http://www.sqlmag.com/authors/author/author/5053033/rsscomment/5053033en-USFri, 25 May 2012 10:33:53 GMTFri, 25 May 2012 10:33:53 GMThttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorWed, 07 Oct 2009 11:38:25 GMT
Thanks]]>WorknehWed, 07 Oct 2009 11:38:25 GMThttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorhttp://www.sqlmag.com/article/encryption2/scrutinizing-windows-authentication#commentsAnchorWed, 29 Apr 2009 11:29:56 GMT
I haven’t exactly read all the article, yet, hard to rate before ...]]>T.Wed, 29 Apr 2009 11:29:56 GMThttp://www.sqlmag.com/article/encryption2/scrutinizing-windows-authentication#commentsAnchorhttp://www.sqlmag.com/article/permissions/navigating-the-file-system-permission-jungle#commentsAnchorWed, 20 Feb 2008 14:38:36 GMT
David, you must purchase the subscription service to see the subscriber-only content. Which sucks, but that’s what they are forcing.]]>RandyWed, 20 Feb 2008 14:38:36 GMThttp://www.sqlmag.com/article/permissions/navigating-the-file-system-permission-jungle#commentsAnchorhttp://www.sqlmag.com/article/permissions/navigating-the-file-system-permission-jungle#commentsAnchorThu, 14 Feb 2008 14:18:06 GMT
Why can’t I see the whole article even though I am logged in?]]>DavidThu, 14 Feb 2008 14:18:06 GMThttp://www.sqlmag.com/article/permissions/navigating-the-file-system-permission-jungle#commentsAnchorhttp://www.sqlmag.com/article/permissions/navigating-the-file-system-permission-jungle#commentsAnchorTue, 08 Jan 2008 13:26:43 GMT
Great article.]]>ArnoldTue, 08 Jan 2008 13:26:43 GMThttp://www.sqlmag.com/article/permissions/navigating-the-file-system-permission-jungle#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorFri, 18 May 2007 06:32:47 GMT
Why, after belonging and subsrcibing to WinITPro do I now have to pay for another subscribtion, SecurityPro VIP, to get information on a particular topic? I realize it’s about making money but this is an unprofessional way to go about it. I should not have to pay extra or for another subscription! Yes I want to read more of the article but why do I have to pay for it AGAIN! Please resolve this mess. John]]>JOHN AFri, 18 May 2007 06:32:47 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/kerberos/types-of-password-attacks-#commentsAnchorThu, 29 Jun 2006 08:43:28 GMT
igsigsffssf]]>JOHNThu, 29 Jun 2006 08:43:28 GMThttp://www.sqlmag.com/article/kerberos/types-of-password-attacks-#commentsAnchorhttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorTue, 02 May 2006 19:22:46 GMT
wtf, what a bunch of junk. cant even read it after i logged in. i hope this site explodes, including the server its stored on.]]>erewsaefr Tue, 02 May 2006 19:22:46 GMThttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorhttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorFri, 10 Mar 2006 02:20:17 GMT
good passage!]]>haiwanxue Fri, 10 Mar 2006 02:20:17 GMThttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorhttp://www.sqlmag.com/article/internet/hardening-iis-6-0#commentsAnchorThu, 02 Mar 2006 08:24:39 GMT
Thanks for this excellent article. I notice you have disabled the secondary login service, does this mean you login to the server (via RDP) as an administrator. I have read in several places that this service should be disabled for servers, which disables the runas command. I have also read that you should login as a standard user and use the runas command to access any admin tools. What is the more secure option?]]>JodyThu, 02 Mar 2006 08:24:39 GMThttp://www.sqlmag.com/article/internet/hardening-iis-6-0#commentsAnchorhttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorMon, 24 Oct 2005 10:44:05 GMT
This article is ........ crap.......]]>SolarVMon, 24 Oct 2005 10:44:05 GMThttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorhttp://www.sqlmag.com/article/antivirus/10-steps-to-lock-down-desktops#commentsAnchorFri, 21 Oct 2005 10:37:45 GMT
I liked most of the suggestions. But suggesting to run services on non-default ports is nothing but "security by obscurity". It doesn´t help, and it just makes it harder for the admins and the endusers to do their jobs. Security by obscurity is a very poor substitution for improving security.]]>LarsFri, 21 Oct 2005 10:37:45 GMThttp://www.sqlmag.com/article/antivirus/10-steps-to-lock-down-desktops#commentsAnchorhttp://www.sqlmag.com/article/antivirus/10-steps-to-lock-down-desktops#commentsAnchorFri, 21 Oct 2005 06:15:31 GMT
