internet security software

Pc-cillin Internet Security: Trusted by Millions Worldwide for Protection

noreply@blogger.com (yayasiri) — Sun, 09 Sep 2007 10:09:05 PDT

In the modern society d' aujourd' doors, more and more people employ l' now; Internet for the cheaper communication, purchases and also for businesses. Many people benefit maintaining from technology d' Internet to treat businesses. Some even considered to employ l' Internet to pay their factures.

Pour this reason, the life is easier. By having the capacity to make shopping for your grocer in l' Internet, you more owe really n' to go to the supermarket to buy the goods which you have need. You can easily make shopping for your grocer on line and to pay it by employing your chart of crédit.

Il has as well suitabilities there as l' Internet can bring to your life. However, because more and more people employ l' now; Internet for financial transactions, there are also some which would benefit from l' Internet to fly of toi.

Ces people s' the intruders call. They are the new race of the criminals who will benefit from l' Internet to steal d' others for personal profits. They develop the programs or the software which circulate in l' Internet aujourd' today and enter thereafter l' computer of someones without anybody who has l' computer knowing with its sujet.

Le software can be something. It can be viruses, it can be spywares, it can be adwares, and it can even be Trojans and towards. All these kinds of malevolent software are programmed to destroy your computer or act like device of monitoring to l' interior of your PC.

C' is a fact that many people was taken for victim by these various kinds malevolent software. Surfer l' Internet can also mean to obtain the malevolent software in your PC. In fact, it is very easy d' to obtain those software installed in your computer. You could download the files which can contain the malevolent software. Once you, that will function automatically to steal l' information starting from your computer or to destroy your files irremplaçables.

C' is why you must protect yourselves by installing the software from safety d' Internet in your computer. An effective name and of confidence in safety d' Internet s' call the safety of l' Internet PC-cillin. PC-cillin is developed by companies microphone of tendency and is one of the software of safety d' Internet more used in the monde.

La last version of PC-cillin offers a range of safety and protection d' Internet counters the different malevolent software circulating l' Internet aujourd' today. Here following devices offered by PC-cillin to protect you and your computer against the malevolent software in l' Internet:

La safety d' Internet of PC-cillin of safety d' Antivirus is integrated with a powerful software d' antivirus which can detect viruses before qu' it can even invade your PC. It will remove viruses or will clean your infected files. The safety of l' antivirus PC-cillin will sweep the remote loadings of l' Internet, entering files of sweeping to leave d' another computer and will also sweep files with l' interior d' dismountable media. It will also automatically update its definition of virus by l' Internet to maintain l' effective antivirus counters new viruses jumping outside in l' Internet quotidiennement.

PC-cillin of protection of Spyware will block the malevolent software d' to enter your computer, such as the spyware, l' adware, the grayware, and kits of root. PC-cillin will prevent robbers d' identity to notice on your computer and to obtain n' import which personal or financial information that your PC can contenir.

Le software of safety d' Internet of PC-cillin of TrendSecure is also integrated with the guard of transaction which will protect your transactions in ligne.

Le wall with l' test of personal fire this device will stop all the intruders and virus d' computer which can test d' to enter your ordinateur.

Les avançées parental orders this particular tool will control your d' use; Internet of childrens. It will block all the Web sites which contains the inadequate contents, such as the pornography and the violence.

Ce is right certain devices that the safety of l' Internet PC-cillin offers. There are much more advantages of which you can benefit in order to protect yourself against d' others and a malevolent software which can test and employ l' Internet to fly of you or to destroy your computer.

Why Uninstall Your Norton Internet Security

noreply@blogger.com (yayasiri) — Sun, 09 Sep 2007 10:05:18 PDT

To populate l' l' use; Internet daily to communicate, and treat the companies. Some populate even very make their purchases on line because his much more convenient than outgoing with the email and make shopping there. Because of the purchases on line, you can buy something which you want well maison.

Cependant in comforts of your characteristic, the fact that l' Internet is employed by people for financial transactions, there are also people would benefit from this marvellous technology to steal d' other people employing l' Internet. They can do this by simply employing a program of spyware.

Quel program of spyware is qu' it would extract n' import which d' kind; information in your computer including/understanding your personal and financial information. With this information, the realizer of program of spyware will be able l' to employ to fly of you making some the flight d' identité.

Il also has viruses d' there; circulating computer l' Internet and is aimed to destroy or corrupt your computer files and to make them useless. With all dangers to surfer l' Internet and to download files of him, you would like qu' a certain protection avoids n' import what bad d' to arrive at you or your ordinateur.

En installing the last software of safety d' Internet of Norton, you would create a very good defense against the invaders in l' Internet. It can protect you from the spyware, the viruses d' computer, l' adware, intruders, and any other malevolent software circulating l' Internet in a base quotidienne.

Le software of safety d' Internet of Norton is considered in so much qu' one of the best software of safety d' Internet available on the market aujourd' today. It is integrated with several softwares in a package. Each one of the software integrated in Norton that safety d' Internet have different charges for various threats. For example, safety d' Internet of Norton is integrated with a program d' antivirus to fight viruses, another safety program d' Internet of Norton is aimed to fight in addition to spyware and of l' adware.

Il has there more programs integrated in safety d' Internet of Norton. Each program will be surely very salutary for you and your ordinateur.

Cependant, as time passes, the new viruses d' computer and new versions of l' another malevolent software will jump thereafter outside in l' Internet. Some of this malevolent software will be able to deviate your safety d' Internet of Norton. For this reason, you will have to also buy the software updated in order to protect your computer and yourself against newer versions from software malveillant.

Afin d' to successfully install your new version of software of safety d' Internet of Norton, you owe uninstall your old version of the software of safety d' Internet of Norton d' access. To do this, you must click on the beginning; the click on the control panel and the click s' add above remove programs. To choose safety d' Internet of Norton and to click on l' uninstall. L' computer will automatically remove the software starting from your ordinateur.

Once you finish d' uninstalling your old version of software of safety d' Internet of Norton, your computer will be now ready to be installed with the new version. L' installation is easy; very that you must make is to follow the magician stage-by-stage d' installation. In very in the short run, your computer will be ready still with surfer l' Internet without you s' worrying about the new threats circulating l' Internet.

Ainsi, if your software of safety d' Internet of Norton is out-of-date, very that you must make is d' to buy the new version of the software, uninstall the old version and d' to install new Norton.

By: Corrin Ugalde
www.articleclick.com

Introduction into digitally a right management.

noreply@blogger.com (yayasiri) — Sun, 09 Sep 2007 10:01:50 PDT

Introduction

La majority of the people intended to speak about the authorizing software and pay by television of sight, but probably not connected him to a development in technology the management of DIGITAL Rights (DRM) called. To include/understand what DRM tries to carry out you d' access of all the need to include/understand the property intellectuelle.

Propriété intellectuelle

Pour to include/understand numerical lines that you must remember that books, plays, images, the films and so on (this paper including) are prone on lines of copyright or intellectual property. By international agreements such that the convention of Bern the countries identify these lines and provide a framework which allows supports of copyright d' to have uniform rights in various countries and of being able to impose them. All times that you buy a book, to hear a modern recording played on television or to see qu' a film a payment is made with the supports of copyright of the travail.

Vous will find appreciably more of the detail on the lines of intellectual property (IPR) on the Web site http://www.wipo.int/. L' site provides a resource supplements l' information about the work of l' organization of intellectual property of world (WIPO).

Maintenant the lines of intellectual property were important in the trade of book and film, but television, the DVD, the software d' computer and the plays d' computer had a so significant effect on the world trade that l' organization of world trade (OMC) has a special section of its activities devoted to treat lines of intellectual property called the aspects of Trade-Related of the right-hand sides of intellectual property (VOYAGES) and more d' information on the negotiations of the world are at http://www.wto.org/english/tratop_e/trips_e/trips_e.htm.

Vous can meet this that several industries very indeed consider the intellectual property with a business.

Demande of the management of right-hand sides of DIGITAL (DRM)

Tellement now when we speak about the numerical management of right-hand sides we speak about work of the intellectual property which is treated by the digital computers (or even l' analogue those).

Il has many much d' there; industries producing work of copyright which is held above and treated by computers. That includes n' import what which treats and so on the recorders with cassettes, video tape recorder, the CD-ROM, DVD, instantaneous charts. There are even laws which create lines in the data bases like collections d' informations.

Les supports of copyright (owners) noted that the information processing systems, the recorders with cassettes of television d' emission and, discs and the machines originals of video tape recorder n' made any attempt d' to stop people copying their work and d' to equalize to sell it above with obtaining from owner paid the royalty that the law d' IPR their gave. This started towards the end of the Eighties, and s' is developed significantly with l' introduction of the standards of music such as MP3 which n' did not prevent to copy, but made the general public market copying very facile.

