juan babi | 2 Jan 20:07 2010
Picon

IPS to protect against VOIP Attacks


<!--
 /* Font Definitions */
  <at> font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;
	mso-font-charset:0;
	mso-generic-font-family:roman;
	mso-font-pitch:variable;
	mso-font-signature:-1610611985 1107304683 0 0 159 0;}
 <at> font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;
	mso-font-charset:0;
	mso-generic-font-family:swiss;
	mso-font-pitch:variable;
	mso-font-signature:-1610611985 1073750139 0 0 159 0;}
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
	{mso-style-unhide:no;
	mso-style-qformat:yes;
	mso-style-parent:"";
	margin:0in;
	margin-bottom:.0001pt;
	mso-pagination:widow-orphan;
	font-size:11.0pt;
	font-family:"Calibri","sans-serif";
	mso-fareast-font-family:Calibri;
	mso-fareast-theme-font:minor-latin;
	mso-bidi-font-family:"Times New Roman";}
(Continue reading)

organiser@syscan.org | 5 Jan 08:22 2010

SyScan'10 Call For Training (CFT)

apologies for the multiple copies.

SyScan'10 CALL FOR TRAINING

ABOUT SYSCAN'10
This year, SyScan'10 will be held in the 4 exciting cities of Singapore, Shanghai, Taipei and Ho chi Minh
City (Vietnam). Details are as follows:

SyScan'10 Singapore
date: 15 - 18 June 2010

SyScan'10 Shanghai
date: 8 - 11 July 2010

SyScan'10 Taipei
date: 19 - 22 August 2010

SyScan'10 Ho Chi Minh City (Vietnam)
date: 23 - 26 September 2010

TRAINING TOPICS
SyScan’10 training topics will focus on the following areas:

Web Applications
Networks
Securing Windows/Linux Systems
Databases
Storage
Secure Programming/Development
Cloud Computing
(Continue reading)

Predrag Petrovic | 5 Jan 10:49 2010
Picon

Re: IPS to protect against VOIP Attacks

Hi Juan,

I have been using Checkpoint for VoIP for the last few months and I am
pretty satisfied with the results.

Predrag

2010/1/2 juan babi <juan_babi <at> hotmail.com>:
>
>
> <!--
>  /* Font Definitions */
>   <at> font-face
>        {font-family:"Cambria Math";
>        panose-1:2 4 5 3 5 4 6 3 2 4;
>        mso-font-charset:0;
>        mso-generic-font-family:roman;
>        mso-font-pitch:variable;
>        mso-font-signature:-1610611985 1107304683 0 0 159 0;}
>  <at> font-face
>        {font-family:Calibri;
>        panose-1:2 15 5 2 2 2 4 3 2 4;
>        mso-font-charset:0;
>        mso-generic-font-family:swiss;
>        mso-font-pitch:variable;
>        mso-font-signature:-1610611985 1073750139 0 0 159 0;}
>  /* Style Definitions */
>  p.MsoNormal, li.MsoNormal, div.MsoNormal
>        {mso-style-unhide:no;
>        mso-style-qformat:yes;
(Continue reading)

Shawn Merdinger | 5 Jan 19:06 2010
Picon

Re: IPS to protect against VOIP Attacks

Hi Juan,

You might consider asking folks on the VOIPSA mailing list as well;
I'm sure you'll get all kinds of opinions, quite likely something
useful ;-)

www.voipsa.org

Cheers,
--scm

2010/1/2 juan babi <juan_babi <at> hotmail.com>:
> I was wondering which is the best (or at least-good) IPS
> against VOIP attacks coming from the internet to the client network. he has an Asterisk
> n the DMZ and cisco call manager in the lan. I want to protect the voip
> components with an IPS against known attacks and DOS-DDOS attacks as well.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

aditya mukadam | 6 Jan 04:19 2010
Picon

Re: IPS to protect against VOIP Attacks

We have had good experience with Tipping Point IPS. Please check
http://www.tippingpoint.com/pdf/resources/datasheets/400920-001_VoIPSecurity.pdf

Hope this helps
Aditya Govind Mukadam

On Tue, Jan 5, 2010 at 11:36 PM, Shawn Merdinger <shawnmer <at> gmail.com> wrote:
> Hi Juan,
>
> You might consider asking folks on the VOIPSA mailing list as well;
> I'm sure you'll get all kinds of opinions, quite likely something
> useful ;-)
>
> www.voipsa.org
>
> Cheers,
> --scm
>
>
> 2010/1/2 juan babi <juan_babi <at> hotmail.com>:
>> I was wondering which is the best (or at least-good) IPS
>> against VOIP attacks coming from the internet to the client network. he has an Asterisk
>> n the DMZ and cisco call manager in the lan. I want to protect the voip
>> components with an IPS against known attacks and DOS-DDOS attacks as well.
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
(Continue reading)

Fabien VINCENT | 6 Jan 18:51 2010
Picon

Re: IPS to protect against VOIP Attacks

I know that NETASQ UTM have VoIP "Plugins" (Protocol decoder for IPS
ASQ) for SIP, MGCP, RTP, etc. analysis.

