Sensory Networks: Info Security Products Guide Names Sensory Networks Winner of the 2006 Tomorrow’s Technology Today Award -

Powerful DDoS protection appliances positions netZentry above peers.

Palo Alto, CA (PRWEB) August 15, 2006 — http://www.netzentry.com — netZentry, a leader in advanced network security and an expert in DDoS protection, has been named Web Host Magazine Editor’s Choice for Security Hardware.

"netZentry's security appliances are able to precisely and non-intrusively (detect and mitigate) incoming threats, allowing them to offer their clients unparalleled protection," said Ron Dunlop, managing editor of Web Hosting Magazine. "For their powerful DDoS protection solution, netZentry receives an Editor's Choice Award for Security Hardware for August 2006."

netZentry’s CleanTraffic(TM) DDoS protection appliance differentiates itself from other DDoS protection solutions by providing:
•     Granular, domain-level DDoS detection, tracking and mitigation
•     High scalability for up to 50,000 domains
•     Low total cost of ownership

“netZentry is pleased to accept the Editor’s Choice award for our CleanTraffic DDoS protection appliance,” said netZentry CEO Rangaswamy “Vasu” Vasuvedan. “We are dedicated to providing our customers with the best possible network security, and this award reflects that dedication.”

Web Host Magazine & Buyer's Guide Editors' Choice Awards are given to those Web Host industry companies that provide services and products that are deemed to be above and beyond that of their peers. The Editors' Choice Awards are chosen by the editors of Web Host Magazine & Buyer's Guide based on rating reviews, input from an independent review panel, reader's reviews, and other factors.

Learn more about how the netZentry DDoS protection solution can help Web hosting service providers concerned about DDoS attacks and the costs associated with maintaining such a protection solution at: http://www.netzentry.com/partners/partnerPROFITprogram.htm.

For more information about the Web Host Magazine’s Editor’s Choice Awards, visit http://www.webhostmagazine.com/ec/.

About netZentry
netZentry was founded in 2003 to solve the problem of both internal and external threats using a distributed collaborative approach that is able to offer pinpoint defense while precisely mitigating threats at their originations. netZentry's CleanTraffic(TM) technology that embodies the collaborative approach has enabled netZentry customers — service providers and enterprises — to effectively foil both internal and external threats. netZentry is privately held and backed by top-tier venture capitalists. It is headquartered in Palo Alto, California. More information about the company can be found at www.netzentry.com.

Tags: network security protocols, network security posture, wireless security, network security checklist, security controls, tools, network security policy, home network security

Agnitum Deploys 500-User Installation of Outpost Network Security firewall for Munich Trade Show Organizers -

If you're turning off the SSID on your wireless router or setting up MAC address filters to improve your network security, then stop. Russell Card's updated article on Wireless Network Security gives the lowdown on what works and what doesn't.

Kent, UK (PRWEB) July 26, 2006 — More and more households and business are setting up wireless networks every day. It's a great way to free yourself from those wires that clutter up everyone's desk.

The thing with a lot of wireless network equipment is that it comes with no security enabled, whatsoever. People hear that they should make their wireless more secure, so they go and look for advice. And this is where it can all go wrong.

IT Consultant Russell Card has looked at a lot of wireless network security articles on the Web and was shocked at what he saw. What he found was advice on security that was a mixture of pointless, laughable and downright terrifying. This drove Russell to write his own Wireless Network Security article (http://www.ukitbits.com/wireless/wnsec.html), which details what simple measures you should take to secure your wireless network and those that you should avoid.

The article is part of a whole section on wireless networking at Ukitbits.com (www.ukitbits.com). The site was launched by Russell Card, an IT Consultant with over 15 years network design and security experience, to bring useful information, hints and tips to anyone who needs it. Information at the site is available for free and is written to be readable by IT beginners and experienced users alike.

Tags: management, network security magazines, network security tools, network security consulting, network security checklist, high tech network security, security controls, policies

CCNA, CCENT, Network+, And Security+ Questions: MAC Addresses, VTP, And More! -

Test your knowledge of topics such as TCP, UDP, DNS, DUAL, EIGRP, and more with these free CCNA, CCNP, CCENT, Network+, and Security+ questions!

