SearchSecurity.com's top clicks of 2005

Top five tips of 2005

1. Roberta Bragg's 10 Windows hardening tips in 10 minutes
Our hottest tip of the year looks inside Roberta Bragg's book, "Hardening Windows Systems," and teaches you 10 things you can do immediately to harden your Windows networks.

2. How to remove a Trojan downloader
As Trojans become increasingly smarter, it gets harder to detect and eliminate them. In this tip, your peers offer advice on the best methods for ridding systems of these infectious intruders.

3. Choosing the right firewall topology: Bastion host, screened subnet or dual firewalls
The question of where to place firewalls within a network architecture is a common one. This tip reviews the three most common firewall configurations and helps you determine which option is best for your organization.

4. Where's the Firefox security button?
In 2005, we saw a lot of questions regarding the security of Firefox. Our most popular tip on the browser reviews its security options and compares them to those in Internet Explorer.

5. Keeping SOX 404 under control(s)
In the aftermath of the Sarbanes-Oxley deadline, information security professionals still found themselves stumbling over the vagueness of section 404. This tip outlines the policies organizations need to comply with SOX 404.

Top five news stories of 2005

Did you see? Check out some of our other tips, news stories and learning tools you might have missed. Layered access control: 6 top defenses that work How to tame Google Desktop Top five risks of Web-based e-mail Complying with breach notification laws Zotob exploits Microsoft Windows flaw MSN Messenger users: Fatso, Kelvir not your buddies High-severity vulnerability in IPsec   Mobile malware will cause widespread damage -- in 2007 SearchSecurity.com's Learning Guides Security School Course Catalog SearchSecurity.com's Checklist Library

1. Security no match for theater lovers
An informal street survey proved people would reveal anything -- even if it meant giving up their identity -- for even the smallest reward.

2. CISSP among highest paying certifications
A report from salary researchers at Foote Partners LLC, showed that CISSP certifications have grown in value. Find out what other certified security skills gained or lost value.

3. Linux lags Windows in new security report
Read what one controversial research paper found when it looked at the two popular platforms' track record on vulnerabilities and fixes.

4. What's all the fuss about WSUS?
When Microsoft released their new Windows Server Update Services (WSUS) in June, security professionals took opposing views on whether or not it was an improvement over the existing Software Update Service (SUS).

5. Security researcher causes furor by releasing flaw in Cisco Systems IOS
Michael Lynn's exposure of a potential vulnerability in Cisco Systems' routers at the Black Hat Briefings in July caused a major uproar and security pros quickly took sides. Find out how it all began.

Top five learning tools of 2005

1. Web Security School Entrance Exam
Are you Web security savvy? Our Web Security School Entrance Exam proved to be our toughest challenge yet. Test your knowledge of IIS and find out if you need to go to Web Security School.

2. Snort Technical Guide
While a favorite among security practitioners, the open source intrusion detection tool can be challenging to use. This technical guide aims to ease the complexities of using Snort.

3. Quiz: Vulnerability management
Vulnerability assessments and penetration tests are monumental tasks, and security practitioners need to know when one is more suitable than the other and how it will mitigate threats. Test your knowledge of the vulnerability management process with this quiz.

4. Quiz: Playing with fire(walls)
Your firewall is a vital tool in your network security arsenal. Take our quiz to find out if you're using it to its utmost advantage.

5. SearchSecurity.com's E-mail Security School
Learn how to lock down your e-mail systems, from the essentials to spam and virus defense, and policy control. Each of the three lessons consists of a webcast, technical paper and quiz created by our guest instructor, Joel Snyder.

BROWSE BY TAG Network Security: Tools, Products, Software,   Network Firewalls, Routers and Switches,   Enterprise Network Security,   Malware, Viruses, Trojans and Spyware,   Security Audit, Compliance and Standards,   Sarbanes-Oxley Act,   Application and Platform Security,   Web Security Tools and Best Practices,   Web Server Threats and Countermeasures,   Web Browser Security,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Network Firewalls, Routers and Switches How to prepare for a secure network hardware upgrade Best Network Firewall Products What is the difference between static and dynamic network validation? Screencast: Smoothwall offers firewall defense in lean times New Cisco IOS bugs pose tempting targets, says Black Hat researcher How to implement virtual firewalls in a complex network infrastructure How to manage network bandwidth with distributed ISP bandwidth Firewall rule management best practices Should enterprises be running multiple firewalls? What are the disadvantages of proxy-based firewalls? Malware, Viruses, Trojans and Spyware Increase in Gumblar backdoors poses FTP credential problems Hackers to sharpen malware, malicious software in 2010 iPhone worm Rickrolls jailbroken phones Israeli Mossad add Trojan Horse to Syrian laptop Schneier-Ranum Face-Off: Is antivirus dead? Modern malware, stealthy botnets, adapt quickly, expert says Computer worm infections up, scareware antivirus down, Microsoft says Web-based attacks skyrocket, pirating sites surge, security firms say Mini guide: How to remove and prevent Trojans, malware and spyware Kaspersky system analyzes malicious URLs on Twitter for malware Sarbanes-Oxley Act SOX compliance burdens midmarket security teams Ex-SEC chief Pitt decries state of Sarbanes-Oxley, risk management Information security book excerpts and reviews Internal audits for Sarbanes Oxley and internal IT support Internal auditors and CISOs mitigate similar risks Implement security and compliance in a risk management context Does password sharing in international branches violate SOX? Consensus Controls project aims to set benchmarks for compliance Security visualization helps make log files work The Little Black Book of Computer Security, 2nd Edition Sarbanes-Oxley Act Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary bastion host  (SearchSecurity.com) firewall  (SearchSecurity.com) Firewall Builder  (SearchSecurity.com) screened subnet  (SearchSecurity.com) virus  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary