Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 209
  • Last Modified:

Network Security

I resently had a Network Admin leave the company. I wanted to know what is the best way to check our Network Security to make sure there are not backdoors open for him to access our network.  Are there any tools I can use to check our external access to our LAN?

Thank you,
0
KappaMan1911
Asked:
KappaMan1911
  • 2
1 Solution
 
RartemassAuthor, martial arts coach, IT ConsultantCommented:
0
 
KappaMan1911Author Commented:
I have Wire Shark, but I have never really learned who to use it.  I will check out all of your surgestions.  I was told it is not a good idea to leave wireshark on a server.  thanks.
0
 
larsgaCommented:
"We let the janitor go, how can we be certain that he can't get into the apartment block again?" Apologies for sounding facetious, but that's more or less the physical analogy of your question. Without knowing more about the network and what you want to protect, I can only give some general advice.

You could do the following (listed in increasing level of paranoia):

- Change locks on doors and windows.
In other words, disable accounts or change passwords on equipment/systems/accounts he had access to. Ranging from Windows user accounts to administration passwords on network gear. If you have VPN set up (access to your network from remote offices / home / people travelling with laptops), change the VPN passwords.

- Check if any windows are left ajar.
The most obvious thing to check would be the configuration on the firewall(s)/router(s) that face the Internet. You could use 'nmap' or a similar portscanner on the external IP address of the Internet firewall to see of he left an open port (although the output from a portscan wouldn't tell you much unless you know something about networking).

- Look for any hidden windows in the attic or floor-boards that are loose.
If he is competent and really wanted to hide a backdoor, there is really no way you can be absolutely sure without a total cleaning and reinstalling everything. For example, he could have left a small router on the network that is set up to be accessible from dial-up/ISDN/cell-phone; or perhaps a small program on a PC that would connect to him at 1:00AM every second saturday.
0
 
KappaMan1911Author Commented:
He was a new Network Admin... So I did not give him the keys to the kingdom.  He had not access to the Firewalls, routers., or VPN, and I have changed all those passwords.  Your point is well taken.  Moving forward I will strenghen my network monitoring and security.  Thank you for the advice.
0

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now