Solved

Am I secure

Posted on 2004-10-20
4
138 Views
Last Modified: 2013-12-04
I run a Windows 2003 server at home with Exchange 2003.

I have opened the following ports on the firewall 25, 80, 443, 1723 to allow smtp, Outlook Web Access, and a VPN.

I do not have an SSL certificate or any other type of encryption enabled.

To connect to OWA we require a strong password that is all.  This in itself I understand is supposed to be insecure.

However, on the router there is a facility that allows MAC address filtering which means that only machines with a specific IP address can get past the router and on to the local network.

Does this mean that my domain is secure from potential intruders?

Wing
0
Comment
Question by:WingYip
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359667
"Does this mean that my domain is secure from potential intruders?"

Well in a quick answer, NO. Your domain is NEVER 100% secure from attack....no matter what firewall you use, what ports you block, etc.

If someone gets a virus and opens it and gets infected....then it is inside your network and can potentially move thru your network.

Viruses can open firewall ports even if you have them closed.

If  the machines you want to allow thru the router have static ip addresses then you can specifiy by ip address to only allow those machines thru. This does make things "More secure"....but nothing is ever 100% secure unless you unplug it from the network and turn it off.
0
 
LVL 1

Author Comment

by:WingYip
ID: 12359812
Why is specific IP more secure than mac address filtering?
0
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359896
Well I didn't say it was more secure...just a different way.

You can filter by mac address to add an additional layer that would make things "more secure". But this is still not fool proof. MAC addresses as well as IPs can be spoofed.
0
 
LVL 18

Accepted Solution

by:
luv2smile earned 125 total points
ID: 12359970
Another example...many attacks get thru on port 80....you can't really block this because it is used for web access....

Bottom line is a firewall just isn't enough these days....you have to have many levels of security and even still you are not completely protected.

0

Featured Post

IoT Devices - Fast, Cheap or Secure…Pick Two

The IoT market is growing at a rapid pace and manufacturers are under pressure to quickly provide new products. Can you be sure that your devices do what they're supposed to do, while still being secure?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
OfficeMate Freezes on login or does not load after login credentials are input.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …
Suggested Courses

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question