suuper, that is a very usefull articel, very practise not only pages of theory!!]]>arnoldFri, 21 Oct 2005 06:15:31 GMThttp://www.sqlmag.com/article/antivirus/10-steps-to-lock-down-desktops#commentsAnchorhttp://www.sqlmag.com/article/encryption2/using-efs-with-offline-files#commentsAnchorWed, 19 Oct 2005 18:41:37 GMT
Cannot be recomended to customers. Offline folder encryption is not secure because anyone with administrative rights on the laptop can decrypt easily the files.]]>PavelWed, 19 Oct 2005 18:41:37 GMThttp://www.sqlmag.com/article/encryption2/using-efs-with-offline-files#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorThu, 08 Sep 2005 07:51:50 GMT
Short and simple, thanks!]]>Anonymous User Thu, 08 Sep 2005 07:51:50 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/encryption2/take-a-closer-look-at-efs#commentsAnchorSun, 28 Aug 2005 10:50:00 GMT
As stated in the article, many XP’s are not member of a domain. But then it goes on to tell, that to establish a DRA, one have to import a certificate for a DRA. Not member of domain = not possible to generate a (usefull) (DRA-)certificate ! ]]>Anonymous User Sun, 28 Aug 2005 10:50:00 GMThttp://www.sqlmag.com/article/encryption2/take-a-closer-look-at-efs#commentsAnchorhttp://www.sqlmag.com/article/internet/hardening-iis-6-0#commentsAnchorWed, 10 Aug 2005 15:32:46 GMT
I would like to see more of these types of articles that provide step-by-step guide on installation. The only information that Roger did not address is the different versions of Windows 2003 server: web edition, standard edition and enterprise edition. I assumed that he used the standard edition but am curious that he did not explain why he elected not to use the web edition.]]>PatrickWed, 10 Aug 2005 15:32:46 GMThttp://www.sqlmag.com/article/internet/hardening-iis-6-0#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorThu, 04 Aug 2005 23:27:59 GMT
Excellent article! i agree with the author, Port Explorer is hard to beat so its my favourite, i also use the Diamondcs OpenPorts console program as its far better than netstat. Port Explorer is the only one that also lets you packet-sniff both ports and also individual processes, as well as close ports ]]>Anonymous User Thu, 04 Aug 2005 23:27:59 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/internet/hardening-iis-6-0#commentsAnchorFri, 29 Jul 2005 08:05:18 GMT
Good info. This is useful information to take a step further and create a template and/or automation process that takes care of most of the manual changes outlined in the article. This template and/or process could then be reused when building additional web servers. Jason Silva ]]>JASONFri, 29 Jul 2005 08:05:18 GMThttp://www.sqlmag.com/article/internet/hardening-iis-6-0#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorSat, 09 Apr 2005 19:59:31 GMT
http://www.mindcontrol.org/~hplus/udp-vs-tcp.html Same topic, same length, but from UDP prespective, a very good compliment to this article. www.gamingaffinity.com]]>Anonymous User Sat, 09 Apr 2005 19:59:31 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/ip-security-ipsec2/ipsec-protocols-and-modes#commentsAnchorFri, 08 Apr 2005 03:56:55 GMT
I like this forum]]>Anonymous User Fri, 08 Apr 2005 03:56:55 GMThttp://www.sqlmag.com/article/ip-security-ipsec2/ipsec-protocols-and-modes#commentsAnchorhttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorWed, 23 Mar 2005 15:08:03 GMT
Good overview of some of the more popular protocol analyzers and their features. A matrix with comparison criteria and ratings would have been helpful. The posting made by the Anonymous user from Feb 14th, 2005 is worthless, not this article.]]>Anonymous User Wed, 23 Mar 2005 15:08:03 GMThttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorWed, 02 Mar 2005 11:49:18 GMT
pAre these rocess/port associat relation listing tools with open source ?]]>Anonymous User Wed, 02 Mar 2005 11:49:18 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorWed, 02 Mar 2005 03:34:01 GMT
thanks]]>Anonymous User Wed, 02 Mar 2005 03:34:01 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorMon, 14 Feb 2005 06:49:48 GMT
This article is worthless]]>Anonymous User Mon, 14 Feb 2005 06:49:48 GMThttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorhttp://www.sqlmag.com/article/ip-security-ipsec2/isa-server-vpn-protocols#commentsAnchorThu, 13 Jan 2005 18:06:09 GMT
