Hot Solutions

What, aside from restricting access to write data out to a thumb-drive, does "endpoint security" cover? Could anyone provide a list of perhaps the top 5 security controls that endpoint security enforces! Can you implement endpoint security...

I am running Windows XP, Update 3 on an IBM T60 laptop I bought as a refurbished unit from IBM. I keep getting the following warning window popping up. I have searched to find its source and how to stop it. No luck. Can anyone please tell me how...

I learned this neat getmac trick on youtube that is supposed to output your mac address. The youtube video showed how to do this but the person making the video only had one physical address (i.e. mac address) listed for his where I show three...

My university has installed McAffee on the system and it would appear from the McAffee agent status monitor that my every keystroke is being monitored. However, I am not sure I fully understand the output from the Monitor. Would you interpret...

hi experts, can anyone here explain in laymans term what is private and public certificate is? and how it works? and what is self signed certificate?

I remember using a software that enabled me to reset the administrator password on windows 7, that I forgot at some point.
anyone able to provide me with the link to download the software and reset my local administrator password on windows 7?
...

I'm thinking about getting certified as an ethical hacker, and found a website at http://www.eccouncil.org
that claims to get me certified, but for about $2000!
anybody have other, less expensive ways to get certified? I'm out of a job at the...

I have used whole disk encryption in the past with Windows and now have FileVault installed and running on Lion. Assuming I never walk away from my computer unless the password logon screen is showing, the machine is sleeping or off, can atone...

I just looked at "All Messages" and see Airdrop (or Airport) is quite active. I do not want anyone to see my computer wirelessly, and if I ever want to use it I will turn those features on.

How can I make sure my PC is locked down wirelessly...

I am very interest in learning computer security, and ethical hacking.
I know basic security from working on computers for a very long time, but I would like to take my knowledge to a higher level
Does anyone have suggestions on a good...

Hello

I have noticed that on our SBS Essentials 2011, event viewer, security tab that there are thousands of "An account failed to log on".

I cleared the log on Monday evening (4.30pm) when I look today there was lots of failed logins, i'm...

I found http://technet.microsoft.com/en-us/library/cc526440.aspx

And it says


"Remove All Unnecessary File Shares
Remove all unnecessary file shares on the system to prevent possible information disclosure and to prevent malicious users...

I have a standalone Windows 7 Professional machine and need to prevent users from copying data from it.  

It is used on a Standard user login, and I have an Administrator login for it.

How can I prevent USB flash drives from being used on...

Here is the output of my hijackthis file and I wanted to know what I should get rid of to get my internet working once again.  I can go online, but every so often, when I attempt to go onto another webpage from the present webpage I'm on, I get...

Hi Expert,

Could you please let me know how different it is between those two ACL commands?

access-list 112 permit udp any any eq domain
access-list 112 permit udp any eq domain any

Thanks

EN

We have roughly 250 Windows workstations in 12 offices.  Each office has a Windows server.  We have a single domain and a fully meshed network. Each workstation runs McAfee Security-as-a-Service Version 5.2.3 Patch 4.  Every workstation pulls...

Hi,

I have two ASAs 5550s and would like to upgrade them to the latest OS, I've downloaded the asa843-k8 and asdm-647 and I would like to now if these are the latest and if there are any official vulnerabilities yet of this OS.

Cheers
Duncan

Forgive me for asking such a broad question, but I recently agreed to spend more time on the security side of things and I was surprised to see just how much things have changed.

Basically, I'm seeing that pretty much everyone has the basics...

1) Our IT department seem of the view that if citrix remote access gateawy requires 2 factor authentication then we are pretty secure? Whats your view on that opinion?

2) If you only publish citrix to the world, are there still other attack...

I have recently set up MBSA to scan our servers (Windows 2003) and now I am getting an error on my backup (evault online).  Their support says that their folder on each server should be excluded from all scans and that MBSA must be scanning the...

Is ITIL more geared towards audit as opposed to vulnerability assessment?
Say for example if you looked at a set of web servers and found they were insecure due to multiple vulnerabilities, it is really an "as is" type review, as opposed to an...

I know that remote desktop services supports SSL and allows clients to authenticate the server identity using SSL certificates.  Is it also possible to restrict what clients can connect to the server through the use of certificates?  That is can...

I would just like to know whether if this is a safe software to install since it is not being regulated in the US.  Whether if there is any compatibility issue that anyone aware of?  any security risk, malware, worm?

Thank you!

How many Megabytes are the Microsoft Essential daily updates? I'm always running out of my alloted download ability with my satelite provider Wildblue and I'm wondering how much my anti-virus updates are using. I have five PC's on my home network.