They can block (un)known attacks with protocol compliance verifications.

I had a white paper about VoIP security provided by NETASQ, but it's
in French only :(
Don't hesitate if you need it or some information about NETASQ IPS.
-------------------------------------------------------------------

On Wed, Jan 6, 2010 at 04:19, aditya mukadam <aditya.mukadam <at> gmail.com> wrote:
>
> We have had good experience with Tipping Point IPS. Please check
> http://www.tippingpoint.com/pdf/resources/datasheets/400920-001_VoIPSecurity.pdf
>
> Hope this helps
> Aditya Govind Mukadam
>
>
> On Tue, Jan 5, 2010 at 11:36 PM, Shawn Merdinger <shawnmer <at> gmail.com> wrote:
> > Hi Juan,
> >
> > You might consider asking folks on the VOIPSA mailing list as well;
> > I'm sure you'll get all kinds of opinions, quite likely something
> > useful ;-)
> >
> > www.voipsa.org
> >
> > Cheers,
> > --scm
(Continue reading)

Burian, Matthew J. | 6 Jan 18:32 2010

Microsoft Security Essentials Command Line

Something I found while trying to find a way to update Microsoft
Security Essentials automatically on my home testing domain logins-
some command line parameters for working with MSE:

http://www.winhelponline.com/blog/updating-microsoft-security-essentials-using-command-line/

Especially useful is this line:

"%ProgramFiles%\Microsoft Security Essentials\MpCmdRun.exe" -SignatureUpdate

to update the MSE definition files.  I have automatic windows updates
disabled on my client machines, so I push this command in a login
script via group policy, and know that my definition files are up to
date on all machines every time a user logs in.  Obviously, this is
just for my personal windows domain, and would not be appropriate for
a real business or enterprise environment as MSE is designed for home
use, and provides no management features.  However this could still be
useful if you wish to disable windows automatic updates, and still
update your MSE definitions, either on a network, or just a local
machine by running this command at startup of the machine.

Matt

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.
(Continue reading)

s0h0us | 6 Jan 20:29 2010
Picon

Security Standards

Hi,
As part of a PCI-DSS risk assessment I need to come up with security standards for all of our critical network
devices, including windows servers. I've been directed to NIST publications and others but I'm finding
that they are general documents rather than specific ones regarding what settings need to be configured,
i guess like a checklist. can you recommend a site that might have them? i continue to search as i submit this
posting...thanks! any information is appreciated. happy new year!!!

sOhO

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Boyd, Chad | 6 Jan 22:29 2010

RE: Security Standards

The baseline that we used were the NSA Security Configuration Guides:
http://www.nsa.gov/ia/guidance/security_configuration_guides/operating_systems.shtml

They do a great job of telling you what settings to change for various scenarios. These, of course, should be
modified to your environment, but these are a great jumping-off point.

-----Original Message-----
From: listbounce <at> securityfocus.com [mailto:listbounce <at> securityfocus.com] On Behalf Of s0h0us <at> yahoo.com
Sent: Wednesday, January 06, 2010 1:30 PM
To: security-basics <at> securityfocus.com
Subject: Security Standards

Hi,
As part of a PCI-DSS risk assessment I need to come up with security standards for all of our critical network
devices, including windows servers. I've been directed to NIST publications and others but I'm finding
that they are general documents rather than specific ones regarding what settings need to be configured,
i guess like a checklist. can you recommend a site that might have them? i continue to search as i submit this
posting...thanks! any information is appreciated. happy new year!!!

sOhO

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
(Continue reading)

Ray Van Dolson | 7 Jan 00:45 2010
Picon

PXE, OS Imaging(?) in the DMZ

Looking for some advice/opinions on providing PXE access within a DMZ
network.  Primarily for convenience access to systems diagnostics tools,
but potentially would be used to image new machines with "secure"
profiles.

Obviously we wouldn't want to link this to a PXE server or images hosted
within a "secure" (internal) network, but I'm wondering if most of you
would completely avoid something like this (enforce relocating the server
to a "secure" or isolated network if it needs to be worked on or
re-imaged), or would go ahead and set something up right inside your DMZ
network, or maybe something like setting up a separate imaging/PXE
network and have the DHCP server in your DMZ assign IP's and routes to
authorized clients so they can access this network when they need it, but
regular clients could not.

Thanks!
Ray

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

(Continue reading)


Gmane