Let?s test your knowledge of UDP, TCP, smurf attacks, EIGRP, and more with these questions designed to help you prepare for success on your CCENT, CCNA, CCNP, Network+, and Security+ certification exams!

CCENT Certification / Network+ Certification:

Which of the following protocols runs on both UDP and TCP?

A. DHCP

B. SNMP

C. DNS

D. ARP

E. Inverse ARP

Answer: C. DNS runs on port 53, both on TCP and UDP.

Security+ Certification:

Briefly define the term “smurf attack”. (Not too briefly, though!)

Answer: Basically, a smurf attack involves sends ICMP Echo packets (pings) with the intended victim’s IP address specified as the source of the Echo packets. This transmission takes the form of a directed broadcast, which means that quite a few hosts can receive it - and then respond with ICMP Echo Replies, which will all be sent to the intended victim.

CCNA Exam:

R1 and R3 are directly connected at their respective Serial1 interfaces via a DTE/DCE cable. What command will tell you whether the interface is connected to the DTE or DCE end of the cable?

Answer: Run show controller serial 1 on either router - the DTE / DCE information is near the top of the output.

CCNP Certification / BSCI Exam:

DUAL has discovered four possible paths to a remote network, with the following metrics: PathA, 1500. PathB, 1500. PathC, 2600. PathD, 3100. What command will allow EIGRP to use the first three paths without using the fourth?

Answer: variance 2 would do the job. Any path with a metric of 3000 or lower will be utilized; setting it to 3 would bring PathD into the equation.

CCNP Certification / BCMSN Exam:

What is the main purpose of IEEE 802.3ac?

Answer: The IEEE 802.3ac standard allows the maximum frame length to be extended to 1522 bytes, which means the dot1q 4-byte header doesn’t cause problems in transmission.

CCNP Certification / ONT Exam:

Which queueing strategy gives priority to interactive, low-bandwidth communications by default?

Answer: Weighted Fair Queueing (WFQ) gives priority to interactive, low-bandwidth conversations, and then splits the remaining bandwidth fairly among the remaining conversations.

Look for a new set of Cisco and CompTIA certification exam questions soon!

Source: Free Articles from ArticlesFactory.com

ABOUT THE AUTHOR

Tags: policies, high tech network security, network security posture, security controls, network security protocols, network security, management, discount network security

Tarari, Inc.: Tarari to Speak at the Linley Group’s “Embedded Network Security Design” Seminar -

Test your knowledge of important Cisco and CompTIA exam subjects such as OSPF, teardrop attacks, route redistribution, and more with these free certification exam practice questions!

To help you in your preparation for your Cisco CCNA, CCENT, and CCNP exams, here are some free practice questions covering everything from OSPF to route redistribution. And for you Network+ and Security+ certification candidates, there are questions for you as well on the OSI model and SYN attacks. I’ll be adding A+ certification questions in future articles.

Let’s get started!

CCENT / Network+ Certification:

Does Layer 2 of the OSI model perform error detection, error correction, both, or neither?

Answer: The Data Link layer is capable of error detection, but not error correction.

Security+ Certification:

Briefly describe the purpose of a “SYN cookie”.

Answer: One defense against SYN attacks, a SYN cookie verifies the client address before actually allocating resources to that client.

CCNA Certification:

What type of OSPF router is defined as “at least one interface in Area 0, and connecting other areas to Area 0″?

A. ASBR

B. ABR

C. Internal

D. Backbone

E. External

Answer: B. That’s the textbook definition of an Area Border Router (ABR).

CCNP Certification / BSCI Exam:

What term is used for the number “2″ shown in the below commands?

R2(config)#router rip

R2(config-router)#redistribute ospf 1 metric 2

A. distance

B. administrative distance

C. distance

D. variance

E. seed metric

F. process number

Answer: E. The “2″ is the seed metric. The “1″ in the redistribute statement is the OSPF process number whose routes are being redistributed into RIP.

CCNP Certification / BCMSN Exam:

In a typical Network Management block, what switch layers are represented?