I forgot my username and password. When I asked for them to be sent, your automailer didn’t send my username, just the password. Had to guess. Could be better. Article was great (as usual).]]>PAULThu, 13 Jan 2005 18:06:09 GMThttp://www.sqlmag.com/article/ip-security-ipsec2/isa-server-vpn-protocols#commentsAnchorhttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorTue, 04 Jan 2005 11:47:58 GMT
Check our Greenleaf ViewComm System, excellent async and ethernet protocol analyzers - www.sysfire.com]]>Anonymous User Tue, 04 Jan 2005 11:47:58 GMThttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorMon, 27 Dec 2004 09:15:17 GMT
Very concise and useful! 5 out of 5!]]>Anonymous User Mon, 27 Dec 2004 09:15:17 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorTue, 23 Nov 2004 16:01:20 GMT
One thing not touched on in the article is the major difference between a software and a hardware analyzer. Only good packets can be seen by a software analyzer. If the packet cannot make it up to the top layer of the OSI 7 Layer model, you won’t see it. Also the quality of the network driver is important. Some LAN cards and drivers won’t work or work properly in a promiscuous mode.]]>Anonymous User Tue, 23 Nov 2004 16:01:20 GMThttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorTue, 23 Nov 2004 11:29:31 GMT
UDP would be most suitable for real time applications such as video conferencing since congestion control, as in TCP,would be damaging for such applications !! ]]>Anonymous User Tue, 23 Nov 2004 11:29:31 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorMon, 15 Nov 2004 23:25:41 GMT
The article is quite good. But it would have been of much use to me if the technique behind such active process identification techniques could be elaborated.]]>Anonymous User Mon, 15 Nov 2004 23:25:41 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorSat, 13 Nov 2004 20:54:46 GMT
thanks]]>Anonymous User Sat, 13 Nov 2004 20:54:46 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorMon, 08 Nov 2004 23:58:31 GMT
Good article, stumbled here from the Port Explorer site. Since some people are asking for links http://www.diamondcs.com.au/portexplorer/]]>Anonymous User Mon, 08 Nov 2004 23:58:31 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorSat, 23 Oct 2004 01:55:28 GMT
Another tool I find to be most useful (and free / adfree) to achieve maximum security is StopListening (www.nonebar.com/sl.html). Excellent read BTW. Jason]]>Anonymous User Sat, 23 Oct 2004 01:55:28 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorFri, 22 Oct 2004 16:10:19 GMT
Where are the links to the programs?]]>Anonymous User Fri, 22 Oct 2004 16:10:19 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorFri, 22 Oct 2004 16:10:19 GMT
Where are the links to the programs?]]>Anonymous User Fri, 22 Oct 2004 16:10:19 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorFri, 22 Oct 2004 11:25:58 GMT
I totally agree with itibi’s comments on CurrPorts. I love it. No installation and gives you everything you need.]]>BurtisBFri, 22 Oct 2004 11:25:58 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorFri, 08 Oct 2004 14:18:50 GMT
Another good sniffer is LanRaptor from www.shakti-software.com. You can define your own protocols, so if they dont provide support, you can still fully decode any protocol that is important to you.]]>Anonymous User Fri, 08 Oct 2004 14:18:50 GMThttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorThu, 09 Sep 2004 06:27:50 GMT
The Best of the best utility of this category is missing: NirSoft CurrPorts ! http://nirsoft.mirrorz.com/ CurrPorts displays the list of all currently opened TCP/IP and UDP ports on your local computer. For each port in the list, information about the process that opened the port is also displayed, including the process name, full path of the process, version information of the process (product name, file description, and so on), the time that the process was created, and the user that created it. In addition, CurrPorts allows you to close unwanted TCP connections, kill the process that opened the ports, and save the TCP/UDP ports information to HTML file , XML file, or to tab-delimited text file. CurrPorts also automatically mark with pink color suspicious TCP/UDP ports owned by unidentified applications (Applications without version information and icons) ]]>itibiThu, 09 Sep 2004 06:27:50 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorMon, 26 Jul 2004 05:05:59 GMT