D' other owners selling expensive work of `les' such as financial analyses of the companies or markets noted that people would buy a copy and then would draw from the copies of it to die in their friends for free. When the reports/ratios were printed they were photocopied, but to make them numerical facilitated to copy and more rapidement.

IL industry saw a massive occasion to be able to make significant amounts of l' money s' they could be able one or more to order what the person which had authorized a numerical work (when you buy to a book in the theory you l' authorize, and the same one goes with an image or a photograph) made with elle.

Les orders of DRM per comparison with HIM commande

Évidemment the things which you would like to order were n' import which form d' access and use, and to prevent n' in particular; import which attempt d' to remove the commandes.

Commande thus often provided are:

- reading of l' article;
- a number of times;
- to begin and finish dates for the reading;
- impression of l' article;
- of the whole;
- impression of lower quality;
- a number of copies;
- change of l' article;
- contents changing l' information;
- removal of the marks of copyright;
- to copy l' article;
- the manufacture of the copies of d' others can employ;
- parts copying of work;
- taken discharges d' screen like copies;
- to run l'article comme programme ;
- courir l'article sur un ordinateur ;
- permettre seulement à un utilisateur de courir l'article ;
- limitant le nombre d'unités centrales de traitement que l'article peut utiliser.

Ces commandes sont loin de l'original LUI type commandes sur les dossiers qui (pour ceux pas immédiatement au courant de elles) être toujours :

- lire ;
- écrire ;
- apposer ;
- effacement ;
- exécuter.

Maintenant car vous pouvez voir, c'est tout à fait une liste différente de commandes avec tout à fait un impact significatif.

DRM et mécanismes de remplissage

Quand les systèmes de DRM ont sorti la première fois il y avait un mouvement fort de pouvoir autoriser des quantités significatives de l'information trouvée sur l'Internet, et pour facturer chaque utilisation imaginable d'un article, pouvoir aussi bien transmettre des droites exécutoires d'une redresse le support à l'autre.

Les propriétaires originaux devaient également être recompensed par les mécanismes de micro-paiements qui transféreraient leur proportion due un aspect de leur travail ont été vendus/chaque fois autorisés. Ceci a été proposé de sorte que les propriétaires reçoivent un paiement précis pour l'usage.

Est-ce que cela lui a fait le travail ?

Bien, c'est où le détail obtient un peu plus compliqué.

Le seul mécanisme que les systèmes informatiques ont pour l'exécution commande quand le logiciel d'exploitation d'ordinateur n'est pas dans la commande (which is almost all the time with the Internet) is encryption. If you don’t encrypt (make secret) the thing you are trying to protect then your (lack of) protection mechanism will soon be detected and either all the works you were trying to protect will suddenly become freely available on the web (as happens more often than you might think) or they will be shared amongst private groups of users freely.

Now encryption requires a number of disciplines if it is going to be successful. It also imposes quite an overhead on a system. For instance, whilst the user would not worry about the time it takes to decrypt a file (say a document, spreadsheet, .pdf file) because the amount of information is in reality quite small, but if they are waiting for the decryption of streaming video or voice the heavy encryption currently used can harm performance. Certainly the average DVD would not perform well using a PC to decrypt all its information using, say triple DES.

Encryption also requires the control of cryptographic keys. Some people who have installed or re-installed Microsoft Windows will have typed in a long series of letters and numbers (a.k.a. a cryptographic key). But DRM system often require you to be in contact with a server that is monitoring user requests and comparing them with dynamically imposed controls (such as continuing to subscribe to a service).

Cryptography allows strong controls, but it also imposes overheads and technical difficulties.

The early DRM systems failed simply because they were too expensive for the amount of money they could reasonably collect. This idea of cost may sound rather strange, but the cost of mounting the servers, the processing overhead and the amount of connectivity required to operate those systems was simply too much compared to the amount of money they could realistically collect.

Can you make it work?

Cryptography can work effectively in a number of situations. But at the moment, micro-payments simply isn’t one of them. Using cryptography to control the actions of a user who has paid a substantial amount of money for the product will work where micro-payments will not.

Cryptography will let you control a number of events. But it depends upon how effective your cryptography is. A number of disasters have already overtaken those who either chose to implement poor algorithms or failed to understand that you have to do something significantly better than password protection if you are going to protect something that has significant value for your business. It is not necessary for this paper to do more than state that many of the ‘industry standard’ solutions failed to recognize the real management issues of cryptography and therefore failed to provide the protection that they seemed to claim.

Later solutions to DRM implementation have been more successful. Although it is fair to note that right owners need to think through what it is that they are licensing their customers for. And to make sure that their licensing is consistent with current international agreements. (Issues of international rights are the subject of a separate paper.)

Moving forwards

Decoupling DRM from micro-payments has enabled a more effective control suite to be provided that on the one hand supports industry objectives and on the other hand is acceptable to users. Users were not willing to work on the basis of micro-payments, but are more willing to buy a service that is delivered over a period of time.

It seems, from current market feedback, that whilst users do not like restrictions on their ability to share information with others, and to have it locked down to a specific computer, they will accept those kinds of limitations. What they are not happy about are situations where they have to be online to remote servers before they are able to use information that, as far as they are concerned, they have purchased, and should be able to access at any time, and for all time.

These requirements are at odds with the ideas of the ‘pay per view’ community from the record and film industries, who see a massive market opportunity if they can charge for each and every use of an item as against having sold it to a customer for permanent use. (In other words they may prefer the model of the DVD/Video shop to that of the customer buying a the item and being able to use it forever thereafter.)

Conclusion

DRM offers industry information providers, which include the financial industries, analysts, consultants, programmers (applications, games) database owners and so on, as well as the record and film industries, with significant potential. DRM significantly extends the old IT controls and provides a much finer grained control over the ability of the user to make use of an item.

Attempts to link finer grained control to micro-payments controls has not been successful so far, and may prove to be unattainable in the longer term because the cost of operating the mechanism exceeds the possible income per transaction. Speculation that web costs are zero may be correct for the end user, but studies have demonstrated that information service providers actually pay to have their information made available on the web.

The correct mechanism to implement DRM will vary significantly with the delivery requirement. Services that require high speed decryption still need to be implemented in hardware if they are to work in an online situation. Realtime services can only be delivered using dedicated hardware, and owners requiring this service should be aware of this limitation.

Internet Filtering Solutions for Business

noreply@blogger.com (yayasiri) — Thu, 06 Sep 2007 13:57:24 PDT

Internet Filtering Solutions for Business

ContentProtect Internet Filtering Software provides top rated internet filtering and protection for businesses. Find out why thousands of businesses including Disney™ have chosen ContentProtect as their Internet Filter of choice.

ContentWatch Releases New Internet Filtering Appliance

Thursday, November 16, 2006

-- New Internet filtering appliance enforces organizations' Internet Usage Policies, increases employee productivity, reduces liability and preserves bandwidth --

-- Customers can now place orders for the ContentProtect Professional Appliance --

SALT LAKE CITY-Nov. 16, 2006 - ContentWatch, the leading provider of Internet protection solutions for homes, businesses, education, and government organizations, today announced the release of the ContentProtect Professional Appliance. The new ContentProtect Professional Appliance is an Internet filtering appliance that helps businesses and organizations enforce their Internet Usage Policy through policy-based Internet filtering. Implementing the ContentProtect Professional Appliance will help businesses and organization, increase employee productivity, reduce liability and preserve bandwidth.

The ContentProtect Professional Appliance provides the same great filtering technology as ContentWatch's client-based software product, ContentProtect Professional, within a single server appliance. Designed with ease of use in mind, the appliance is plugged in to the network and with minimal configuration begins enforcing the organization's Internet Usage Policy. The appliance requires no software installation or configuration on individual computers and will automatically protect the network and employees by blocking access to websites that conflict with the organization's Internet Usage Policy. By implementing, organizations will benefit from increased employee productivity and focus while reducing the risk of inappropriate content entering the work place.

A recent study conducted by International Data Corporation (IDC) concluded that 30 to 40 percent of Internet use in the workplace is not business related. (Source: IDC, Secure Content Management Report, March 2004).

"ContentWatch is one of the first security vendors to offer 'end-to-end' Internet management and protection to businesses and organizations," said Jack Sunderlage, President and CEO of ContentWatch. "The Internet has become a common staple in the workplace. With more mobile and remote users, businesses are faced with the growing challenge of increasing employee productivity and protecting their computers, networks and employees from objectionable content and security threats regardless of where and how the user connects to the Internet."

Sunderlage continued, "The ContentProtect Professional Appliance, combined with the ContentProtect Professional client option, round out our security offering by providing a more holistic approach to manage and protect Internet access-especially to organizations that have a mobile workforce with notebook computers."

