This week's class focused mainly around securing or hardening a network. A lot of the information in this chapter, I thought was common knowledge. Things like dial-up internet and 56k modems are a thing of the past, at least in my opinion. Other things talked about in the book I thought are basic concepts that every network tech needs to know.
In talking about firewalls, packet filtering is one of the most important things that routers do. Firewalls also act as an application and circuit level gateway, as well as a proxy server. But the packet filtering is what keeps the network secure. An intrusion detection system is also important. An IDS establishes and maintains network security.
Along with understanding the hardware, a good tech also needs to understand the different terms and location associated to networks. When I say terms and locations I am referring to first knowing you network and what you can trust and second knowing what is outside you network and more importantly when you are accessing resources outside you network. In my experience a network you are familiar with is much easier to keep secure than with a network you know nothing about.
Tuesday, October 13, 2009
Thursday, October 1, 2009
IS-230 Journal 4 & IS-181 Journal 5
Chapter 4 talks about hardening your system. These types of systems include: server, networks, operating systems, etc. Hardening has two parts. The first part is to make sure things are up to date. The second is restricting access to the system.
Keeping thing up to date can be done many different ways. Service packs are a collection of updates put out to remedy a known problem or patch up a loophole. Hotfixes are usually related more to a software bug or feature that doesn’t work. Last but not least is the patch. Patches remedy either a security flaw or an update a specific software problem.
Now access in my opinion is more subjective. Obviously by limited access to the data, the security level goes up and chances of corrupted or compromised data goes down. In businesses, it is common practice to have user policies. Policies can be setup lots of different way, but almost all are effective.
Keeping thing up to date can be done many different ways. Service packs are a collection of updates put out to remedy a known problem or patch up a loophole. Hotfixes are usually related more to a software bug or feature that doesn’t work. Last but not least is the patch. Patches remedy either a security flaw or an update a specific software problem.
Now access in my opinion is more subjective. Obviously by limited access to the data, the security level goes up and chances of corrupted or compromised data goes down. In businesses, it is common practice to have user policies. Policies can be setup lots of different way, but almost all are effective.
IS-181 Journal 2
Hackers and their types of attacks is such a broad topic because there are so many types and reasons it is done. In the media hacking has been almost glorified. When the truth of it is, the guys who actually do this stuff aren’t usually the good guy or Robin Hood as portrayed in the movies. The reality of hacking becomes more real if it happens to you or maybe someone you love.
As I have been reading through the book and Doing these exercises, I have been awakened to how easy it is to obtain the software or tools that these hackers use. Also, the truth of it is, the more time that goes by the more software will be developed, distributed, and made readily available to use for those purposes. Granted, the majority of this software has a legitimate use, some was designed with idea for nothing more than hacking.
The Advanced Office Password Recovery tool that we used in one of our assignments I thought was very useful. I enjoy learning about these kinds of tools. I believe that knowing about these kinds of tools help us to better understand how to protect ourselves or the risk we can put ourselves in by not protecting ourselves against these kinds of easily accessible tools.
Hackers and their types of attacks is such a broad topic because there are so many types and reasons it is done. In the media hacking has been almost glorified. When the truth of it is, the guys who actually do this stuff aren’t usually the good guy or Robin Hood as portrayed in the movies. The reality of hacking becomes more real if it happens to you or maybe someone you love.
As I have been reading through the book and Doing these exercises, I have been awakened to how easy it is to obtain the software or tools that these hackers use. Also, the truth of it is, the more time that goes by the more software will be developed, distributed, and made readily available to use for those purposes. Granted, the majority of this software has a legitimate use, some was designed with idea for nothing more than hacking.
The Advanced Office Password Recovery tool that we used in one of our assignments I thought was very useful. I enjoy learning about these kinds of tools. I believe that knowing about these kinds of tools help us to better understand how to protect ourselves or the risk we can put ourselves in by not protecting ourselves against these kinds of easily accessible tools.
Tuesday, September 29, 2009
IS-230 2
We focused on charts in class this week. There are lots of practical uses of charts, but in my opinion there are a lot of frill that goes with them also. As long as the chart is formatted corrected and the data is viewable, I believe the chart is acceptable. I am also a big believer in keeping things simple as well.
Probably the single most important aspect with a chart is having the data formatted correctly. Making sure your chart supports the ideas that are trying to convey. This is done by having the correct information in the right location on the chart. No matter what method is used to create the chart, correct placement of the data is crucial to the successful effectiveness of the chart.
The next most important part (in my opinion) is the type of chart. Once we know the data is correct and put in the right place on the chart, we need an effective display of the information. For example, we wouldn’t use a Column Chart to display a percentage. A percentage is better displayed in a Pie or 100% Stacked Column Chart. Because charts are used as a visual, they need to be able to effectively display results.
Last and possibly least important are the visual effects and formatting. The reason I believe them to be the least important; is because without correct information in the right location on the right type of chart, visuals do nothing. Once the previous things are correct, the visual and formatting becomes important. Nobody wants to look at a boring chart. However, a colorful chart with the right setup can educate almost anyone.
Probably the single most important aspect with a chart is having the data formatted correctly. Making sure your chart supports the ideas that are trying to convey. This is done by having the correct information in the right location on the chart. No matter what method is used to create the chart, correct placement of the data is crucial to the successful effectiveness of the chart.
The next most important part (in my opinion) is the type of chart. Once we know the data is correct and put in the right place on the chart, we need an effective display of the information. For example, we wouldn’t use a Column Chart to display a percentage. A percentage is better displayed in a Pie or 100% Stacked Column Chart. Because charts are used as a visual, they need to be able to effectively display results.
Last and possibly least important are the visual effects and formatting. The reason I believe them to be the least important; is because without correct information in the right location on the right type of chart, visuals do nothing. Once the previous things are correct, the visual and formatting becomes important. Nobody wants to look at a boring chart. However, a colorful chart with the right setup can educate almost anyone.
Tuesday, September 15, 2009
IS 181 Journal 2
This week in class we talked about the simplest forms of security. Even though these steps may seem simple and even trivial, they are the foundation upon which good network security rests.
Some of the simple things we talked about were Windows Update and a good anti-virus program. Keeping these pieces of software up to date is probably the most single important step in keeping a secure network.
We also did an exercise that took us out to a website that scanned all the network ports that were open and gave it a security rating. The website was called Shields Up! Being that we were logged in on campus computers, all the ports seemed to be secure.
Another tool we used was the Microsoft Baseline Security Analyzer. This is an interesting tool that helps solve issues that could be potential security risks. For example, it showed us that the school computers were not up to date with Microsoft updates. It is tools like these that we can utilize to help aid us in search for a more secure digital world. Until next time.
Wednesday, September 2, 2009
IS 181 and 230 Journal 1
This is my first post for my IS classes. From what it sounds like, we will be using a blog to post all of our journals including our tech journals. This will be a new twist on homework for me. I am a huge techie but not much for sharing personal info on the web.
There is also a new teaching model that the school refers to as the Learning Model. This new model basically is loop (one eternal round). The three steps to the Learning Model include: Prepare, Teach One Another, and Ponder and Prove. This is a great way to incorporate the gospel into teaching.
I look forward to another semester with Bro. Wilkinson.
Subscribe to:
Posts (Atom)