A. Access

B. Distribution

C. Core

Answers: A, B. In addition to network management devices, both Access and Distribution switches will be found here.

Look for more free Cisco and CompTIA certification exam practice questions soon!? Whether you?re working on your CCNA, CCENT, CCNP, Network+ or Security+ certification, there?s something for you here!

Source: Free Articles from ArticlesFactory.com

ABOUT THE AUTHOR

Tags: network security tools, network security protocols, network security, high tech network security, procedures, wireless security, network security posture, network security policy

Find out Why Most Wireless Network Security Advice Doesn’t Really Work -

To assist in your Cisco and CompTIA exam studies, here are some practice questions on topics from EIGRP to teardrop attacks, and almost everything in between!

To help you in your preparation for your Cisco CCNA, CCENT, and CCNP exams, here are some free practice questions covering everything from EIGRP to the OSI model.? And for you Network+ and Security+ certification candidates, there are questions for you as well on the OSI model and teardrop attacks.? I?ll be adding A+ certification questions in future articles.? Let?s get started!

CCNA 640-802 Exam:

By default, what values are considered by EIGRP when computing a path’s metric?

A. bandwidth

B. hop count

C. delay

D. load

E. reliability

F. MTU

Answers: A, C. EIGRP considers bandwidth and delay by default in its route calculations.

Cisco CCENT / CompTIA Network+ Certification:

Which layer of the OSI model is generally recognized as the “management layer”?

Answer: The Session layer.

CompTIA Security+ Certification:

Briefly describe the term “teardrop attack”.

Answer: IP fragments with large payloads are the method of attack. Issues with the TCP fragmentation reassembly code of Windows NT, 96, and 3.1x (among others) created this opening.

CCNP Certification / BSCI Exam:

A non-Cisco router will consider what value first during the BGP best path selection process?

A. AS_PATH

B. origin

C. MED

D. weight

E. LOCAL_PREF

F. aggregator

Answer: E. On a Cisco router, weight is the first consideration. However, weight is a Cisco-proprietary BGP attribute. A non-Cisco router will consider LOCAL_PREF first.

CCNP Certification / BCMSN Exam:

Short answer: How can you change the speed and duplex of multiple ports with one command?

Answer: Use the interface range command to configure multiple ports at one time.

CCNP Certification / ISCW Exam:

Which of the following queueing strategies gives priority to interactive, low-bandwidth communications?

A. FIFO

B. PQ

C. CQ

D. DQ

E. WFQ

Answer: E. That’s what Weighted Fair Queueing (WFQ) does!

I?ll see you soon with more Cisco and CompTIA practice questions!

Source: Free Articles from ArticlesFactory.com

ABOUT THE AUTHOR

Tags: security controls, network security, network security checklist, discount network security, wireless security, threats, network security protocols, network security posture

Arbor Networks: Arbor Networks to Speak on Managed Security Services at ISPCON Fall 2006 -

Test your knowledge of MAC addresses, network attacks, and more with these CCNA, CCENT, CCNP, Network+, and Security+ certification exam practice questions!

Let?s test your knowledge of important Cisco and CompTIA certification exam topics!

CCNA / CCENT / Network+ Exam:

A switch receives a frame with a unicast destination MAC, but the switch does not have an entry for that MAC in its bridging table. What term describes the default action of the switch?

A. flood

B. filter

C. unicast

D. drop

E. unicast

Answer: A. The frame will be “flooded” - that is, sent out every port except the one it came in on.

Security+ Certification Exam:

A potential network intruder calls a helpdesk and pretends to be an employee of the company in an attempt to get that employee?s password.? What kind of network attack is this?

Answer:? This is a social engineering attack.

CCNP Certification / BSCI Exam:

Fill in the blank: ISIS assigns redistributed routes a metric of ____________.

Answer: ISIS assigns redistributed routes a metric of 0.

CCNP Certification / BCMSN Exam:

A VTP switch has a revision number of 5. This switch receives a VTP advertisement with a revision number of 6. What action(s) will this switch take?