IDC also stated, "Employee Internet Management (EIM) has traditionally been deployed on servers at the gateway. Today's risks dictate that additional policy enforcement points should exist at the desktop and network levels as well as at the gateway."

ContentWatch has achieved a significant milestone with the release of the ContentProtect Professional Appliance. Most server-based or appliance-base filters rely on static URL lists for filtering. The ContentProtect Professional Appliance uses patent-pending dynamic contextual analysis (real-time filtering) to filter Internet content. Analyzing content on the fly is a more effective way to filter Internet content as Web content can change hourly and new Web sites are created each day. Products that rely on static URL lists become easily outdated.

Some of ContentProtect Pro Server Appliance key features include:

* Plug-and-Play Configuration - Minimal configuration is required in order to connect the appliance in-line to your network.
* Intelligent Filtering Detection - No double filtering if client software is loaded even though client is logged on to the corporate network.
* Multiple Filtering Profiles - Permits administrators to create organization, group, or individual filtering settings for employees.
* Dynamic Content Analysis - The appliance uses dynamic contextual analysis (in conjunction with word and URL lists) to filter Web content; analyzing content on the fly.
* Time Management - Permits administrators to set the time of day when users can access the Internet as well as a time quota feature that permits administrators to assign a block of time to a user.
* Customized Lists - Permits administrators to create customized lists of unacceptable or acceptable Web sites
* Web Based Management and Reporting / Single Point of Administration - Allows administrators to manage Internet policies, users, and computers, as well as view reports from anywhere and any computer as long as an Internet connection is available.
* Toll-free Technical Support

For more information, contact ContentWatch Sales at 1-866-765-7233 or www.contentwatch.com. First customer shipments are anticipated to be December 1, 2006. Volume and term options are also available.
About ContentWatch

ContentWatch, Inc. delivers Internet management solutions for the home, library, education, government, and business markets. ContentWatch's mission is to be the world leader in thought and technology by creating Internet management tools and services that provide homes and businesses with a safer, more productive Internet experience through its patent-pending contextual analysis engine. Based in Salt Lake City, ContentWatch has customers in all 50 states and more than 100 countries. ContentProtect is the No. 1 rated filter on TopTenREVIEWS (www.internetfilterreview.com). For more information on ContentWatch products, visit http://www.contentwatch.com.

Company Contact:
ContentWatch Inc.
Scott Nelson
801.952.1125
snelson@contentwatch.com

PR Contact:
Snapp Norris Group
Clayton Blackham
801.208.1100
clayton.blackham@sng.com

SONAR is the only all-in-one solution

noreply@blogger.com (yayasiri) — Thu, 06 Sep 2007 13:53:40 PDT

SONAR is the only all-in-one solution
Whether you're trying to increase employee productivity, protect yourself from internal threats as well as external, or simply increase your ROI, SONAR is the ideal solution for your company. capable of both enterprise level monitoring and enterprise level Internet filtering, SONAR's Employee Monitoring Solution does what no one else can do by allowing you to see and control ALL of your employees' communications and computer activity.

With SONAR, you'll be able to:

* Monitor and Read all Employee Communications - Email (including Webmail) & Instant Message Conversations
* Monitor PCs that never connect to a Network (even laptops)
* Take Screenshots of any computer activity
* Capture all keystrokes typed
* Monitor and filter Internet use
* Monitor and block software application use on a scheduled basis

SONAR is offered as a total solution, or a la carte by module.

Communications Module
Not monitoring employee communications such as webmail, traditional email, and Instant message use is one of the most potentially devastating blindspots for companies today. Because Web-based mail sites (such as Hotmail, Yahoo mail and AOL mail) offer such a high degree of anonymity, employees often send highly inappropriate, offensive, or even potentially damaging communications out on company time. With SONAR, however, you'll even be able to record all attachments, ensuring that you know exactly what information coming into and going out of your company.

While traditional solutions are unable to monitor webmail because it doesn't pass through the company's email servers, SONAR's unique design ensures that it is all recorded, providing you with the ability to effectively protect your company from the many threats that Webmail can pose.

The second area of critical communications flow in an organization is Instant Messaging. While IM applications (such as MSN Messenger, Windows Live Messenger and AOL Instant Messenger) provide employees with an excellent means of rapid communication, it also opens your organization up to a host of dangers ranging from a simple avenue for wasted time chatting with friends, to a means of misrepresenting your company and its policies.

Whatever the case, problems inevitably arise within every company. That's why SONAR was designed to record every Instant Message conversation that an employee engages in. By creating an unchangeable record of all employee communications, SONAR ensures that you can identify potential problems early, and stop them before they cause your organization any damage.

In addition, by keeping a record of all communications you can ensure that your organization has the foundation with which to meet federal and state monitoring guidelines.

Keystrokes Module
Capture all keystrokes typed

SONAR's keystroke module provides the most granularity of any application available. You'll be able to see each individual keystroke typed in your organization providing you with a secure, detailed transcript of the activities of your entire company. Even if employees are located states, or even countries apart, SONAR will report all keystroke activity, regardless of the application that they were typed in, seamlessly back to the Centralized Reporting System.

Best of all, unlike other keystroke recorders, SONAR formats the keystroke data into an easy-to-read format that makes finding critical information a simple task.

Screenshot Module
Take Screenshots of any computer activity

With SONAR's revolutionary screenshot module you'll be able to see EXACTLY what your employees are doing. This essential module works in two ways:

1. To ensure that you are never blind to any critical activity, SONAR will take a screenshot of the employee's desktop whenever an alert word that you have defined is typed or read on a webpage.

2. Acting like a surveillance camera, WebWatcher generates what is essentially running video of the person's desktop. With an intuitive playback feature, SONAR's screenshot module allows you to quickly identify and document inappropriate activity. This level of detail ensures that you can act on the information that is recorded, and gives you the power to make decisive, informed decisions.

unlike other applications that force you to go through cumbersome gyrations just to obtain the IP address associated with a given piece of data (which can never be definitively linked to a specific person) SONAR's screenshot module provides you with visual evidence of the person's unique desktop - providing conclusive, actionable data.

Software Application Monitoring and Blocking Module
SONAR offers the ability to set time restrictions on if and when certain software applications can be used.

With an intuitive interface and a completely customizable scheduling system, you can quickly and easily manage your entire workforce and ensure that your policies are always enforced. Whether you are trying to limit the use of time-wasting applications such as media players during certain hours, or simply trying to restrict the use of certain applications all together, SONAR's Program Monitoring and Blocking Module provides you with total control over the entire computer on a user by user basis.

Web Monitoring and Filtration Module
Internet Filtering / Block Websites
While some programs allow you to monitor, and others allow you to block the Internet, only SONAR does both. By giving you total control over employee Internet usage, SONAR gives you the power to enforce your Acceptable Use Policy and increase employee productivity by eliminating wasted time spent surfing the Internet for personal means.

SONAR's sophisticated Internet filtering protocol provides maximum control and maximum flexibility. Our easy-to-use proprietary filtering system allows you to totally control your employees' Internet access with the following tools:

Advanced Content Filtering
SONAR's Advanced Content Filtering allows you to block websites on-the-fly. SONAR's content filtering module scans web pages in real-time for block words that you determine. Whenever a block word is encountered, the webpage is instantly blocked before the user can view the forbidden content.

White Listing of Websites
SONAR's white listing feature provides your company with maximum security protection from the dangers of the Internet. White listing allows you to completely shut down the Internet and allow access to ONLY those sites that you determine are necessary for the efficient completion of business tasks.

www.awarenesstechnologies.com

A security solution optimized for mid-size organizations Securing your IT infrastructure against

noreply@blogger.com (yayasiri) — Thu, 06 Sep 2007 13:50:49 PDT

Web Security Made Simple
A security solution optimized for mid-size organizations Securing your IT infrastructure against Web threats is becoming more and more challenging. Websense is recognized as a market leader in protecting employees from the threats associated with unmanaged Internet access.

Websense Enterprise
Product description:
Websense Express provides the industry’s leading content filtering and Internet security capabilities in a simple and affordable solution. It allows organizations under 1000 users to quickly and easily protect their employees from Internet risks by controlling access to inappropriate content and proactively blocking security threats before they have a chance to infect their systems.

Benefits:

* Delivers “Instant Value”
o Within minutes of installation, management has visibility into how the organization is performing, the level of Internet activity, and where risks exist, such as security threats and bandwidth usage.
o Delivers best-in-class web security technology at an affordable price, resulting in fast return on investment

* Optimizes user productivity and IT resources
o Increases employee productivity and reduces IT staff diversions by proactively managing Internet use and reducing risks associated with using the web.
o Ensures employees work in an environment that is managed in a way conducive for business.

