TCP/IP

MUST READ Identity and Access Management Security School SECURITY SCHOOL - This Security School explores critical topics related to helping security practitioners establish and maintain an effective identity and access management plan.

NEWS: 1 - 3 of 13

	Admins run into trouble with Microsoft updates SearchSecurity.com | 14 May 2007 ARTICLE - A DNS service failure and an ongoing WSUS glitch are among this month's frustrations as IT administrators try to deploy the latest security patches from Microsoft.

	Microsoft to release DNS patch Tuesday SearchSecurity.com | 03 May 2007 ARTICLE - In addition to a fix for the DNS Server Service flaw, Microsoft plans to patch critical flaws in Windows, Office, Exchange, CAPICOM and BizTalk.

	Database security undermined by protocol loopholes, lax defenses SearchSecurity.com | 06 Mar 2007 ARTICLE - A database security vendor says database client-server protocols are being targeted by attackers. An analyst says enterprises are adding defenses.

	VIEW ALL NEWS ON TCP/IP

EXPERT TECHNICAL ADVICE: 1 - 3 of 11

TCP/IP EXPERTS
			Mike Chapple IT Security Professional ASK A QUESTION

	Are open recursive DNS servers inherently insecure? 06 May 2008 EXPERT ANSWER - Recursion was meant to make the Internet run better, but expert Michael Cobb explains why the willingness of malicious users to abuse open recursive DNS servers has made it part of numerous ongoing threats.

	How to protect DNS servers 29 Feb 2008 EXPERT ANSWER - The DNS database is the world's largest distributed database, but unfortunately, DNS was not designed with security in mind. Application security expert Michael Cobb explains how to keep a DNS server from being hijacked.

	What to consider before opening a port 28 Jan 2008 EXPERT ANSWER - Recently, a reader asked network expert Mike Chapple, "What would be the security implications of opening six ports through a firewall?" Chapple reviews what questions need to be addressed before an organization exposes any ...

	VIEW ALL EXPERT TECHNICAL ADVICE ON TCP/IP

REFERENCE & LEARNING: 1 - 3 of 7

	Man-in-the-middle attacks Addison-Wesley Professional | 03 Mar 2006 BOOK CHAPTER - This chapter excerpt examines how man-in-the-middle attacks affect Fibre Channel security and how to determine if your organization is at risk.

	IPsec architectures and implementation methods No Starch Press | 29 Nov 2005 BOOK EXCERPT - In this excerpt of The TCP/IP Guide, author Charles M. Kozierok explains the three different implementation architectures defined for IPsec.

	Hacking Windows: MSRPC vulnerabilities McGraw-Hill/Osborne | 07 Nov 2005 BOOK CHAPTER - In this excerpt from "Hacking Exposed, Fifth Edition: Network Security Secrets & Solutions," authors Stuart McClure, Joel Scambray and George Kurtz introduce MSRPC vulnerabilities and countermeasures.

	VIEW ALL REFERENCE & LEARNING ON TCP/IP

WEBCASTS: 1 - 2 of 2

	CISSP Essentials: Mastering the Common Body of Knowledge -- Class 5, Telecommunciations and Networking - Expert Webcast VIEW WEBCAST PREMIERED:   03 DEC 2004, 09:00 EST (14:00, GMT) SUMMARY:   This class focuses on the glue of network security: how networks work, how data is transmitted from one device to another, and how applications understand, interpret and translate data.

	CISSP Essentials: Mastering the Common Body of Knowledge -- Class 4, Security Architecture and Models - Expert Webcast VIEW WEBCAST PREMIERED:   16 NOV 2004, 09:00 EST (14:00, GMT) SUMMARY:   Two fundamental concepts in computer and information security are the security model and the architecture of a security system. Gain a deeper understanding of both in this class.

	VIEW ALL WEBCASTS ON TCP/IP

DEFINITIONS: 1 - 3 of 6

	digest authentication 01 May 2007 WORD - Digest authentication is a method of authentication in which a request from a potential user is received by a network server and then sent to a domain controller. The domain controller sends a special key, called a digest ...

	IP spoofing 30 Jan 2006 WORD - IP spoofing, also known as IP address forgery or a host file hijack, is a hijacking technique in which a cracker masquerades as a trusted host to conceal his identity, spoof a Web site, hijack browsers, or gain access to a ...

	Transport Layer Security 20 Jun 2001 WORD - Transport Layer Security (TLS) is a protocol that ensures privacy between communicating applications and their users on the Internet. When a server and client communicate, TLS ensures that no third party may eavesdrop or ...

	VIEW ALL DEFINITIONS ON TCP/IP

	SEE ALSO - Topics Related to TCP/IP:  IPv6, VoIP Security