A. The switch will accept the advertisement.

B. The switch will reject the advertisement.

C. The switch will increment its revision number.

D. The switch will decrement its revision number.

Answers: A, C. The VTP switch will accept the advertisement; since the revision number of the ad is higher than its own, the advertisement is more recent. The switch will then increment its revision number by one.

CCNP Certification / ISCW Exam:

Which of the following queueing methods poses the greatest threat of TCP Global Synchronization?

A. CBWFQ

B. PQ

C. RED

D. WRED

Answer: A. CBWFQ uses Tail Drop as its default method of packet drop. In turn, Tail Drop can lead to TCP Global Synchronization.

Source: Free Articles from ArticlesFactory.com

ABOUT THE AUTHOR

Tags: procedures, types of network security, home network security, network security protocols, network security, wireless security, security controls, policies

Network Chemistry: Network Chemistry Security Analyst Shares Security “Secrets” in Updated “Network Security Hacks” Book From O’Reilly Publishing -

Let’s test your knowledge of topics such as SYN attacks and VLANs for your Cisco CCNA, CCNP, and CCENT exam prep.? There are questions for the Network+ and Security+ exam as well, and A+ questions are on the way!???

Let?s test your knowledge of important topics such as SYN attacks and VLANs for your Cisco CCNA, CCNP, and CCENT exams, as well as the CompTIA Security+ and Network+ certification exams!CCNA / CCENT / CompTIA Network+ Certification:Host A and Host B are in the same VLAN. Host C and Host D are in a different VLAN. Host A sends a broadcast. How many other hosts will receive it?A. ZeroB. OneC. TwoD. ThreeAnswer: B. The other host in the same VLAN, Host B, will receive it. Broadcasts are not forwarded to other VLANs.Security+ Certification:Briefly describe a “SYN attack”.Answer: The intruder will generate a series of SYN requests, and the soon-to-be-victimized network device sends a SYN-ACK in response. The device then waits for an ACK, but that never comes. These unfinished connections result in the network device not being able to accept SYN request from legitimate network hosts, since its buffers will be overwhelmed with the false (and unfinished) requests.CCNP Certification / BSCI Exam:If an IPv6 address begins with “FF”, what type of address is it?A. broadcastB. unicastC. multicastD. MACcastAnswer: C. That’s a multicast. There’s no such thing as a MACcast. But there should be. ;)CCNP Certification / BCMSN Exam:Short answer: What interface-level command takes a port operating at L3 and places it into L2 operating mode?Answer: switchport. To change the port back to a routed port, use no switchport.CCNP Certification / ISCW Exam:Short answer: You’re going to write a policy map that will be applied to a Serial interface running at T1 speed. By default, how much bandwidth can you assign in that policy?Answer: The speed of a T1 line is 1544 kbps, but by default only 75% of that bandwidth can be distributed in a policy map - that’s 1158 kbps (1544 * .75).

Source: Free Articles from ArticlesFactory.com

ABOUT THE AUTHOR

Tags: network security, network security protocols, hackers, network security checklist, network security tools, discount network security, network security magazines, high tech network security

Wireless Network Security in 6 Easy Steps -

We have all heard stories on the news about email viruses wreaking havoc on computer systems. To keep computer systems in top performance you will need to know the risks, and what you can do to protect yourself from viruses and computer hackers.

Our world today practically relies on the computers and the Internet. A massive attack on of a computer virus could wipe out communications, air traffic control, hospitals and credit cards. Specialists with training in computer and network security are needed to help us protect this information by preventing, detecting, and responding to attacks.

As Security risks are becoming greater, qualified people are needed to keep computer networks secure. You can learn to defend computer networks against scams, fraud, espionage and more when you earn a degree in computer network security.

This course of study will teach students how to install, maintain, and monitor existing security software for both the private and public sectors. Students will be able to build computer security programs, fix existing programs, install security software, and be able to recognize when an intruder is attempting to hack into a computer network.

Jobs in network security cover many different areas. Here are some jobs in Computer Network Security:

? Database administrators work with database management systems software and determine ways to organize and store data. They identify user requirements, set up computer databases, and test and coordinate modifications to the computer database systems. They basically manage and protect a company?s data.