* Maximizes security and enhances security effectiveness
o Increases the overall level of security against web threats (threats NOT addressed by anti-virus or firewalls), and does so in the most cost effective manner- blocking them at the source.
o Mitigates risks associated with information theft and unauthorized disclosure of sensitive information.

* Maximizes business continuity
o Provides real-time management visibility into Internet use, and allows customized reporting to give organizations the flexibility necessary to meet their unique operating requirements
o Increases overall system uptime and availability by preventing web threats from penetrating the IT infrastructure and disrupting business operations, which can result in revenue loss, customer dissatisfaction, and potential liability.
o Includes enterprise level functionality for a small IT investment- from procurement, to setup and ongoing management.

* Saves money and streamlines IT operations
o Reduces unnecessary spending on numerous layers of IT security technology, and optimizes IT staff.
o Reduces problem calls associated with slow network or desktop performance.
o Reduces frequency of re-imaging desktops due to corrupted configurations.

Web Security Suite

Product description:
Websense Web Security Suite is a leading web security solution that protects organizations from known and new web-based threats. Based on the industry-leading Websense ThreatSeeker technology, Websense Web Security Suite protects against spyware, malicious mobile code, and phishing attacks, bots, and other threats. Unlike some other solutions, it also blocks spyware and keylogger backchannel communications from reaching their host servers. In addition, only Websense Web Security Suite offers the Websense Web Protection Services that help protect organizations’ websites, brands, and web servers.
Benefits:

* NEW Web Reputation. The Websense ThreatSeeker technology leverages years of experience to provide content-aware web reputation intelligence allowing customers to easily extend their protection by managing suspicious websites.
* Blocks known threats before they reach the endpoint and alerts on potential network threats-Websense Web Security Suite identifies security threats, such as malicious websites, protocols, applications, and HTTP traffic (on Port 80 and all other ports) and blocks their access at the internet gateway. Websense Web Security Suite also alerts administrators on email-borne worm traffic in the network.
* Proactively discovers web security threats-Websense ThreatSeeker technology scans over 595 million websites per week, searching for threats. Real-time security updates are available within minutes of the discovery of a new high-risk threat with no administrative intervention required.
* Lowers the risk of intellectual property theft-Websense Web Security Suite lowers the risk of intellectual property theft and malicious attacks through instant messaging (IM), IM attachments, and protocols, such as peer-to-peer, email, file transfer, and others.
* Swiftly alerts when websites or brands are under attack and reports web server vulnerabilities-Websense Web Security Suite includes the three Websense Web Protection Services which help organizations protect their websites, brands, and web servers. Websense mines the organizations’ websites and watches their brands and associated URLs as part of its daily activities. If a site is infected with MMC or the name and URL being used in phishing, fraudulent, or other malicious attacks, Websense notifies the organization with attack details so immediate action can be taken. Websense also performs regular web server scans for a “hacker’s-eye view” of server vulnerabilities and potential threats. Reports of risk levels and recommended actions are provided through a web-based portal, allowing organizations to take corrective action.
* Provides industry-leading web filtering capabilities-Websense Web Security Suite includes the industry’s leading web filtering technology. This technology, the most comprehensive and accurate on the market, allows organizations to manage productivity, reduce their risk of legal liability, and improve bandwidth use.
* Optimizes network bandwidth-Websense Web Security Suite enables organizations to optimize their network bandwidth by prioritizing and managing traffic in real-time based on pre-set thresholds and without requiring administrative intervention.
* Includes flexible reporting tools-Websense Web Security Suite provides the most advanced capabilities for identifying organizational security, productivity, legal liability, and network bandwidth consumption risks.
* Reduces the burden on IT-Websense Web Security Suite allows organizations to distribute administrative tasks across departments, groups, or locations. Individual administrators can then customize policies to meet their area’s needs and can assume responsibility for their users.

Websense Content Protection Suite

Product description:

Websense Content Protection Suite is a comprehensive solution to address the growing need for robust information leak prevention which helps:

* Prevent internal and external data loss
* Improve business processes
* Protect competitive advantage
* Manage risk management and compliance

Using proven, patented technologies that integrate seamlessly with existing information security infrastructure, Websense Content Protection Suite provides superior protection to secure content and manage "Who and What go Where and How."

How Websense Content Protection Suite Works

Websense Content Protection Suite enables organizations to secure privileged and confidential data with a unique combination of content, context, and destination by:

* Discovering the location of sensitive data inside the network
* Monitoring the data as it travels around and beyond the organization
* Protecting the data with policy-based controls that reflect business processes

PreciseID technology provides accurate identification and classification of content in more than 370 different file types and formats-from source code binaries to CAD drawings to Verilog code, and beyond-even if that content is cut and pasted from one format to another. Natural Language Processing enhances the granularity and accuracy of PreciseID's detection and classification capabilities, providing unparalleled content awareness.

PreciseID technology uses multiple detection methods to help organizations discover organizational compliance risk and automatically enforce content use policies, including:

* Fingerprinting technology
* Natural Language Processing
* Rules
* Lexicons
* Dictionaries
* Exact and partial matching
* Statistical analysis

ThreatSeeker technology classifies the Web- including sites harboring emerging threats-for accurate, automated policy control of inbound and outbound content that is beyond the scope of anti-virus and intrusion prevention systems. ThreatSeeker technology:

* Finds, blocks and protects customers from Web-based security threats before they can steal business information and affect business productivity
* Leverages more than 100 proprietary processes and systems to decipher emerging and complex threats
* Combines mathematical algorithms, behavior profiling, code analysis, and an extensive network of data mining machines
* Provides ongoing threat intelligence to all Websense security software products

Deep Content Control combines the ThreatSeeker and PreciseID technologies to enable organizations to discover where confidential information is on the network, and secure "Who and What goes Where and How."

www.websense.com

NOD32 Enterprise Edition

noreply@blogger.com (yayasiri) — Thu, 06 Sep 2007 03:49:54 PDT

Layered security that's easy-to-manage - from clients to servers to mail gateways. Proactive threat protection that's so high-performance, you'll forget it's there.

Seamless Protection for the Enterprise
NOD32 Enterprise Edition was designed with large and medium-sized business networks in mind. It is a unique bundle, which includes subscriptions to NOD32 for windows workstations and file servers, as well as our powerful Remote Administrator Console. This is an ideal choice for medium to large-sized organizations with multiple file servers or locations. But it's also easy enough to use for small businesses with as few as 5 computers

Easy deployment and pricing

Enterprise edition entitles you to run NOD32 on any workstation or server for one friendly per-node price. Simply indicate how many nodes you wish to protect on your network, how many file servers and what type, and we'll send you the appropriate license keys.

* Remote Administrator - The powerful central console that installs in minutes. Have 500 nodes deployed in under an hour.
* NOD32 for Workstations & NOD32 for File Servers - The smallest , most advanced malware protection.
* NOD32 LAN Update Server saves bandwidth in branch offices by centralizing the downloading and distribution of security updates.
* NOD32 for Mail Servers (additional) - Enhance your layered security strategy by protecting incoming and outgoing mail at the server.

Powerful Centralized Management

NOD32 Remote Administrator is a powerful N-Tier management framework in a tiny, easy-to-use package. It enables an administrator to easily deploy, manage and maintain thousands of NOD32 systems in large, distributed corporate networks. But, it's just as powerful in small and medium-sized environments.

Features and benefits

* Centralized management of NOD32 workstations and servers, increasing antivirus protection effectiveness and reducing corporate security costs
* Automatic hourly ThreatSense updates keep your corporate network secure
* Fast virus infiltration localization and virus clean-up, thanks to advanced monitoring and reporting tools
* Remote installation of NOD32 client antivirus systems enabling fast antivirus protection rollout
* Centralized NOD32 antivirus management of multiple locations and LAN's within your enterprise computer network

Reporting

* Automatic and custom report generation giving you an overview on NOD32 antivirus system activities and helping you maintain a high level of data integrity in your network
* Remote NOD32 client configuration reducing administration and maintenance costs
* Filling holes in your antivirus protection by searching for unprotected computers in your network
* RA server load distribution increasing scalability
* Multiple remote installation methods for on-line and off-line NOD32 client installation
* Mobile user features for better mobile user antivirus protection
* Virus infiltration history helping you strengthen your antivirus protection strategy

www.nod32th.com

NOD32 The best way to keep computer security

noreply@blogger.com (yayasiri) — Wed, 05 Sep 2007 11:28:44 PDT

The best way to keep computer secure

Eset NOD32 antivirus system is a unique virtual shield keeping all Internet threats and attacks at a safe distance from your data. It not only detects viruses, it also prevents them from attacking your computer in order to damage your documents or privacy. NOD32 products protect huge amount of virtual space all over the world, whether it be servers in large financial corporations or the computers used by your kids for homework research. It can also be a mobile device storing the contacts on your friends and family. We know you want security. We offer it to you for reasonable price.
Eset’s people have almost 20 years of experience in antivirus solution development. It’s not surprising that the company belongs to technological leaders at the market. The core of NOD32 antivirus system ThretSense™ can proactively detect and clean even the threats not yet fully known or widespread. Thus, individual users or companies, who have white-green NOD32 icon shining on their screens, can be absolutely sure that they need not to worry when reading about new dangerous viruses in the newspapers.

