Get flash to fully experience Pearltrees
Introduction This is the second of a two-part article series that discusses various methods of testing the integrity of your firewall and IDS, using low-level TCP/IP packet crafting tools and techniques. Part one showed several examples that tested a firewall (port 80 TCP, and port 53, UDP) using tools like hping and tcpdump . We will now continue the discussion with a third test of the firewall, using the same tools as noted above, and then move on to test your IDS signatures and detection ability. Note that the focus here is on a Linux environment, but the process is similar with other Unix-like firewall/IDS environments as well.
Introduction Network intrusion detection systems (NIDSs) face some of the most gruelling challenges of any security product. Not only is the bandwidth these devices monitor increasing, so are the amount of attacks they must guard against. The combination of these two factors could overwhelm a NIDS, causing it to drop packets. To help the NIDS keep up with the demands of today’s networks, and the wide variety of threats that besiege them, there are a number of things that the NIDS administrator can do to improve the performance of their NIDS. This article will examine some of those options.
A guide to securing your home and home network with inexpensive hardware, open source software and about 8 hours of dedicated time. This is a living document, updated on a regular basis to reflect additional best practice methodologies, tips and tricks as they become available. In this guide, we will walk you through the process of building and configuring security systems to protect your home and home/office network through the use of motion-sensing digital security cameras , advanced firewalls , intrusion detection systems , and realtime notification mechanisms. In a mere eight hours, we will endeavor to build and configure a moderately sophisticated wired and wireless home or office LAN with a DMZ for public-facing services, strong ingress and egress filtering for all connected subnets and a realtime risk management console with live monitoring and alerts by email and/or telephone! Technorati Tags: howto , linux , privacy , security
More on intrusion detection and prevention Threats expert Nick Lewis explains how to prevent data exfiltration via covert channels SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today! It's no secret that a layered security strategy is the key to protecting enterprise networks from malicious intrusions.
Hacking Linux Exposed Authors write more than they wish to admit. Bri Hatch has co-authored Building Linux VPNs . James has lead-authored Open Source Web Development with LAMP . In addition, Bri has written several articles for SecurityFocus : Filtering E-Mail with Postfix and Procmail.
Intrusion Detection FAQ The Internet's most trusted site for vendor neutral intrusion detection information. Updated May 19, 2010 View Press Release Click here for Intrusion Detection In-Depth: The Most Advanced Intrusion Detection Immersion Training Available The Basics