? Computer Systems Analysts solve computer problems and apply computer technology to meet the individual needs of an organization. Systems analysts may plan and develop new computer systems or devise ways to apply existing systems? resources to additional operations. Computer systems analysts use the computer’s technical abilities to meet the needs of a particular type of industry or company.

? Network Administrators and Computer System Administrators oversee network security as part of their jobs. They also design, install, and support an organization?s local-area network (LAN), wide-area network (WAN), network segment, Internet, or intranet system. They also provide day-to-day onsite administrative support for software users in a variety of work environments.

? Computer Security Specialists are employed for the sole purpose of working on computer security for a company. These specialists plan and implement computer security for an organization. They may also train others in computer security, install computer security systems, and monitor networks for breaches in security. They may even be called upon to respond to cyber attacks, and even collect data and evidence to be used in prosecuting perpetrators.

These careers are expected to continue to grow according to the U.S. Department of Labor. Salaries in this industry range from $58,190 to $66,460.

Tags: network security magazines, home network security, policies, wireless security, types of network security, high tech network security, network security checklist, network security policy

Network Security Solutions -

Network security is the new buzz word around town. Most people think a network firewall that is setup with the default will protect their network. The simple fact is no it will not. Not until you are hack will you know this fact. Of course this comes a little too late. All operating systems need ports open in order to communicate information regarding active directory, DNS, DHCP, booting of a computer and more. Some applications need ports open to work. So where do you reach a safe point where your applications work and they are secure. The following will address the working ports and what to be concerned about. Later I will address how to secure it.

Ports to be concerned about are 3389 which is terminal services ports. If you do not have a firewall in place blocking public IP address from forwarding to private IP address using this port then you will want to call a security professional right away. Other ports to be concerned about are 139 which gives access to network shares.

Another area of concern is the SMB or the (Server Message Block) protocol. This protocol is used among other things for file sharing in Windows NT/2000/XP. In Windows NT it ran on top of NetBT (NetBIOS over TCP/IP), which used the famous ports 137, 138 (UDP) and 139 (TCP). In Windows 2000/XP/2003, Microsoft added the possibility to run SMB directly over TCP/IP, without the extra layer of NetBT. For this they use TCP port 445. Again all these ports should remain in the private network and your firewall should block access.

Note: The NETSTAT command will show you whatever ports are open or in use, but it is NOT a port scanning tool! If you want to have your computer scanned for open ports see this page instead (link will follow shortly).

C:>netstat -an |find /i “listening”
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
TCP 0.0.0.0:1723 0.0.0.0:0 LISTENING
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING
TCP 127.0.0.1:1026 0.0.0.0:0 LISTENING
TCP 127.0.0.1:4664 0.0.0.0:0 LISTENING
TCP 192.168.50.127:139 0.0.0.0:0 LISTENING
TCP 192.168.100.193:139 0.0.0.0:0 LISTENING

The netstat command will also show you who is active on your computer. This will show you what spyware or trojan horses that may have installed on your machine.

Active Connections

Proto Local Address Foreign Address State
TCP argonas:epmap argonas:0 LISTENING
TCP argonas:microsoft-ds argonas:0 LISTENING
TCP argonas:pptp argonas:0 LISTENING
TCP argonas:3389 argonas:0 LISTENING
TCP argonas:1026 argonas:0 LISTENING
TCP argonas:2617 localhost:2618 ESTABLISHED
TCP argonas:2618 localhost:2617 ESTABLISHED
TCP argonas:2619 localhost:2620 ESTABLISHED
TCP argonas:2620 localhost:2619 ESTABLISHED
TCP argonas:4664 argonas:0 LISTENING
TCP argonas:netbios-ssn argonas:0 LISTENING
TCP argonas:2958 an-in-f104.google.com:http ESTABLISHED
TCP argonas:3011 va-in-f104.google.com:http TIME_WAIT
TCP argonas:3014 eo-in-f147.google.com:http ESTABLISHED
TCP argonas:3081 unknown.xeex.net:http TIME_WAIT
TCP argonas:3104 unknown.xeex.net:http ESTABLISHED
TCP argonas:3903 web1.allaboutsingles.com:http CLOSE_WAIT
TCP argonas:4449 static-71-116-207-166.lsanca.dsl-w.verizon.net:pptp ESTABLISHED
TCP argonas:4762 va-in-f104.google.com:http CLOSE_WAIT
TCP argonas:netbios-ssn argonas:0 LISTENING
TCP argonas:2939 192.168.100.202:1025 ESTABLISHED
TCP argonas:2957 exchange01.intercore.local:1419 ESTABLISHED