Many antivirus vendors do not yet have full 64-bit support for their complete line of products. Eset already supports 64-bit system in all of our products. If you already have solutions for this platform, or you are deciding to purchase them right now, it will be NOD32 that can offer you comprehensive functionality.

ESET, the leader in proactive threat protection, today announced that ESET NOD32 Antivirus received five stars in SC Magazine’s review of anti-malware management tools, the highest overall individual ranking awarded in group reviews. The evaluation, which examined 12 anti-malware vendors, declared NOD32 Antivirus a leader in protection, ease of use and management, and awarded the product the maximum honors in five of the six individual categories.

SC Magazine’s competitive review examined how well the tools function in six categories: features, ease of use, performance, documentation, support and value for money. During their testing, SC Magazine was unable to find a single weakness associated with the product, further validating ESET NOD32 Antivirus as a valuable solution designed to proactively protect networks from the growing complexity of both known and unknown malware threats.

“This product is a good investment for almost any size environment,” says Dr. Peter Stephenson, technology editor at SC Magazine. “The NOD32 system, though powerful and feature-packed, is easy to use and intuitive to deploy.”

ESET NOD32 Antivirus software offers consumers and businesses comprehensive protection in a product designed to automatically update behind the scenes without impacting other applications, so users always have the most current protection available. ESET NOD32 Antivirus version 2.7 utilizes ThreatSense® technology, a sophisticated detection system based on advanced heuristics, to proactively identify previously unknown viruses, Trojans, spyware, rootkits and phishing attacks in real time. ThreatSense is built into NOD32’s single scanning engine to provide comprehensive protection so users do not need to rely on additional point solutions for spyware and adware protection.

“The nature of malware is rapidly changing, with new and complex threats emerging each day. Proactive and easy-to-manage protection has become the only defense alternative," said Anton Zajac, CEO of ESET, LLC. "ESET pioneered the implementation of heuristics proactive methods in 1997, and today the NOD32 Antivirus heuristics engine has become the most efficient tool in detecting new threats proactively. We are proud to be ranked among the best anti-malware solutions by SC Magazine."

About SC Magazine

SC Magazine provides IT security professionals with in-depth and unbiased information through timely news, comprehensive analysis, cutting-edge features, contributions from thought leaders and the best, most extensive collection of product reviews in the business. By offering a consolidated view of IT security through independent product tests and well-researched editorial content that provides the contextual backdrop for how these IT security tools will address larger demands put on businesses today, SC Magazine enables IT security pros to make the right security decisions for their companies. The brand’s portfolio includes the SC Magazine Awards, SC Directory, SC Magazine Newswire and SC Magazine IT Security Executives Forums.

About ESET

Founded in 1992, ESET is a global provider of security software for enterprises and consumers. ESET’s award-winning, Anti-Threat software system, NOD32, provides real-time protection from known and unknown viruses, spyware and other malware. NOD32 offers the smallest, fastest and most advanced protection available, with more Virus Bulletin 100% Awards than any other antivirus product. ESET was named to Deloitte’s Technology Fast 500 five years running, and has an extensive partner network, including corporations like Canon, Dell and Microsoft. ESET has offices in Bratislava, SK; Bristol, U.K.; Buenos Aires, AR; Prague, CZ; San Diego, USA; and is represented worldwide in more than 100 countries.

Article Source: http://www.share.onlypunjab.com

Control Center - your shield against threats

The power of NOD32 solutions is based aso on several moduls easily manageable from NOD32 Control Center. Image NOD32 shelters the whole project, because it is the first ever building block of all our solutions. This module offers the basic function. If turned on it scans a whole system and finds out, whether you are endangered by viruses or not. AMON is a guardian that scans all files at the moment you are opening or executing them. This module scans every file you or your system wants to use. It finds out whether your computer might be harmed. Thanks to AMON our system protects the computer before the virus is executed. IMON and EMON are your shields when working with e-mails, because they are testing and examining incoming e-mails via mail client. The first one can check mails coming through POP3 protocol, the other one scans e-mails coming via MAPI interface. Moreover, IMON – the Internet monitor - scans all files downloaded from the Internet. DMON takes care about security of your MS Office documents. It scans documents before they are opened. Moreover, DMON partially protect the Internet users when they are automatically downloading Active X or documents in the Internet Explorer effectively enhancing AMON’s function.

Auditing, Logging and Alarms

noreply@blogger.com (yayasiri) — Wed, 05 Sep 2007 11:21:27 PDT

Auditing, Logging and Alarms
In this book we have looked at many ways to secure World Wide Web application-level connections and the systems and gateways that support them. This is our first line of defense, to keep attackers out of our systems. However, it is equally important to monitor the systems so that if an attacker evades our defense we are aware of it and con take remedial action.

There are three monitoring areas that we are interested in:
The Web server application itself
The Web server operating system
The firewall(s)

So what are we trying to find? Some things are obvious; if a new use ID mysteriously appears or an important file is updated unexpectedly, it is a sure sign that someone has broken into the system. Other kinds of attack have more subtle symptoms. For example, it is quite normal that the firewall filters will reject some packets. In fact, the firewall log will record steady background activity of such packets, caused by users making mistakes or net surfers gently probing for interesting applications. There is a big difference between that kind of activity and the kind of concentrated probing that a tool such as Satan or Strobe would produce. You might, therefore, want to watch for bursts of filter failures associated with one particular source address.

In the ideal scenario, intruders and attackers are detected and dealt with as soon as they appear. In reality it is quite likely that someone will remain undetected for some time. This is where logging becomes important, to give you a chance to retrace the hacker’s steps and repair any damage he has done.

As we discussed in Chapter 8, “Locking the Back Door: Hardening the Underlying System” on page 127,OS/2 logging is less sophisticated than AIX (to be precise: the Web server logs application activity, but it does not provide the depth of operating system logging of a UNIX system). Therefore in this section we will concentrate on the AIX environment.

CGI Script Locations & Symbolic Links

noreply@blogger.com (yayasiri) — Wed, 05 Sep 2007 11:20:51 PDT

CGI Script Locations
With the right Exec statements in the httpd configuration file (see Chapter 2,”Be Careful Who You Talk To: HTTP Basic Security” on page 9) the CGE scripts may be located anywhere on the system. You can also set up the server so that it recognizes files whose names end in *.cgi as CGE scripts.

We strongly suggest you do not do this. It is very hard to keep track of CGE scripts that are scattered all over the file system. Having them all in one cgi-bin directory makes it much easier to monitor them. When using AIX for the server, one can us the audit subsystem to trace write access to them or to the cgi-bin directory. The methods that are needed to implement this are discussed in 10.1.3, “Configuring the Audit Subsystem” on page 153.

In addition, the CGI scripts should not be accessible in the httpd’s data directories. This would allow anyone to get the scripts for analysis.

Symbolic Links
The Web server on AIX will follow symbolic file links. Therefore if you have links pointing to locations outside the server document root the server will be able to access that data if the AIX permissions allow it. We strongly recommend you do not do this; us the Pass statements in the httpd configuration file instead. This makes document locations much easier to track.

The current release of the server will unfortunately not allow symbolic links to be disabled completely.

Merging FTP and HTTP Access

noreply@blogger.com (yayasiri) — Wed, 05 Sep 2007 11:19:59 PDT

Merging FTP and HTTP Access
Quite often the requirement to have anonymous FTP and World Wide Web access on the same server arises. If you do this, make sure that the FTP anonymous ID cannot write in the directory tree served by the Web server.

Ideally, the setup for anonymous FTP should not allow any write access at al and all data accessible by the anonymous user should be owned by an ID other than anonymous or FTP.

On AIX, check out /use/samples/tcpip/anon.ftp to create an anonymous FTP server. By default it will create the anonymous FTP directory /home/ftp. You will need to modify the script for a different directory. The script does most of the work, but you need to clean up permissions afterwards:
Remove the profile that was generated by mkuser.sys.
Change the group of the FTP home directory to system.
Remove the write permissions for group and other on the pub directory.
Delete the anonymous user ID (ftpd still knows about it as an alias for FTP).

You might also want to enable ftpd logging by adding the -I flag to the ftpd entry in /etc/inetd.conf. Do not frget to run refresh /s inetd to activate the changed entry.

