|
Written by Vatsal
|
|
Regular Expression Matching (i.e. the technology by which you match a given set of expression with a larger set of data) is a technical term used in defining many of today's security technologies such as Gateway Anti-Virus, Intrusion Detection and Prevention Systems, Data Loss Prevention systems, Unified Threat Management Systems, Cross Site Scripting Protection, URL Filtering etc.
There is a constant stream of data which keeps being checked for known threats or attacks. While RegEx matching is at the heart of these techniques, many advanced techniques can be additionally used to prevent or detect attacks such as correlation of data from multiple sites, analysis of multiple connections.
|
|
Read more...
|
|
|
Written by Vatsal
|
|
Recently Twitter had come up with a list of banned passwords which are commonly used and therefore not allowed for Twitter Accounts. Here is the list: http://blogs.pcmag.com/securitywatch/2009/12/the_twitter_banned_password_li.php
Imperva - a company specializing in Web Application Firewalls has also come up with a similar list. A web application firewall is a firewall with application layer capabilities and logic to block certain application layer attacks, not just the network layer attacks that general firewalls prevent.
Here is the Imperva white paper on passwords: http://www.imperva.com/docs/WP_Consumer_Password_Worst_Practices.pdf |
|
Written by Vatsal
|
|
A few years ago, at the RSA Trade Show there were many vendors who touted Network Access Control (NAC) as the next big thing. NAC promises unprecedented control and compliance to IT policies, however it seems that the economic troubles have cut IT budgets to a level that NAC companies have struggled.
Today WSJ reports another NAC vendor Consentry Networks shuts down after going through $81M in cultivating the market and creating awareness about NAC - leaving Cisco and Microsoft as the leaders in the NAC race. |
|
|
Written by Vatsal
|
|
In the previous article - we explained about how to use SSH for providing secure remote access to external users. By providing access to the users, we enabled them to securely access the Linux machine, but at the same time, the user have the ability to read pretty much anything on the system that they have read access to.
By careful configuration of the Linux system, this can be avoided, but there are many instances when the read rights for certain files cannot be removed.
To make sure that the ssh/sftp/scp user is not able to access something outside his/her own directory a mechanism called chroot jai is used - for more information about chroot jail on Ubuntu please see the link here - restricting remote ssh/scp/sftp users to their home directory |
|
Written by Vatsal
|
|
Secure Remote Access - is a name given to a set of functionalities that allow people to remotely log-in to a network for achieving some task such as working from home or remote office, accessing office email, perform maintenance on servers etc. while keeping bad guys, and unintended visitors such as hackers and ex-employees out of the system.
|
|
Read more...
|
|
|
|
|
|
Articles 