Once you have locked down all ports then you must be concerned with internal security. No one in your organization will be allowed to talk to anyone about any secure information. Even giving out there email address. Next use devices like honey pots, barracuda spam appliance, Symantec anti-virus hardware and software. A properly configured network can allow your workers to work and disallow hackers to work.

Tags: high tech network security, hackers, network security, types of network security, tools, policies, threats, network security consulting

Agnitum Deploys 500-User Installation of Outpost Network Security for Munich Trade Show Organizers -

We live in an ever changing world. One constant has been the increasing threat of viruses and other forms of Malicious Software both created and propagated over the Internet. Email, for example, has become an indispensable tool for most of today’s businesses but it’s use can open your computing infrastructure up to an unlimited number of threats on a daily basis.

Email and hacking attempts are just the tip of the iceberg. The Computer Security Institute (CSI) in San Francisco estimates that between 60 and 80 percent of network misuse comes from inside the enterprises network. Computing security is not just a set of locked doors and passwords. A truly secure environment is an ever changing entity which requires constant care and monitoring.

Conducting a network security audit isn’t very easy the first time you do it. You’ve got to either purchase a commercial audit package and learn how it works or assemble your own adhoc toolkit from open source offerings. Either way, you’re looking at hours of effort to get even a quick look at the security condition of your network.

Now you can conduct an initial audit in just minutes, with a total cash investment of only $49, thanks to Nsasoft’s Nsauditor.

Nsauditor Network Security Auditor is a network security scanner that allows to audit and monitor remote network computers for possible vulnerabilities, checks your network for all potential methods that a hacker might use to attack it.

Nsauditor is a complete networking utilities package that includes a wide range of tools for network auditing, scanning, monitoring and more. You can discover network services and check them for vulnerabilities, list all TCP and UDP endpoints with their associated process, discover NetBios names, audit MS SQL servers, scan for common Adware traces and more. The program also includes real-time network packet filtering and analyzing, remote network performance monitoring, network status monitoring, web proxy scanning, password auditing, intrusion detection system based on security events log analyzer, IP address lookup and more than 45 network tools for scanning, sniffing, enumerating and gaining access to machines, DNS and WHOIS lookups, e-mail validation, HTTP traffic generator and intrusion detection based on security events log analyzer.

The product contains a built-in database of known network security vulnerabilities, which allows you to select the items for scanning and add custom entries. Nsauditor can reveal and catalog a variety of information, including installed software, shares, users, drives, hotfixes, NetBios, RPC, SQL and SNMP information, open ports. It can also audit password and security policies as well as make a variety of network attack probes, such as stealth port scans, HTTP / CGI server auditing, registry auditing. The program can sniff and use brute-force and dictionary attacks on LM and NTLM password hashes and expose the insecure ones. Nsauditor does OS detection and automatically creates OS fingerprints which are not included in database. Reports can be generated in HTML and XML format.

Any network professional with basic mouse-clicking skills can drive this program through its paces. If you’re new to Network Audit, this tool will let you get some basic hands-on experience at low cost. If you’re an experienced network security auditor, Nsauditor can still give you a quick initial assessment to help you see where to best concentrate more detailed analysis.

Overall, this is a very complete package for a surprisingly low price.

Application Info: http://www.nsauditor.com/downloads/index.html
Application Screenshot: http://www.nsauditor.com/images/screens/nm1.jpg
Download URL: http://www.nsauditor.com/downloads/nsauditor_setup.exe

Tags: network security consulting, network security checklist, network security, network security tools, home network security, tools, threats, security controls