Securing an OS/2 Server

noreply@blogger.com (yayasiri) — Wed, 05 Sep 2007 11:19:26 PDT

Securing an OS/2 Server
The more powerful and flexible a platform and operating system is, the more it is open to attack. Although OS/2 is a powerful PC-based operating system, it is not open and flexible enough to be easily attacked from the outside.

The basic rules to apply are as follows:
Be especially careful about physical security. The easiest way to attack a PC is to reboot it from diskette.
Configure only the minimum services required to have your Web server running.

You should not start any TCP/IP services unless you really need them. OS/2 passwords for Telnet and FTP user IDs are not kept in an encrypted form, and they do not have limitations on retries. It is therefore much safer to not use these applications at all.

If you have to start the Telnet or FTP daemon, make sure to restrict the number of user IDs and the directories they can access. You can do this by running the TCP/IP configuration program and selecting Security. Now you can choose a password for Telnet and add users for FTP as well as define which disks and directories they can or cannot access.

The user IDs and passwords for these applications are dept, unencrypted, in the following files:

config.sys contains the Telnet password.
%ETC%trusers contains FTP users, passwords and directory access list.
http.cnf contains pointers to password files (these are encrypted)

OS/2 does not have any logging or monitoring facilities that are comparable to AIX’s audit subsystem or the syslogd daemon.

Cleaning Up the File System & Configuring the Trusted Computing Base

noreply@blogger.com (yayasiri) — Wed, 05 Sep 2007 11:18:49 PDT

Cleaning Up the File System
AIX does not come with a completely clean file system. The above cleanup operations might delete user IDx that own files on the system. To find all of those unowned files, use the following command:

Find / ( -nouser -o -nogroup ) -print

Another area for concern is files that are world writable. That is, they have permission definitions that allow any user to update or delete them. There are some files and directories that by default are world writeable but should not be. Find them with the following command:

Find / -perm -0002 ( -type f -o -type d ) -print

Only /tmp and some directories under /var should be world writeable. Everything else sound by the command here has incorrect permissions.

Configuring the Trusted Computing Base
The Trusted Computing Base (TCB) is an AIX feature that keeps track of file modifications for critical system file. If you want to work with the TCB, it needs to be activated when you initially install AIX; there is no way to install it later on.

As shipped, the TCB might not list all the files that should be checked (for example, the device entries). To update the TCB with the current sate of the devices run the following script:

for f in $ (find /dev -print)
do
tcbck -1 $f
done

You then need to add any other files that you want to have checked via the TCB by running tcbck -a. There might be a few inconsistencies already, depending on the exact update level you are using. Use the following command to generate a list of the current TCB inconsistencies:

tcbck -n tree > /tmp/tree.out 2>d&1

You can then use the tcbck command in the update mode to fix them, or you can edit the file /etc/security/sysck.cfg.

Direct To Installing Norton Internet Security

noreply@blogger.com (yayasiri) — Sun, 02 Sep 2007 11:39:10 PDT

Symantec?s Norton Internet Security 2004 provides essential protection from viruses, hackers, and privacy threats. Powerful yet easy to use, this award-winning suite now includes advanced spam-fighting software. Viruses are a daily threat, so Norton Internet Security gives you the world?s most trusted antivirus solution. Norton AntiVirus removes viruses from email messages, instant message attachments, Internet downloads, and other files automatically. Now it also alerts you to certain non-virus threats such as spyware programs and keystroke loggers that can capture confidential data and leave your computer more vulnerable. Norton Personal Firewall hides your computer on the Internet, and Norton Intrusion Detection adds an extra layer of protection by automatically blocking suspicious connections. Norton Privacy Control prevents your credit card numbers and other confidential information from being sent over the Internet without your knowledge. New Norton AntiSpam detects and flags unwanted messages while promptly delivering valid mail. It works with any POP3 email program, filtering incoming mail on multiple levels to catch even sophisticated spam. And Norton Parental Control helps you protect your children from inappropriate Web sites. Symantec?s exclusive LiveUpdate technology downloads new protection updates automatically to keep your Internet defenses at maximum strength. Protect yourself, your family, and your PC online with Norton Internet Security 2004. I've used Norton Internet Security for as long as I can remember, and I consider it the best out of all that I've tried, I had a brief period when the firewall was playing up about 12 months ago but they soon updated it and it was sorted. It might be a resource hog but I've never noticed it, I lose about 1,000 in Aquamark once it's installed.

People do have problems installing it, I've been asked on numerous occasions, to help people with installing the package, and on every occasion, the persons concerne haven't read the instructions properly, Symantic could improve the install considerably.

1. Insert the CD into the CD-ROM drive.

2. When the opening screen appears, click Install Norton Internet Security or Install Norton Personal Firewall.

3. In the Scan for Viruses dialog box, do one of the following:

* If you have reason to believe your computer is infected, click Yes to scan your computer for viruses.

* If you have recently scanned for viruses and you are not infected, you may skip the scan and click Next.

4. Read the License Agreement, and then click I accept the License Agreement.

If you decline the License Agreement, you cannot continue with the installation.

5. Click Next.

6. Type the product key for activation.
For more information on activating your program, read the document Activating your product.

7. Click Next.

8. Select one of the following installation types:

* Install Now

Install using the most common settings. This is the best choice for most users.

* Custom

View an additional window that will allow you to install without accounts and Parental Control. If you do not install these features, you will have to use Add/Remove Programs in the Windows Control Panel to create accounts or use Parental Control.

9. Click Next.

10. Review the information on the screen and then click Next to start the installation.

The installation window displays installation progress. Depending upon the speed of your computer, this may take a few minutes.

11. After the installation has completed, click Next.

12. Click Restart Now, then click Finish to complete the installation.

13. After restarting your computer, skip to the next section for post-installation instructions, "Running the Configuration Wizard".

Every time I have to reinstall Norton it was becomming a pain to do all the updates and whatnot. There are a couple easy steps you can take to update the CD with some newer files so you can bypass some of the updates later on.

First, you can update the "LiveUpdate file." If you are currently running any Symantec product, odds are you have LiveUpdate. Might want to check what version you are running and update it if need-be. I found on a lot of my PCs I was running 2.6, and the latest version is 3.0. Symantec Downloads Page: First, download the liveupdate .exe file: lusetup.exe. Second, download the Intelligent Updater Package, it would be under product updates Virus Definitions, just navigate to do it manually, it's not too hard to find.

Then I copied my NIS 2005 Antispyware Edition CD to a directory on my PC. All the Antivirus / NIS have similar directory structures so it should be pretty generic to do this.

First, to update the live update file, navigate to the support\lupdate directory. Replace the lusteup.exe file.

Second, extract the Intelligent Updater Package, use winrar, it's a sfx file. Inside those extracted files will be a virscan.zip file. Extract that file into its own directory. Compare those files you just extracted with the files in the virisde directory on the CD image. There should be the same number of files and names. Delete all the old files and the copy over the news ones.

That's it, now burn that temp directory onto a new CD and your program is a little more up to date. This is especially useful if you want to do the pre-scan before installing norton.

In theory it would be possible to update some of the other things. Live Update keeps temporary files of everything you download, you just have to dig around in the documents & settings directory. You could then probably take those files, extract them, then update the corresponding files on the CD. But I find that having Live Update plus Virus Definitions up to date is the most critical. The rest of the updates are usually less than 5MB.

If you are having problems with your virus definitions updating, or live update in general, you can dowload the two files and it will update your existing install.

Self Your Computer Form Malware

noreply@blogger.com (yayasiri) — Sun, 02 Sep 2007 11:18:59 PDT

Every day, virus, spyware, and adware creators come up with new, ingenious ways to gain access to your PC. The same Internet connection that lets you reach out and touch millions of Web servers, e-mail addresses, and other digital entities across the globe also endangers your PC and the information it contains about you. . These steps will help keep you safe:

Step1: Think before you click
Step2: Use a spam filter.
Step3: Update your antivirus software.

Step1: Attached files that end with .exe, .com, .bat, and .scr, as well as scriptable document files, including .doc and .xls, can infect your PC with a single click. Many e-mail programs block access to executable-file attachments.
Step2: Though some malware makes its way onto your computer via drive-by browser hijacking, e-mail is its other main source. Install a junk-mail filter to reduce your chances of activating malicious scripts embedded in messages.
Step3: Allowing your antivirus software to continue running after its subscription has expired is actually worse than using no antivirus software at all: Not only do you lack the crucial virus signature database updates, but you expose your system to malware that targets known flaws in antivirus software.

Tips on avoiding Viruses and Worms: Install antivirus software, update regularly, and use it regularly. Never open unsolicited e-mail attachments with the file extensions VBS, SHS, or PIF. Disconnect your network or modem cable when you are not using your computer-or just power it down.