I would like to block the use of specific user passwords from being used in AD and would like to know if there is a way using a Microsoft GPO or AD entries to do it or do we need to use a third party tool.  If it is a third party tool, is there...

I have been tasked with creating GPO to change the name of the "Local Administrator" account on computers and laptops in our domain every 45 days. The reason for this is that we don't want former employees going to the competition with this...

I need to make severe tests on my servers, and I wish I were given a software for windows, which made ¿¿the brute force ftp function efficiently. I tried a few but very poor in resources and efficiency. thank you

missing entry logifetch,logilda.dll , bad_pool_header, disable bios, shadowing, cache.

I have MANY .jpg screen shots of errors and issues from which to  evaluate this problem. Please let me know how to share them for those who have experience...

We have some UNIX servers (AIX) in which normal users have the ability to navigate all throughout the OS.  They have no reason to do this and therefore; we want to restrict the users to their home directory.  This only applies to normal /...

What version of certification are we at?
What do you have to do to get which ITIL certification?
Are there any free learning materials out there?
How long should it take someone in the industry to get certified?
What else should I be asking?...

I have some 3rd party vendors coming into work on various systems for varying lengths of time. I need to produce documentation on what procedures to follow and what restrictions to place on them in AD,group policies, remote access rights etc......

Hello,

I have an Ubuntu 10.04.3 LTS machine (VM).  The Kernel is setting at: 2.6.32-33-server
When I ran the command to search for image upgrades (sorry can't remember the exact command)...something like this: ap search linux-image, there are...

I wanted to know, within TDSSkiller, when I run it on my pc, it finds about 300 "threats" and I wanted to know how to clear this items and get rid of them?  The two options I get after running this utility are:

Copy all to quarantine
or...

It has been a while that we didn't login to our old unix server. But when we switch on, it ask for login id. We did record the password before but somehow, we can't login. Possible reason is the password has been changed.

Our server is Unix...

So I want to know how easy and how much risk is involved by having an IP address that can be RDP'd into from anywhere.

What ways could someone get into my system if any?

Hello. I have an important question to ask you applicable to anti-virus security software, anti-virus databases, and different operating systems.

Regarding anti-virus program that is compatible and applicable to Linux Ubuntu v.11.10 64-bit...

I have been using ssh into a machine that is currently port forwarding ssh, I had the change the outside port to a different one and now I am getting a
Net::SSH::HostKeyMismatch
fingerprint (fingerprint) does not match "[ip of...

Do the majority of corporate AV products (specifically those used on mail gateways) pretty much update themselves. Our m anagers seem to think anti-virus is a hugely complex beast and that keeping definitions up to date is an admin intensive...

Hi Experts,

I'd like to allow a particular OU to be able to use small password but not the entire domain on Server 2008. I don't want admins for exemple to use small passwords without complexity.
In other words, I don't want to modify the...

I am taking an IT Security class, We have a project that requires students to attack each other. The games consist of offensive and defensive challenges, with each team keeping its own network and services up and running while attacking the...

By what names will hardening systems/applications and vulnerability management polcies be referred? Do you have such a policy at your companies or do these areas fit into an over arching policy, are they referred to as something else, or do they...

3 local machines got viruses.  (Network/Server scanned & checked cleaned)

Trojan: Win32/Sirefef.P
Trojan: Win32/Waprox
Trojan: Win32/Medfos.A
PWS: Win32/Ldpinch.DC
Trojan: Win32/Cleaman.G
Trojan: Win32/Medfos.B
Trojan: Win64/Sirefef.Y...

My system is getting really flaky. I looked at the event log and found many Schannel Errors.

My understanding is that schannel has to do with security.

What does it do and how do I fix it.

Thanks,

Steve

I want to find out how prevalent a specific user password is in our network AD.  I would like to create a script that attempts to login to each user account in AD and tries this specific password 1 time and then logs whether it worked or didn't...

Hello,

We have a few Windows Server 2008 32bit Domain Controllers that are starting to get the conficker worm on them.  These servers are all patched, but we do not have any anti-virus running on them.  What is the best way to protect these...

Hi

We run public DNS for our costumers.
These servers are 2003 servers, there is only opend for port 53 from outside and in.

Would we gain any major security improvements if upgrading these to Server 2008 R2? or is server 2003 pached to...

Can I ask how a “local exploit” would be a risk factor if combined by a “remote exploit” on a web server? Take the website running on the server out the equation, the server is running IIS and say server 2003. Can you explain to me in management...

We have many remote users who use laptops and for corporate policy we need to find a 3rd party application that will allow the IT department to remotely access any and all data on those laptops and to remotely wipe and\or disable the laptop at...