I can’t believe I actually registered with your site for this information... The step by step analysis is practically at the level of "Step 1. Download Honeyd; Step 2. Install Honeyd. Step 3. Congratulations..." - totally useless... Many thanks... Jxxx]]>Vetch101Mon, 26 Jul 2004 05:05:59 GMThttp://www.sqlmag.com/article/security/honeyd-configuration-steps#commentsAnchorhttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorTue, 06 Jul 2004 08:52:34 GMT
Another good low cost product for the budget minded admin is LinkFerret from Baseband technologies. According to their website, they write most of the code for the other analyzer vendors.]]>Randall Ader Tue, 06 Jul 2004 08:52:34 GMThttp://www.sqlmag.com/article/hardware/6-network-protocol-analyzers#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorWed, 16 Jun 2004 08:08:37 GMT
I like this..sweet and short.]]>Srinath R Wed, 16 Jun 2004 08:08:37 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/windows-server-2003/honeypots-for-windows#commentsAnchorFri, 30 Apr 2004 18:03:05 GMT
The honeypots that cost money should be cheaper/free for home users that want to research/learn about such things]]>browolfFri, 30 Apr 2004 18:03:05 GMThttp://www.sqlmag.com/article/windows-server-2003/honeypots-for-windows#commentsAnchorhttp://www.sqlmag.com/article/windows-server-2003/honeypots-for-windows#commentsAnchorWed, 31 Mar 2004 07:25:49 GMT
Friendly Print Version would be NICE!]]>hellWed, 31 Mar 2004 07:25:49 GMThttp://www.sqlmag.com/article/windows-server-2003/honeypots-for-windows#commentsAnchorhttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorTue, 30 Mar 2004 11:27:42 GMT
Which one would be best suited to audio/video conferencing]]>PaulTue, 30 Mar 2004 11:27:42 GMThttp://www.sqlmag.com/article/security/udp-vs-tcp#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorFri, 19 Mar 2004 21:57:59 GMT
I want to thank you for this well written article. I am new to network security issues and am having difficulty understanding much of what I’ve been reading. Not so with Mr. Grimes’ "11 Port Enumerators" article. The topic at large still carries a huge mystery for me to unravel but Mr. Grimes has given me hope that I’ll be able to grasp this information some time soon. I’ve stumbled here from WildersSecuity’s forum and plan on spending some time on your site. I cannot thank you enough, Kim Palmer Newly drafted, reluctant though sober, Network Security Administrator God help us. :)]]>Kim Palmer Fri, 19 Mar 2004 21:57:59 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/encryption2/email-security-suites#commentsAnchorFri, 19 Mar 2004 06:27:17 GMT
Dear author, editor, I enjoyed your this article, however I was disappointed not to find and compare the product we have been using for three years now. It is the Mailsweeper for SMTP (or Exchange) made by ClearSwift. We are rather happy with this product, it works well both to protect us from viruses as well as spam and all the none-sence that comes with spam. We originally got it for its anti-virus functionality, but we found it handy for its anti-spam features. I would like to see that there is a comparison of this product in relation with the other products in the future. Regards ]]>Spyros ANTONIOU Fri, 19 Mar 2004 06:27:17 GMThttp://www.sqlmag.com/article/encryption2/email-security-suites#commentsAnchorhttp://www.sqlmag.com/article/security/executing-honeyd#commentsAnchorTue, 23 Dec 2003 11:48:41 GMT
Good Article]]>Brian Hogbin Tue, 23 Dec 2003 11:48:41 GMThttp://www.sqlmag.com/article/security/executing-honeyd#commentsAnchorhttp://www.sqlmag.com/article/microsoft-internet-security-acceleration-server/extending-isa-server#commentsAnchorTue, 23 Dec 2003 02:35:16 GMT
I want to know how to block specific Web sites e.g : porn]]>AHaw Tue, 23 Dec 2003 02:35:16 GMThttp://www.sqlmag.com/article/microsoft-internet-security-acceleration-server/extending-isa-server#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/firewall-software#commentsAnchorMon, 08 Dec 2003 10:58:42 GMT
it is beyond the limit]]>vaibhav shinde Mon, 08 Dec 2003 10:58:42 GMThttp://www.sqlmag.com/article/firewalls3/firewall-software#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorTue, 28 Oct 2003 17:13:18 GMT