Avoid attachments with sexual file names. Antivirus software is a software installed on your computer that protects you from viruses. Antivirus software programs can contain between 40,000 - 100,000 "virus definitions" that are updated on a daily or as needed basis.

My favorite free antivirus app is Grisoft AVG Anti-Virus Free. In the paid programs, i do recommend Kaspersky anti virus. Its great in work.

Get a second opinion: Install and use only one antivirus program at a time on your computer because multiple real-time scanners will conflict with one another. If you have doubts about your programs effectiveness, however, use a free online virus scanner, such as Panda Softwares ActiveScan) or Trend Micros HouseCall.

Download with discretion: Any program you download and run on your system could potentially result in a lethal infection or zombification. Download software only from reputable online sources that first scan all of their download files for any malware.

Use a bidirectional firewall: Windows XP and Vista each come with a firewall that blocks incoming attacks; it is enabled by default in Windows XP Service Pack 2 and later. For the best protection, you will also want to block unwanted outgoing connections made by malware on your PC that attempts to either connect to a remote server or send out spam. Vistas firewall can be set up to do that, but configuring it is not a job for the average Windows user. Instead, get one of several free bidirectional firewall programs, such as Zone Labs ZoneAlarm Free, or Agnitums Outpost Firewall Free.

Most commercial security software suites also include a firewall program.

Use antispyware:Anyone who uses a computer is susceptible to spyware infection. In fact, nine out of 10 Internet-connected PCs are infected with spyware. Spyware threats can be any application that may track your online or offline PC activity. If you use the Internet, its very likely some form of spyware threats are already at work on your PC. Detecting spyware is tough and spyware removal is even more difficult. Even if you think you have successfully removed an unwanted program manually, a remaining tickler file can trigger a complete reinstallation the next time you start your PC. And as a survival tactic, malware programs often leave similar traces elsewhere on your system so the game of cat and mouse never ends. Spyware, adware, and some browser cookies slow down your system, cause crashes, and track your online activity. Antispyware utilities work much like antivirus software, detecting and removing the unwanted software from your PC. We picked Webroot Spy Sweeper 5 and NoAdware as our favorite in our "Spyware Fighters" antispyware roundup.

Upgrade from XP: Service Pack 2 makes Windows XP much safer, but the operating system still has security holes, and it remains a top target for malware authors. Windows Vistas new user access controls ask your permission before launching new programs, which reduces the chances that malware can leap from the Web to your PC automatically, though some Vista bugs have already been found. Both the Mac OS and Linux offer even stronger safeguards against program launching, and they are rarely the targets of malware attacks, which makes it very unlikely that Web-hosted attacks--or any other kind--will afflict computers running those operating systems.

Anti Virus Protection your Internet Users

noreply@blogger.com (yayasiri) — Sun, 02 Sep 2007 11:05:52 PDT

Protecting yourself from this destructive program is a basic necessity for internet users even. If you are just checking your e-mail. You cannot avoid viruses. What's important is that have the knowledge about viruses and how to use Anti Virus protection.You cannot avoid viruses because You Can take precautionary measures to protect your computer. you will know what to do if your computer got infected with a virus. Allow me to give you some advice about having Anti Virus Protection.

Learn protect about Viruses.

Basic knowledge about viruses would help you in easily solving the problems brought about by a virus. This way you know the ways you can get a virus, signs of having a virus, different types of viruses, what it does to your computer and how it can damage your files.

Be careful when online.

They say that prevention is better than cure. Although, the chances of getting a virus is very high, it is still suggested that you are careful when surfing websites, downloading files from email or web and installing programs.Some programs may look very attractive but they can be dangerous to your computer. Taking precautionary measures will result into minimal chances of your computer being infected with a Virus.

Make a smart decision.

There are Anti Virus softwares which you can download for free such as AVG, Panda etc. But there are also some which you need to buy before you can use them. Compare their advantages and disadvantages.You may be getting a free anti virus protection but it does not satisfy your needs. Or you may decide purchasing one but you are on a tight budget.Think of what you need from an anti virus protection, get information on the prospect software, make a comparison and then decide which one to download or purchase.

Know your Anti Virus Protection.

Once you have installed an Anti Virus program, ensure that you know the basic information regarding the software. Read the manual or user guide as a starter.Then use the internet to look for other helpful information about the anti virus protection.Furthermore, you can seek assistance from the Customer Service of the software provider if available.

Regularly Perform Virus Scan.
Depending on your anti virus settings, you can do a quick scan everyday just to ensure that your computer is clean from any viruses. A full scan is not recommended as an everyday online habit specifically if you do a lot of things when online. A full scan is very slow because it will check all the files on your computer. While a quick scan will just check the important sectors on your computer.

Always update your Anti Virus Protection.

Everyday, a new virus is being introduced. Thus, it is important that your anti virus software is updated so that it can detect and repair the newest virus. Some anti virus programs have automatic update functionality. This means that every time you have internet connection, your anti virus program will be updated. But if yours does not have that setting, then you may need to run an update regularly. There is no need to worry too much about viruses because there are just some things you need to know and do to ensure that your computer is safe and secure. Have enough knowledge about viruses and anti virus protection to have a safer online experience.

Article Source: http://www.where-to-find.net

Breaking Sessions at the Firewall

noreply@blogger.com (yayasiri) — Fri, 31 Aug 2007 11:29:25 PDT

The filter rules listed in the previous sections do an effective job of limiting the sessions that can be established between the inside network and the outside networks. However, if some type of sessions are permitted, there is always the possibility of an ingenious hacker misusing them. It is a good practice to break the session at the firewall. For one thing it means that you can hide the details of internal addresses and names, because the systems on the outside can only see the session as far as the break. Secondly, it means you can create another barrier that the attacker has to surmount, by requiring authentication at the firewall.

One of the more common reasons for breaking sessions at the firewall, or within a DMZ is not directly a security issue. Often TCP/IP networks inside companies have grown in a haphazard way, meaning that they may not use properly assigned addresses or subnet schemes. When you come to attach such a network to the Internet, you are faced with rebuilding it using valid addressed (which may be further complicated by the fact that the address ranges now available tend to be small; meaning that the network needs not only to be re-addressed, but also re-designed). Breaking sessions at the firewall circumvents these problems, because the only addresses that are exposed are outside of the firewall and the server addresses in the DMZ.

There are two general techniques for breaking sessions at the firewall:

1. Proxy servers, which are special applications that appear as a server to the client machine and appear as the client to the sever.
2. SOCKS, which performs the same function as a proxy, except that t does it at the session layer of the network, instead of the application layer.

There are other aspects to this problem, such as relay applications for SMTP mail and Domain Name Service. These are very important security features, but they are outside the scope of this book. We recommend you refer to Building a Firewall with the IBM Internet connection Secure Network Gateway, SG24-2577 for more complete details.

Using Only One Packet Filter

noreply@blogger.com (yayasiri) — Fri, 31 Aug 2007 11:28:55 PDT

When buying a router with packet filtering capabilities, you may consider buying one with three network interfaces and thereby saving the expense of one router (that is, effectively collapsing the DMZ into a single machine). This mandates that the router can distinguish between all three interfaces and can filter packets according to which of the interfaces it arrives on. Only then can rules be set up so that all the three interfaces are fully controlled.

Secured Network Gateway currently only distinguishes between secure and non-secure interfaces, so it is not well suited for this task. You should also consider that if there is only one router between the inside and the outside, there is only one system that needs to be broken into to get inside access. For this reason we recommend, instead, the setup described in the following section if you want to reduce the hardware cost of a DMZ.

Requesting a Server Certificate from a Known CA

noreply@blogger.com (yayasiri) — Fri, 31 Aug 2007 11:28:27 PDT

This is the most likely scenario if you are setting up a commercial server. The sequence of actins that you need to perform are as follows:

1. Create a public/private key pair, storing the private part in your key ring and the public part in a certificate file.
2. Send the certificate to a CA for singing.
3. Receive the signed certificate into your key ring, thereby completing the key pair so that you can use it to encrypt and sign messages.

To achieve these actions, do the following step:
Start both your Web browser and Secure Internet Connection Server.
Enter URL http://servername/admin-bin/cfgin/initial, which show you the Configuration and Administration forms. You will be prompted for the administrative user ID and password (by default, webadmin and webibm respectively).
Select Create Keys. You will be presented with a list of three possible certificate types:
Verisign Persona
Verisign Secure Server
Other

You should note that the Persona certificate is a low assurance certificate, you should use it on a server for test purposes only.

You will probably want to select VeriSign (Secure Server Certificate). Then click on Apply.

