IP Spoofing

Published By On Sunday, February 24th 2008. Under Paper Of The Day    
IP Spoofing
After a while I decided to browse to see if there is any article of interest and ended up in IP Journal (Cisco's). In this edition there is a fairly neat and to-the-point explanation of IP Spoofing. For some one who is just coming to security, which is the ... Continue Reading

Transparent Firewalls

Published By On Saturday, June 2nd 2007. Under Juniper, Paper Of The Day, Tech in general    
Transparent Firewalls
Transparent firewalls are definitely a great enhancement to traditional firewall arena, for the very reason that the presence is not revealed. A simple article on what are the advantages of having one in such a mode is described ... Read More... One of the other reasons why I like ... Continue Reading

Packet Sniffing in SWITCHED Networks!

Published By On Monday, December 4th 2006. Under Paper Of The Day    
Packet Sniffing in SWITCHED Networks!
If you're one among who *knows* the basics but haven't thought about it in action since you AREN'T a hacker, you would love this paper. ARP Spoofing isn't a new thingy in attack world but the paper puts some insight into what you already know but haven't seen it in any ... Continue Reading

Egress Filtering

Published By On Sunday, July 23rd 2006. Under Paper Of The Day    
Egress Filtering
The egress filtering is often forgotten since the theory of Enterprises is that 'allow everything from my internal network to go outside' and by default nothing will be allowed back into internal from Internet. This seems to make a lot of people happy about their networks nevertheless, it is good ... Continue Reading

Intelligent IDS Systems

Published By On Saturday, July 22nd 2006. Under Paper Of The Day    
Intelligent IDS Systems
Some time back when I was testing the Cisco IDS system at a Cisco Offshore Development center, I often felt like we are in an era of 'converged solutions' but often the elements are not converged at all. A distributed Intrusion Detection/Prevention System should be able to manage itself to a ... Continue Reading

Security Metrics

Published By On Saturday, July 22nd 2006. Under Paper Of The Day    
Security Metrics
"Any activity cannot be managed if it cannot be measured..." One of the things I love about this is, this is like a striking quote! Conveys a lot of message in a single sentence and I believe it is true. Shirley C Payne writes about 'Security Metrics' at Sans.org, a highlevel ... Continue Reading

Transparent Firewalls – Intro

Published By On Wednesday, July 19th 2006. Under Paper Of The Day    
Transparent Firewalls – Intro
It is a great feature enhancement we have now, the so called 'transparent firewalls'. A firewall that works in Layer 2. Advantages ? Just plug into the network, nobody will even know that there is a firewall sitting in between and doing filtering of packets since there is no ip addresses ... Continue Reading

Hardening the TCP/IP stack to SYN attacks

Published By On Tuesday, July 18th 2006. Under Paper Of The Day    
Hardening the TCP/IP stack to SYN attacks
I've been in the habit of reading technical papers (one a day, sounds like a tablet). I believe, it would be a good idea to keep all of them in one place and so 'Paper Of The Day' :-) Hardening the TCP/IP stack to mitigate/hanle SYN attacks The paper brings in an ... Continue Reading