I have Windows 2000 (SP4) and the netstat command doesn’t have the -o option to enumerate the process identifier (PID). Is there another command that does so, perhaps in the Resource Kit, or perhaps this feature is only included with Windows XP and I have to find a 3rd party tool?]]>C. Frank Bernard Tue, 28 Oct 2003 17:13:18 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorFri, 24 Oct 2003 07:24:01 GMT
Very interesting and well written article. I think the utilities you analize are usefull not only for suspicious "Virus" or "Trojan Horse" problems but are great helps for developers of TCP Network Application Programs. Thanks]]>Luigi Calegari Fri, 24 Oct 2003 07:24:01 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorWed, 22 Oct 2003 21:50:23 GMT
Great article, I only wish you could have provided links to the programs]]>Howard Mirkin Wed, 22 Oct 2003 21:50:23 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorWed, 22 Oct 2003 21:48:52 GMT
Very good research and experience blended to make a quality article. Toast for more to come from the author and windows & .net mag website. Cheers!]]>Rostand Abear Wed, 22 Oct 2003 21:48:52 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/security/the-art-of-interpreting-netstat#commentsAnchorWed, 22 Oct 2003 10:17:35 GMT
what are good netstat commands for finding these problems?like these ones are there otheres? netstat netstat 9 (for continuse running) netstat -an netstat -an 9 thx!]]>wawadave Wed, 22 Oct 2003 10:17:35 GMThttp://www.sqlmag.com/article/security/the-art-of-interpreting-netstat#commentsAnchorhttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorWed, 22 Oct 2003 08:04:06 GMT
Brilliant. So many articles gloss over tools such as netstat assuming everyone was born sporting a pocket protector. One of the better articles I have read since I can remember. You should do a whole series on network troubleshooting utilities including tracert and nslookup. Well done.]]>Glen Huey Wed, 22 Oct 2003 08:04:06 GMThttp://www.sqlmag.com/article/security/11-port-enumerators#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/evaluating-icf#commentsAnchorTue, 09 Sep 2003 08:24:55 GMT
"On the ICMP tab, disable any enabled ICMP packet types. You can always reenable these settings if necessary for troubleshooting." I’m always troubled when supposed networking professionals recommend this. The ICMP Ping packet is not an optional feature. Disabling this breaks a number of things in fundamental ways. The most obvious and easily explained breakage is DHCP. Many DHCP servers will periodically ping leased addresses and, if the ping fails, put the address back into the lease pool.]]>Brian Gallew Tue, 09 Sep 2003 08:24:55 GMThttp://www.sqlmag.com/article/firewalls3/evaluating-icf#commentsAnchorhttp://www.sqlmag.com/article/auditing/assessing-vulnerability-assessment-tools#commentsAnchorThu, 31 Jul 2003 07:57:33 GMT
Exellent article! Security is becoming more and more important,and this article does a great job in explaining the hows and whys of assessment tools.]]>Joanne Ritchie Thu, 31 Jul 2003 07:57:33 GMThttp://www.sqlmag.com/article/auditing/assessing-vulnerability-assessment-tools#commentsAnchorhttp://www.sqlmag.com/article/auditing/assessing-vulnerability-assessment-tools#commentsAnchorThu, 31 Jul 2003 07:57:33 GMT
Exellent article! Security is becoming more and more important,and this article does a great job in explaining the hows and whys of assessment tools.]]>Joanne Ritchie Thu, 31 Jul 2003 07:57:33 GMThttp://www.sqlmag.com/article/auditing/assessing-vulnerability-assessment-tools#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/im-security-primer#commentsAnchorThu, 05 Jun 2003 08:49:52 GMT
There is any one out there who can tell me how to restrict, individually, users from going to the IM. The problem is they are affecting all my PC’s plus my network is vulnearable with this application. Thank you.]]>Juan Velasco Thu, 05 Jun 2003 08:49:52 GMThttp://www.sqlmag.com/article/firewalls3/im-security-primer#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorWed, 09 Apr 2003 08:33:54 GMT
