Solved

Am I secure

Posted on 2004-10-20
4
134 Views
Last Modified: 2013-12-04
I run a Windows 2003 server at home with Exchange 2003.

I have opened the following ports on the firewall 25, 80, 443, 1723 to allow smtp, Outlook Web Access, and a VPN.

I do not have an SSL certificate or any other type of encryption enabled.

To connect to OWA we require a strong password that is all.  This in itself I understand is supposed to be insecure.

However, on the router there is a facility that allows MAC address filtering which means that only machines with a specific IP address can get past the router and on to the local network.

Does this mean that my domain is secure from potential intruders?

Wing
0
Comment
Question by:WingYip
  • 3
4 Comments
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359667
"Does this mean that my domain is secure from potential intruders?"

Well in a quick answer, NO. Your domain is NEVER 100% secure from attack....no matter what firewall you use, what ports you block, etc.

If someone gets a virus and opens it and gets infected....then it is inside your network and can potentially move thru your network.

Viruses can open firewall ports even if you have them closed.

If  the machines you want to allow thru the router have static ip addresses then you can specifiy by ip address to only allow those machines thru. This does make things "More secure"....but nothing is ever 100% secure unless you unplug it from the network and turn it off.
0
 
LVL 1

Author Comment

by:WingYip
ID: 12359812
Why is specific IP more secure than mac address filtering?
0
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359896
Well I didn't say it was more secure...just a different way.

You can filter by mac address to add an additional layer that would make things "more secure". But this is still not fool proof. MAC addresses as well as IPs can be spoofed.
0
 
LVL 18

Accepted Solution

by:
luv2smile earned 125 total points
ID: 12359970
Another example...many attacks get thru on port 80....you can't really block this because it is used for web access....

Bottom line is a firewall just isn't enough these days....you have to have many levels of security and even still you are not completely protected.

0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question