Understanding Network Attacks
A network attack can be defined as any method, process or means used to maliciously attempt to compromise the security of the network.
There are a number of reasons why an individual(s) would want to attack corporate networks. The individuals performing network attacks are commonly referred to as network attackers or hackers or crackers.
A few different types of malicious activities performed by network attackers and hackers are summarized here:
Illegally...
|
|
Read more...
|
Security Templates Overview
With Windows NT 4.0, came the launch of the System Policy Editor feature which enabled administrators to manage the security settings of the system through a single user interface. The System Policy Editor feature allowed administrators to easily manage configurations of multiple computers because configuration settings could be copied between systems.
With the introduction of Windows 2000, the System Policy Editor feature was replaced by Active Directory Group...
|
|
Read more...
|
Wireless Network Security Threats
Wireless networks do not have the inbuilt physical security of wired networks, and are unfortunately more prone to attacks from intruders. Once unauthorized access is gained to the wireless network, the intruder would be able to easily access the resources of the corporate, internal network. To complicate matters, there are numerous tools which attackers can use to detect and connect to a wireless network, thus making abusing a wireless network not an...
|
|
Read more...
|
Domain Controllers Security Issues
When it comes to Windows Server 2003 Active Directory networks, one of the most important server roles which can be configured is probably the domain controllers role.
Domain controllers perform a number of important functions and control activities within a domain, including the following:Contain a replica of the Active Directory directory for the domain to which it belongs, and is responsible for managing that directory Provide authentication...
|
|
Read more...
|
What is Authentication
Authentication is the process whereby the system identifies legitimate users from unauthorized users. It is the process in which a user identifies his/her self to the system. How effective an authentication process is, is determined by the authentication protocols and mechanisms being used. Windows Server 2003 provides a few different authentication types which can be used to verify the identities of network users, including:
Kerberos authentication protocol
NT LAN...
|
|
Read more...
|
An Overview on Authentication and Smart Cards
Administrators have to secure the network from attacks launched by hackers, spies, terrorists, thieves and criminals. Security encompasses numerous technologies, protocols, standards, policies, passwords, and secret keys. All these mechanisms typically focus on the following:
Authentication
Access Control
Data Protection
Auditing/Accountability
Authentication is the process by which an entity identifies itself, before network logon is...
|
|
Read more...
|
Understanding Security Policy Types
With Windows Server 2003, you can implement and manage security settings at the following levels:
Local computer (local security policies)
Active Directory site, domain, or organizational unit (domain security policies)
Local security policies are managed through Local Computer Group Policy Objects (GPOs), and domain security policies are managed through Group Policy with the Active Directory Domain Controller GPOs. However, domain security policies...
|
|
Read more...
|
An Overview of Auditing
Auditing enables you to determine which activities are occurring on your system. Through auditing, you can track access to objects, files and folders; as well as any modifications made to the objects, files and folders. Auditing therefore enables you to collect information associated with resource access and usage on your system by allowing you to audit system logon, file access, object access, as well as any configuration changes. An audit trail can be defined as a...
|
|
Read more...
|
Security Templates Review
A security template is collection of security configuration settings that can be applied to a domain controller, member server or a workstation. The settings within a security template control the security configuration of a computer through both local policies and group policies. A security template can be applied to a local computer, or incorporated into a Group Policy object in Active Directory. You can manage one computer or multiple computers through the security...
|
|
Read more...
|
An Overview on Certificate Authorities
In the Public Key Infrastructure (PKI), digital certificates are based on public key cryptography. The PKI consists
of a set of components, policies, protocols, and technologies that provide data authentication, integrity, and
confidentiality through the use of certificates, and public and private keys. Data is protected by applying a hashing
algorithm and signature algorithm to the original message. A hashing algorithm is an intricate mathematical...
|
|
Read more...
|
|
|
|
|
Page 1 of 4 |