4. Fill in a password and be sure to remember it and all the names you used. Note that you can save your certificate request as any name you choose.
5. Decide whether or not to check the automatic login button. If you check it, you will not be prompted for the key ring password every time you start the server. This is good from the point of view of availability (it will automatically restart if you have a power outage in the middle of the night, for example). On the other hand it means that the password is kept in a file on the system, which may be an exposure.
6. Fill in all of the pertinent fields on the Create Key screen. Figure 42 on page 89 shows an example of this.

Using the Certification Process

noreply@blogger.com (yayasiri) — Fri, 31 Aug 2007 11:27:57 PDT

In this section we show hw to use the facilities of the IBM Internet Connection Secure Server and Secure WebExplorer to create requests to be certified by a certifying authority and how to sign your own certificates for testing purposes.

We also discuss the steps needed to set yourself up as a restricted certifying authority. This facility is a useful choice when you are testing or working within a limited environment. For example, you may wan to have a restricted CA for communications within an enterprise. We are not suggesting that you set yourself up as a full-blown public certifying authority. If that is what you plan to do, you should seek legal advice because the liabilities involved are not well defined.

The IBM Internet Connection secure family of products gives you two ways to perform certificate and key management:

On the server, using the administration and configuration HTML forms. You do not need Secure WebExplorer to use these forms, any Web browser will work.
On the Secure WebExplorer browser, using the key management application.

In general you can perform any of the functions that you need using dither technique. The browser key management application allows you to look at the contents of keys more easily, and it does not suffer from some of the dialog limitations that HTML forms impose. In the following examples we will make use of both techniques.

Using S-HTTP

noreply@blogger.com (yayasiri) — Fri, 31 Aug 2007 11:27:17 PDT

As we described in 4.2.2, “S-HTTP” on page 60, S-HTTP permits a great many combinations of cryptographic features. As you might expect, this diversity can make document preparation for S-HTTP rather complex.

There are two pieces of information that you have to define:
The cryptographic features that you want to use. These are defined in CRTPTOPTS statements, either as part of HTML anchors or in a protection directive in the server configuration file.
The public key that your server will use for signing and key exchange. The key will be contained in a certificate (see Chapter 5, “A Web of Trust: Managing Encryption Keys” on page 83 for a discussion about certificates). The certificate can either be included in the HTML source directly or it can be in a separate file that you reference.

S-HTTP Example Using Security Imbeds
In this example we will link to a document with S-HTTP security using the following cryptographic options:

Server to sign all messages
Client to sign all messages
Encryption using DES for server to client and RC2 for client to server (that should confuse the opposition)

In this example we will reference the certificate information remotely, instead of including it in the HTML code.

The first thing to do is to check that security imbeds are enabled on the server. From the Server welcome page select Configuration and Administration Forms and then Security Configuration. On that page you will find the S-HTTP configuration options, as shown in Figure 31 on page 73. The default options permit security imbeds for HTML files with a file extension of .shtml.

SSL and S-STTP Compared

noreply@blogger.com (yayasiri) — Fri, 31 Aug 2007 11:25:40 PDT

Although these two protocols attack the same set of problems, they use significantly different approaches. You can think of S-HTTP as a smorgasbord approach, with a large choice of options that are taken in any combination to make he meal of your choice. By contrast, SSL is something of a fixed-price menu, good wholesome food but a limited number of combinations.

One major advantage of S-HTTP is its ability to perform client authentication. This allows a truly secure client/server session to be established. The fact that this requires the client to have a public-key certificate limits the degree to which it may be applied, however.

The major advantage of SSL lies in its ease of use. The cryptography options are all have-coded into the browser and server code, so the Webmaster does not need to worry about specifying options in HTML or configuration files. Also, the domination of Netscape products in the World Wide Web makes SSL the clear choice for applications with a widespread client base.

You could, in theory, use both S-HTTP and SSL together, since one enhances the HTTP session flow and the other encapsulates it. The only thing preventing this in current implementations is the fact that the URL conventions (https: for SSL and shttp: for S-HTTP) are contradictory. However, it is difficult to imagine a situation in which combining the protocols would make any sense.

Secure Hash Functions

noreply@blogger.com (yayasiri) — Fri, 31 Aug 2007 11:25:06 PDT

We have seen how public-key and symmetric-key cryptography techniques can provide data privacy and sender authentication. The elements remaining in our wish list are integrity and accountability (see 1.1.1, “Security Objectives” on page 2). The techniques usually used to implement these features are hashing or message digest algorithms. The principal attributes of a secure hashing junction are the following:

It is a one-way process. That is, it is impossible (or at least extremely difficult) to reconstruct the original data from the hashed result.
The hashed result is not predictable. That is, given one set of source data it is extremely difficult to find another set of data with the same hashed result.

You can compare the process to mashing a potato. No two potatoes will produce exactly the same heap of mash, and you cannot recreate the original potato after you have mashed it.

How can we use these functions to our advantage? Say the sender of a message includes a hashed digest of the message in the transmission. When the message arrives, the receiver can execute the same hash function and should get the same digest. If the two digests do not match, it indicates that the message may have been altered in transit and should not be trusted. Thus we have achieved our integrity objective. For the question of accountability, we need to combine a hashing algorithm (to assure the identity of the session partners) and place a time stamp in the source data.

The following secure hash functions are in general use:

- MD2 and MD5 from RSA Data Security Inc (MD stands for Message Digest). MD5 is the most commonly used of the two. MD2 and MD5 produce a 128-bit digest.
- Secure Hash Standard (SHS) which has been adopted by the US Government as a standard. It generates a 160-bit digest, so it may be more secure than MD5 (but no successful attack on MD5 has ever been demonstrated).

Duty of firewalls

noreply@blogger.com (yayasiri) — Tue, 28 Aug 2007 13:36:19 PDT

PEM counters the threat of onterception or tampering with amessage stream in electronic mail. Although that is a significant concern, there is limited use of electronic mail for sensitive communication. More significant is the threat that an untruder would penetrate a ststem turm connected to the Internet. This threat is more significant for two reasons: an electronic message contains very little data, usuallt only hundreds or thousands of bytea. whereas a network. may be unaware of the threat to all stored data. Thus, protection of network conected resources is very important.

The simplest from of protection of sensitive resources is not to connect them to any system accessible from outside the organization's security perimeter, Physical isplation is totally effectibe against outside attack,but manyusers need, and more want, access to the outside.

in the worst case, a user woll buy an indezpensive modem and connect it to a LAN-connected workstation to link to the outside. This practice is harmful because the security staff does not even know of the modem, so they cannot control it or educate the user about how to limit the ezposure or build defenses for other resources connected to the maverick user.

Ideally, we want afillter that will let though only desirable interactions. Two problems of controlling access are determining what constitutes desirable (or not desirable) interactions, and permitting desirable interactions, blocking the others, and nit interfering too severely with users' operations (to keep users from buying their own modems and defeating the purpose of the fillter). The model is like adefensive medieval castle: these castles had strong and solid walls with slits through which archers could shoot arrows. These slits were so narrow that it was almost impossible to shoot an arrow through it from the outside. This kind of computer defense is called afirewall.

Symmetric-Key Encryption

noreply@blogger.com (yayasiri) — Tue, 28 Aug 2007 13:35:02 PDT

Symmetric-Key encryption (also some times called bulk encryption) is what most people think of as a secret code. The essence of a symmetric-key system is that both parties must know a shared secret. The sending party performs some predefined manipulation of the data, using the shared secret as a key. The result is a scrambled message which can only be interpreted by reversing the encryption process, using the same secret key. A good example of a symmetric-key encryption mechanism was the Enigma system used in World War II. In that case the manipulation was performed by an electro-mechanical machine and the key was a series of patch panel connections. The key was changed at regular intervals, so there was a fresh challenge for the code breakers every few weeks.

Using modern computer systems, symmetric-key encryption is very fast and secure. Its effectiveness is governed by two main factors:

- The size of the key. All symmetric-key algorithms can be cracked, but the difficulty of doing so rises exponentially as the key size increases. With modern computers there is no problem in encrypting with keys which are large enough to be impossible to economically crack. However, the U.S. Government imposes restrictions on the export of cryptographic code. You need to ask for a licence from the National Security Agency (NSA) to export any symmetric-key cryptographic product. The NSA will oly grant export licences for general use if the cipher is weaker than an NSA-defined, arbitrary, strength. In the case of the Rc2 and RC4 ciphers this means using a key size of 40 bits. There have been recent demonstrations to show that encryption crippled in this way can be broken with a relatively small investment of equipment and time (you can read the details of one of this demonstrations at http://www.brute.cl.cam.ac.uk/brute/hal2.html).

- The security with which the key is disseminated and stored. Since both partners in a symmetric-key system must know the secret key, there has to be some way for it to be transmitted from one to the other. It is therefore vital to protect the key transmission and also to protect the key when it is stored on either of the partner systems.