Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Am I secure

Posted on 2004-10-20
4
Medium Priority
?
140 Views
Last Modified: 2013-12-04
I run a Windows 2003 server at home with Exchange 2003.

I have opened the following ports on the firewall 25, 80, 443, 1723 to allow smtp, Outlook Web Access, and a VPN.

I do not have an SSL certificate or any other type of encryption enabled.

To connect to OWA we require a strong password that is all.  This in itself I understand is supposed to be insecure.

However, on the router there is a facility that allows MAC address filtering which means that only machines with a specific IP address can get past the router and on to the local network.

Does this mean that my domain is secure from potential intruders?

Wing
0
Comment
Question by:WingYip
  • 3
4 Comments
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359667
"Does this mean that my domain is secure from potential intruders?"

Well in a quick answer, NO. Your domain is NEVER 100% secure from attack....no matter what firewall you use, what ports you block, etc.

If someone gets a virus and opens it and gets infected....then it is inside your network and can potentially move thru your network.

Viruses can open firewall ports even if you have them closed.

If  the machines you want to allow thru the router have static ip addresses then you can specifiy by ip address to only allow those machines thru. This does make things "More secure"....but nothing is ever 100% secure unless you unplug it from the network and turn it off.
0
 
LVL 1

Author Comment

by:WingYip
ID: 12359812
Why is specific IP more secure than mac address filtering?
0
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359896
Well I didn't say it was more secure...just a different way.

You can filter by mac address to add an additional layer that would make things "more secure". But this is still not fool proof. MAC addresses as well as IPs can be spoofed.
0
 
LVL 18

Accepted Solution

by:
luv2smile earned 375 total points
ID: 12359970
Another example...many attacks get thru on port 80....you can't really block this because it is used for web access....

Bottom line is a firewall just isn't enough these days....you have to have many levels of security and even still you are not completely protected.

0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
this video summaries big data hadoop online training demo (http://onlineitguru.com/big-data-hadoop-online-training-placement.html) , and covers basics in big data hadoop .
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …

885 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question