We have an EMC Celerra device serving up many CIFS/File servers for our enterprise.  We had an issue on one drive which is a "dumping ground" where everyone in the company basically has full access, well someone removed the "Everyone" group which...

I have exe file that contain virus I need to disinfect it because I need that file, bitdefender detect the file and delete it, but never disinfect it. how can I disinfect it the file without loosing it.

thanks

Help! My server is being hacked. All of my users are accounted for, but someone else is in my files. How do I find the address of who is accessing my server?

I'm having issues regarding deleting some PDF files and having them come back.  I've never seen such a thing before.  This is on a Windows 7 Premium machine and we have Carbonite as a backup solution.  Can you point me in the correct direction as...

Is it an absolute certainty if a workstation (say XP) is running an older service pack, i.e. SP 2 or 1 that it will be behind on security updates? So even if you use WSUS, if you ran MBSA against a XP workstation running SP 2 and an XP...

I am looking for a free tool that I can run to check that passwords on all of my servers are secured and meet standards. Basically I want to make sure that the passwords are either not set or, clear, or bogus. I do not care to brute force or know...

Hi,

In one of my laptop my ntfs file got corrupted. I had already recover my data but i dont want to format the system. Pls suggest me is there any solution or tool in which i can restore my system to normal mode. When ever i am starting the...

I have a small business client (a small dental office) that needs to have their XP Pro clients locked down to prevent unauthorized software installations and system changes.

They also have 2 issues that make this more challenging.

First,...

Hi,

Our anti-virus contract is up in June and I have been asked to check out prospective software. Currently we are using Trend 10(I was going to upgrade to 10.6 but am not now due to the contract being up), which we upgraded from 8 over a...

One of my users just complained as follows:

"When I do a search using Google, I am now getting many hits from a website called my.jobsscroll.com

How do I block that site from showing up on searches?  I have no interest in anything that...

EE Experts,

I am not having problems with viruses that I know of. I can run Clamwin as a Windows GUI application without any problems and get useful results. There is a sample command line in Clamwin Help as follows

clamscan.exe...

Short version:  What is the recommended threshold for the counter Server Errors Logon?  

Background info: Right now, on three separate servers (two Windows Server 2008 R2 and one Windows 2003), we keep receiving alerts that the counter has...

Out of being purely curious, in your roles as security managers/admins/auditors, could you give me perhaps an idea of the top 10 tasks you typically get involved with during a typical working week, i.e. "top 10 daily tasks", "top 10 weekly...

Hi EE members,
I have a network share let's call "homes" which house a bunch of user home folders. I need a script or an application that will remove the "Include inheritable permissions from this object's parent" check box from the user...

i need a good free or cheap keylogger

Hello,

I am having an issue with internet explorer 8, trusted site is greyed out. I unistalled reinstalled the IE8,  reset the internet explorer but in vain. This happened only in 3 pc in our parc. All other xp pc can access trusted sites.
...

As a vendor, I was tasked with installing an application on a customer's VM Windows 2008 R2 (x86) Virtual Server.
The Domain User account I was assigned was a member of the Local Machine Administrators Group.
I logged on to the VM server via...

Can anyone give me a management style breakdown of how a missing patch on a webserver could lead to compromise of restricted data in a private LAN? And some realistic opinion on whether it would.

Say for example you find apache tomcat is out...

Hello. I have a theoretical question to ask you.

If you have a Windows 7 64-bit and a Linux Ubuntu v11.10 64-bit on the SAME computer on the SAME internal drives but DIFFERENT partitions – this arrangement would by default result in a dual or...

Hi

What the courses/training courses are needed to be a Linux security analyst?

Thanks

on server Internet Explorer Enhanced Security is disabled for administrators and users, but users keep geting the popup for every website browsed stating that the Internet Explorer Enhanced Security is enabled and each site must be added to...

I am supporting a user who has locked out his password on an OS X 10.4 machine.  He has tried numerous times and received the following error message:

   "type the master password to reset this user's password and to unlock fileVault."
  ...

Hi,

Since a few months I have a hosted server with a few domain websites / mail server on it.

A while ago I noticed in the event log that someone was trying to get in into my server by bruteforcing my pwd. This was through RDP which was...

1) What exactly are "admin templates" in terms of GPO's for client workstations? In laymans terms.

2) Are they like a list of common security settings you'd typically apply to a workstation?

3) Can you do "above and beyond" type security...

Greetings, Experts!

