360ITAdvice - Real Challenges, Expert Solutions

IT Challenge: DNS Security

siteadmin — Thu, 01 Jul 2010 07:00:20 +0000

I’ve heard the US Government has now mandated the use of DNS security by federal agencies; companies can deploy DNS security as well. What is DNS security, and how do I make my DNS zone secure?

IT Challenge: Insider Threats

siteadmin — Wed, 30 Jun 2010 07:00:14 +0000

What does an insider look like? Not all our insiders are malicious, and not every unwelcome result is intentional. How can we characterize insiders in ways that help us decide the best way to address the insider threat?

IT Challenge: Web Application Forensics

siteadmin — Tue, 29 Jun 2010 07:00:25 +0000

What’s the best way to analyze a misuse of a web application that might involve widely scattered services interacting through dynamic and ad hoc connections within a constantly evolving architecture?

IT Challenge: DNS Security

siteadmin — Mon, 28 Jun 2010 07:00:02 +0000

A number of DNS zones have been enhanced with security, which lets my site verify that DNS records are really correct. For example, suppose a user looks up www.irs.gov in the DNS. Without DNS security (DNSSEC), someone could provide a forged DNS reply that provides a false IP address for the site. With DNSSEC, you can authenticate the DNS response and verify that you’re really getting the correct address. Do DNS caching resolvers support DNSSEC, and if so, how can you set up your DNS caching resolver so it provides this added security?

IT Challenge: Smart Phone Security

siteadmin — Fri, 25 Jun 2010 07:00:23 +0000

How can the security and privacy aspects of smart phone apps be analyzed, and what, if any, restrictions should an organization have with respect to apps?

IT Challenge: Phishing

siteadmin — Thu, 24 Jun 2010 08:00:09 +0000

A number of phishing sites use DNS Fast Flux. What is fast flux? How do you detect it’s going on, and what do you do if you do detect it?

IT Challenge: Active Directory and Hyper-V

siteadmin — Wed, 23 Jun 2010 07:00:03 +0000

How can I provide Active Directory (AD) redundancy using Hyper-V virtualization without introducing errors or issues into the AD infrastructure?

IT Challenge: WiMax Security

siteadmin — Tue, 22 Jun 2010 07:00:09 +0000

What are appropriate methods for securing applications that use the Worldwide Interoperability for Microwave Access (WiMAX, IEEE 802.16) wireless for metropolitan area networks?

IT Challenge: VPN Security and Windows 7

siteadmin — Mon, 21 Jun 2010 07:00:30 +0000

We currently use XP PRO L2TP/IPSec (machine and user certificates) for our VPN connectivity in conjunction with our ISA 2006 server, which has worked great to date. We’re now planning a migration to Windows 7 systems and looking at the built-in functionality. Does Windows 7 built-in connectivity provide a comparable level of security to the existing VPN setup? If so, are there any best practices or easier methods of deployment? (Our infrastructure is 2003 servers/active directory, and a couple of 2008 servers.)

IT Challenge: Security Metrics for Management

siteadmin — Fri, 18 Jun 2010 08:00:34 +0000

How do you ask upper management for more money for security metrics? And, most important, how do you know whether you can trust the data?