November 2007
9 posts
1 tag
NETWORK SECURITY TACTICS
Reasons why enterprise networking and security roles must stay separate If you’re in charge of installing, configuring and maintaining network resources, it may be unclear where your responsibilities end. Can capable network managers, for example, stretch their duties into the security space, perhaps acting more like a chief security officer? In this tip from our Ask the Experts...
1 tag
So you want to be a CISSP?
Recently a friend of mine from Toronto emailed me asking about the CISSP certification that I had spoken to him about; he asked me some questions about it and when I was replying thought, there may be actually a lot of people out there with similar questions about the CISSP so why not post it up? I wrote the exam back in Oct. of 05 and recieved my certificate late Dec/early Jan. For those of you...
1 tag
SSL VPN - Java error msg
You are using the secure gateway Java Session Manager, which requires that your browser support: Scripting of Java applets. Microsoft Java 5.0.0.3802 (or above) or Sun Java 2 Runtime Environment 1.4.1 (or above). You currently have the following version of Java installed on your system: N/A To download the latest ver33sion of Sun Java, go to http://www.java.com
1 tag
cooking the books
The year 2002 saw the end of an era of skyrocketing stock prices and booming businesses. Things that had seemed to be too good to be true were just that. Companies that we previously thought of as unstoppable didn’t have the earnings they told us they did. Instead, they had been “cooking the books” to create the appearance of earnings that really didn’t exist. A company is...
1 tag
Senior IT Specialist - Network Security
Responsibilities: Performs communication and networking system analysis and design planning for integration of computer systems into a local/wide area network. Evaluates user request or projects, analyze requirements and pertinent to technical information, then develops and implements quality, cost-effective solutions. Evaluate enterprise networking components and infrastructure, develops...
WHAT TO DO IF STOPPED BY MALAYSIAN POLICE
This is is very useful information. Please pass it on to your friends and family especially the women folk! The next time you are stopped by persons who claimed they are plain clothes police, you are under no obligation to answer their questions or follow their orders, lawyers told ‘Malaysiakini’ today. “Policeman who is not wearing his uniform does not have the authority...
1 tag
SuSe Linux SSH Key Authentication
openssh notes /etc/ssh/sshd_config #只允許 ssh2 的登入不需要 ssh1 Protocol 2 #設定不允許直接用 root 登入 PermitRootLogin no #只允許使用公開金鑰登入, 其他登入方式都關閉 PasswordAuthentication no ChallengeResponseAuthentication no 產生金鑰, 並設定 ssh 可以遠端登入金鑰認證, 不需輸入密碼 #在 client 產生 public / private key pair ssh-keygen -t rsa (過程都按 enter 帶過, 如欲加密私鑰, 可於 passphrase 提示訊息下輸入) #將 public key 傳到目的 sshd host ...
1 tag
Sesu Linux Password Rule
User cracklib to enforce the password rule password required /lib/security/pam_pwcheck.so nullok password required /lib/security/pam_unix2.so nullok use_first_pass use_authtok to: password required /lib/security/pam_pwcheck.so nullok use_cracklib password required /lib/security/pam_unix2.so nullok use_first_pass use_authtok
“ISO 17799 Initially developed from BS7799-1, ISO 17799 is an international...”
– BS7799, ISO 27001 and ISO 17799