DNS stands for Domain Name System. DNS servers are a critical part of the campus network infrastructure and the Internet because they allow information on the Internet to be available when you enter a URL in your Web browser. UC Davis disabled one capability of the DNS servers –recursive DNS - to help improve security. [...]
Home > Network Security
What is recursive DNS?
Archived in the category: Network Security
Posted by zyreel on 10 Jul 08 - 0 Comments
One example of recursive DNS is when someone who subscribes to an ISP (e.g. Comcast) configures their computer to use the UC Davis DNS servers rather than their ISP DNS servers to access the Internet.
What happened to the Penalty Box and Source Blocking?
Archived in the category: Network Security
Posted by zyreel on 09 Jul 08 - 0 Comments
<!– /* Font Definitions */ @font-face {font-family:Verdana; panose-1:2 11 6 4 3 5 4 4 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:536871559 0 0 0 415 0;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {mso-style-parent:””; margin:0in; margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:12.0pt; font-family:”Times New Roman”; mso-fareast-font-family:”Times New Roman”; mso-ansi-language:MS;} p {mso-margin-top-alt:auto; margin-right:0in; mso-margin-bottom-alt:auto; margin-left:0in; [...]
How can I prevent certain users who are domain administrators from logging onto domain controllers?
Archived in the category: Network Security
Posted by zyreel on 09 Jul 08 - 0 Comments
That depends on the kind of user they are. If they are a member of a group that grants them rights on domain controllers (for example, Domain Admins) there really isn’t a way to do that. If your domain is small enough, you could specify the list of computers they are allowed to login to, [...]
Some of my employees are seeking privileges that I feel compromise the integrity of my network. Could you share some best practices for network security so that I can prove how dangerous these priveges are?
Archived in the category: Network Security
Posted by zyreel on 08 Jul 08 - 0 Comments
Politics is probably the second most difficult thing the balance against security (the first being money). This is what I use as a measuring stick. If someone can’t provide a valid *business* justification for the escalated privileges, I fight strongly against providing them. If a business application requires escalated privileges, I escalate the issue with [...]
What is a Spam Relay?
Archived in the category: Network Security
Posted by zyreel on 08 Jul 08 - 0 Comments
<!– /* Font Definitions */ @font-face {font-family:Verdana; panose-1:2 11 6 4 3 5 4 4 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:536871559 0 0 0 415 0;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {mso-style-parent:””; margin:0in; margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:12.0pt; font-family:”Times New Roman”; mso-fareast-font-family:”Times New Roman”; mso-ansi-language:MS;} p {mso-margin-top-alt:auto; margin-right:0in; mso-margin-bottom-alt:auto; margin-left:0in; [...]
What is a Trojan?
Archived in the category: Network Security
Posted by zyreel on 08 Jul 08 - 0 Comments
<!– /* Font Definitions */ @font-face {font-family:Verdana; panose-1:2 11 6 4 3 5 4 4 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:536871559 0 0 0 415 0;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {mso-style-parent:””; margin:0in; margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:12.0pt; font-family:”Times New Roman”; mso-fareast-font-family:”Times New Roman”; mso-ansi-language:MS;} p {mso-margin-top-alt:auto; margin-right:0in; mso-margin-bottom-alt:auto; margin-left:0in; [...]
What general security precautiowns should I take?
Archived in the category: Network Security
Posted by zyreel on 07 Jul 08 - 0 Comments
If you are a Webmaster, system administrator, or are otherwise involved with the administration of a network, the single most important step you can take to increase your site’s security is to create a written security policy. This security policy should succinctly lay out your organization’s policies with regard to:
who [...]
Are server-side includes insecure?
Archived in the category: Network Security
Posted by zyreel on 07 Jul 08 - 0 Comments
Server side includes, snippets of server directives embedded in HTML documents, are another potential hole. A subset of the directives available in server-side includes instruct the server to execute arbitrary system commands and CGI scripts. Unless the author is aware of the potential problems it’s easy to introduce unintentional side effects. Unfortunately, HTML files containing [...]
What’s the difference between Viruses and Worms?
Archived in the category: Network Security
Posted by zyreel on 07 Jul 08 - 0 Comments
<!– /* Font Definitions */ @font-face {font-family:Verdana; panose-1:2 11 6 4 3 5 4 4 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:536871559 0 0 0 415 0;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {mso-style-parent:””; margin:0in; margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:12.0pt; font-family:”Times New Roman”; mso-fareast-font-family:”Times New Roman”; mso-ansi-language:MS;} p {mso-margin-top-alt:auto; margin-right:0in; mso-margin-bottom-alt:auto; margin-left:0in; [...]