Does anyone have trouble with Norton’s Firewall causing your computer to automatically shutdown when opening certain websites? Trying to visit my Insurance providers website and some other sites, will send my computer to Restart.]]>Linda D Wed, 09 Apr 2003 08:33:54 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorhttp://www.sqlmag.com/article/monitoring-and-analysis/snort-made-easy#commentsAnchorThu, 06 Mar 2003 13:09:55 GMT
I have had a lot of problems with IDSCenter too. It crashes and actsup all the time. I doesnt look like its being developed any further either. I recently switched to Demarc’s PureSecure and have been so happy. It pretty much walks you through the install but its not a point and click. But if you really need a point and click you shouldnt be a security administrator. Its given me the best of snort and throws in HIDs too. I ahve been completely happy. I used the personal version at home and its free. Then we decided at work to go with the Professional. It reallitively cheap compared to many of the others, well except IDSCenter which is free but sometimes you get what you pay for.]]>DirkThu, 06 Mar 2003 13:09:55 GMThttp://www.sqlmag.com/article/monitoring-and-analysis/snort-made-easy#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorTue, 17 Dec 2002 02:40:24 GMT
With XP Pro, does one have to disable the built-in firewall with these products or can they run in parallel?]]>John Joslin Tue, 17 Dec 2002 02:40:24 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorWed, 03 Jul 2002 15:20:16 GMT
Why is Tiny Version 2.0 used when version 3.0 is available? Version 3 adds a ton of new features like sandboxing, script blocking, registry protection, application groups, etc., and has preset levels of protection for novices. I used AtGuard before Symantec bought the rights to the program (a la Ghost) because of the advanced rules that could be created, then I switched to Tiny 2.0. Tiny 3.0 blows version 2.0 out of the water. You can download a 30 day trial at their website.]]>Kevin Sussex Wed, 03 Jul 2002 15:20:16 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorhttp://www.sqlmag.com/article/ip-addressing/external-firewall-attacks#commentsAnchorWed, 03 Jul 2002 13:45:15 GMT
I use a combination of hardware and software firewalls. I have a Cable/DSL Router with the DMZ set for an internal address that doesn’t exist. Port scans will get no replies. I also use Norton Internet Security on each PC.]]>JJ Quinlivan Wed, 03 Jul 2002 13:45:15 GMThttp://www.sqlmag.com/article/ip-addressing/external-firewall-attacks#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorWed, 03 Jul 2002 13:43:24 GMT
What about the personal firewall from SyGate called Personal Firewall PRO?]]>MP3ster Wed, 03 Jul 2002 13:43:24 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorWed, 03 Jul 2002 13:36:21 GMT
I used Norton’s product, but switched to ZoneAlarm Pro v.3 about 6 months ago. After applying the most recent patch (3.0.118.001), my computers stopped accepting cookies. This persisted even after I put the browser’s privacy settings at their lowest--allow all cookies. This brings me to my point--ZoneAlarm’s tech support is abysmal. It’s email-only and they take anywhere from 5-10 days to respond. The only way for me to do any online shopping is to shut down ZAP completely, which defeats the purpose. I’m chalking this up to "lessons learned" and just received the newest version of Norton’s Internet Security. I’ll be installing that right away.]]>Paul Edwards Wed, 03 Jul 2002 13:36:21 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorWed, 03 Jul 2002 13:05:27 GMT
I was very disappointed that you didn’t cover the Sygate Personal Firewall. It blows Norton’s away as badly as Panda Antivirus blows away Norton’s Antivirus program. A firewall review without it just doesn’t make sense.]]>Joel Munt Wed, 03 Jul 2002 13:05:27 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorWed, 03 Jul 2002 12:58:07 GMT
Great article]]>Vincent Acheson Wed, 03 Jul 2002 12:58:07 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorhttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchorWed, 03 Jul 2002 11:05:09 GMT
Tiny used to be my firewall of choice, until I discovered Kerio Personal Firewall (www.kerio.com), which is Tiny v2 that has actually been developed further by the same people who originally put Tiny together. So if you like Tiny, you’ll like Kerio just as much or even more... and it’s still free. ]]>NickWed, 03 Jul 2002 11:05:09 GMThttp://www.sqlmag.com/article/antivirus/personal-firewalls#commentsAnchor