A few months ago a few experts helped me develop a script to delete user profiles that were in backup status (found here).  I have that script set to execute upon user login.  That script works great, but only if logged in...

any standard software for pen test

I need some help writing a bash script (or something else, if suggested) that will scour recursively through all the php files in a folder and subfolders, and do a search & replace.

The text to match is quite long, so I'm guessing a script...

Sometimes when I log in to Windows (7 Ultimate x64) I get an error that explorer.exe has stopped working. When I examine the error all it shows is that ws2_32.dll_unloaded was the faulting module.

I tired running sfc /scannnow but it came back...

Hi,

I want to autenticate wireless users  using the 801.1x protocol, validating through NPS radius to my AD, all users are in AD, but the problem is that all the computers aren't in domain, can be a personal laptops or tablets.

My question:...

I have a Pc that I do not know the password for.  QUESTION IS:  If I reinstall windows Vista, will it take away the need for the password?   the PC was purchased used and the seller does not answer his phone for 2 weeks.  I would like to hit F11...

Anytime I see encrypted data whether it's AES, base 64 or some other technology, the number of characters needed exceeds the size of the non-encrypted information. But I need something which is encrypted but uses the same or less number of...

i am running a erp software on a local lan with a apache tom cat web server. I want a software based UTM with which i can control traffic on my lan and restrict users for certain activities. give access based on ip and mac numbers, control...

One of my clients uses AOL as their email and they only have one user account between 2 or 3 people.  The issue is that whenever one of them logs off, it shuts the other or other 2 down as well.  Is there a way around this?

They all use the...

Excuse my ignornance but is a patch management policy and a vulnerability management policy the same thing? Or are they 2 distinct policies at most places, or typically merged as one?

Aside from our securtiy guy running nessus once per month,...

I am having an issue with BGInfo not changing the Hostname when we are using a template.

Also sometimes when the hostname is edited the BGInfo ( even when refreshed) it is not updated on the information.

Does anyone know where and if so how...

I'm looking to purchase a new 24-port switch, pref gigabit switch.  I presently have 14 ports that are live and I believe that I'm experiencing issues because of the switch.  Can someone suggest a very good switch?  I don't do any vlans or...

Hello,

  I work as a Helpdesk Administrator for a large company in south Louisiana.  During a ten hour shift, I find myself doing some of the same troubleshooting steps over and over again, all for different users.  In an effort to simplify...

In AD users and computers , I was checking a user account and viewed their properties, if you go onto the security tab of properties, go down to everyone, it has change password ticked in grey? Does that mean everyone can change this users...

I usually use CIS Security Benchmarks and CIS Audit Tools to check the compliance and security of the systems in my company. However, I would like to know are there any other benchmarks or checklist out there that can check Windows, Linux,...

Hi guys

I have a small network with 6 computers, most of them running win7 64 and 32 bit and 1 running vista.
I need an antivirus but i would like to manage it cetralized, i tried diffferent ones and i had to install and customized 1 by 1, is...

is it possible to automate  linux patch updates via yum

Here's the network setup:  

I have a client that at one point was using a computer as a server and since then, has done away with this particular "server".  The problem is/was that this server was acting as their DNS server, but is now gone. ...

Hello,

I have a 2-PC house and so have networked them together and shared all the devices with full devices.  I need to now accommodate a 3rd PC and another person and want to limit their access to everything except for read only access to a...

I used to have a utility that would auto-update various utilities that I store on my computer.  Things such as mbam, combofix, tdsskiller, ccleaner, etc.  I could pick from a list of popular utilities of which it would know the url to check from...

is there any software that track installation of any program files into windows and where that program copies it self and where it added its registry value, so later on if i want to remove it i will be sure that it will be removed from the root...

Where on an XP machine is the actual version per client side software stored? For example my version of Adobe Reader is 8.1.1 but I can only see this when I open the software and go about. Is there anyway to run a script or tool to get the actual...

Hello Experts,

My SMB has been under a UserName/Password guessing attack for several days now. They haven't gotten anywhere, I use strong passwords, but it's annoying. I've set the login threshold to 3 but that only caused them to change...

Hi All,

The SBS 2011 was working ok and now suddenly i cant login to the server via my (administrator) Sandy account via my password.......i havnt changed my password.

Please let my know what would be the problem, is it a policy or...

So, my son has been abusing his computer priviledges.  He's just turned 13, and to date, he's learned how to bypass Software Time's ComputerTime software, and Norton's Parental Controls (at least as far as the time is concerned).

As a result,...

Anyone know of a tool (freeware, has GUI) or script (vbscript, powershell, autoit) that can enumerate a drive and all its sub-folders so I can review who has access to what?

I tried this command in PowerShell but it doesn't enumerate all...