Server Security; In spite of the fact that there’s no such thing as a secure network, there are still a lot of things you can do that doesn’t require you to take a second mortgage on your home and thousands of man-hours. This is especially true when it comes to providing secure access to Microsoft IIS Web servers.
Windows 2000 and 2003 Server Physical/Logical Security Primer (Part 1): Date - Jun 22, 2004; Author - Robert J. Shimonski; Section - Articles / Misc Network Security; As more and more advancements are made on security in the ‘logical’ sense (which is to implement access control rules on Firewalls, to implement IDS (Intrusion Detection) on your hosts and networks, to set up GPOs on your servers, there is little said about the actual ‘physical’ security of your systems and the site in which they are located. In this three part article, we will cover all the aspects of physical security you should be paying attention to as a security professional working with Windows based servers, or any other system for that matter.
Microsoft Windows and the Common Criteria Certification Part I: Date - Jun 17, 2004; Author - Robert J. Shimonski; Section - Articles / Misc Network Security; In today’s computer networks, it is important to start to concern yourself with another level of detail in security other than how to ‘harden a system’ by killing unneeded services or adding yet another service pack or hotfix to your system(s). In this article set, we will explore Common Criteria Certification, what it is and what it means.
Intrusion Detection Systems (IDS) Part 2 - Classification; methods; techniques: Date - Jun 15, 2004; Author - Przemyslaw Kazienko & Piotr Dorosz; Section - Articles / Intrusion Detection; Due to a growing number of intrusion events and also because the Internet and local networks have become so ubiquitous, organizations are increasingly implementing various systems that monitor IT security breaches. This is the second article devoted to these systems. The previous article dealt with IDS categorization and architecture. At this point we will provide further in depth guidance. This includes an overview of the classification of intrusion detection systems and introduces the reader to some fundamental concepts of IDS methodology: audit trail analysis and on-the-fly processing as well as anomaly detection and signature detection approaches. We will also discuss the primary intrusion detection techniques.
Comparing VPN Options: Date - Jun 10, 2004; Author - Deb Shinder; Section - Articles / Firewalls & VPNs; Virtual private networking has become necessity for business users who need to remotely access their files. Of course, they could dial in directly to a remote access server, but that solution has a couple of significant drawbacks. The solution, of course, is a VPN connection. This article will discuss the different VPN options available.
Secure Installation of Microsoft SQL Server 2000: Date - Jun 08, 2004; Author - Thomas Kopacz; Section - Articles / Misc Network Security; In this article I’d like to introduce you to a way of installing the SQL server, which will guarantee a high level of the service’s security.
Deciphering Authentication Events on Your Domain Controllers: Date - Jun 04, 2004; Author - Randall F. Smith; Section - Articles / Authentication, Access Control & Encryption; Beginning with Windows 2000, Microsoft introduced a new audit policy called “Audit account logon events” which solved one of the biggest shortcomings with the Windows security log. Until this new category it was impossible to track logon activity for domain accounts using your domain controllers’ security logs. This article will explain how to decipher authentication event on your domain controllers.
SSL Acceleration and Offloading: What Are the Security Implications?: Date - Jun 02, 2004; Author - Deb Shinder; Section - Articles / Web Server Security; Secure Sockets Layer (SSL) is a popular method for encrypting data transferred over the Internet. It is commonly used to provide secure transfer of credit card information and other sensitive data in an e-commerce situation. SSL can also be used to create a virtual private networking (VPN) tunnel, as an alternative to “old standbys” IPSec and PPTP. I will discuss SSL VPNs in next month’s article titled VPN Options.