Solved

Am I secure

Posted on 2004-10-20
4
137 Views
Last Modified: 2013-12-04
I run a Windows 2003 server at home with Exchange 2003.

I have opened the following ports on the firewall 25, 80, 443, 1723 to allow smtp, Outlook Web Access, and a VPN.

I do not have an SSL certificate or any other type of encryption enabled.

To connect to OWA we require a strong password that is all.  This in itself I understand is supposed to be insecure.

However, on the router there is a facility that allows MAC address filtering which means that only machines with a specific IP address can get past the router and on to the local network.

Does this mean that my domain is secure from potential intruders?

Wing
0
Comment
Question by:WingYip
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359667
"Does this mean that my domain is secure from potential intruders?"

Well in a quick answer, NO. Your domain is NEVER 100% secure from attack....no matter what firewall you use, what ports you block, etc.

If someone gets a virus and opens it and gets infected....then it is inside your network and can potentially move thru your network.

Viruses can open firewall ports even if you have them closed.

If  the machines you want to allow thru the router have static ip addresses then you can specifiy by ip address to only allow those machines thru. This does make things "More secure"....but nothing is ever 100% secure unless you unplug it from the network and turn it off.
0
 
LVL 1

Author Comment

by:WingYip
ID: 12359812
Why is specific IP more secure than mac address filtering?
0
 
LVL 18

Expert Comment

by:luv2smile
ID: 12359896
Well I didn't say it was more secure...just a different way.

You can filter by mac address to add an additional layer that would make things "more secure". But this is still not fool proof. MAC addresses as well as IPs can be spoofed.
0
 
LVL 18

Accepted Solution

by:
luv2smile earned 125 total points
ID: 12359970
Another example...many attacks get thru on port 80....you can't really block this because it is used for web access....

Bottom line is a firewall just isn't enough these days....you have to have many levels of security and even still you are not completely protected.

0

Featured Post

DevOps Toolchain Recommendations

Read this Gartner Research Note and discover how your IT organization can automate and optimize DevOps processes using a toolchain architecture.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
OfficeMate Freezes on login or does not load after login credentials are input.
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question