HoneypotsWritten by Richard Lowe
Continued from page 1
If you've got time and money, I've found it's best to set up honeypot in it's own DMZ. A DMZ is a way to protect a network. You set up one firewall, then your web servers, then another firewall to protect your application servers. You do this because web servers need more exposure to internet than your application servers. Also, application servers are much more expensive and critical and thus deserve more protection. So what you do with honeypots is set up a third DMZ and add one or more honeypot systems to them. Thus, you might put a firewall, a honeypot, another firewall, your web servers, another firewall and then your application servers. You can also just leave honeypots right on internet if you want, although that tends to make them too easy of a target. And then you just let them sit there and attract hackers. Oh yes, you have to be sure to keep extensive records of everything that happens on these systems, just in case you need it later. To see a list of article available for reprint, you can send an email to: mailto:article-list@internet-tips.net?subject=send_article_list or visit http://internet-tips.net/requestarticles.htm
Richard Lowe Jr. is the webmaster of Internet Tips And Secrets at http://www.internet-tips.net - Visit our website any time to read over 1,000 complete FREE articles about how to improve your internet profits, enjoyment and knowledge.
| | Virus HoaxesWritten by Richard Lowe
Continued from page 1
tried Procomm Plus TD and also PC Talk 3. Same results every time. Something was up so I hooked up to my test equipment and different modems (I do research and development for a local computer telecommunications company and have an in-house lab at my disposal). After another hour of corrupted hard drives I found what I think is world's worst computer virus yet. The virus distributes itself on modem sub-carrier present in all 2400 baud and up modems. The sub-carrier is used for ROM and register debugging purposes only, and otherwise serves no othr (sp) purpose. The virus sets a bit pattern in one of internal modem registers, but it seemed to screw up other registers on my USR. A modem that has been "infected" with this virus will then transmit virus to other modems that use a subcarrier (I suppose those who use 300 and 1200 baud modems should be immune). The virus then attaches itself to all binary incoming data and infects host computer's hard disk. The only way to get rid of this virus is to completely reset all modem registers by hand, but I haven't found a way to vaccinate a modem against virus, but there is possibility of building a subcarrier filter. I am calling on a 1200 baud modem to enter this message, and have advised sysops of two other boards (names withheld). I don't know how this virus originated, but I'm sure it is work of someone in computer telecommunications field such as myself. Probably best thing to do now is to stick to 1200 baud until we figure this thing out. Mike RoChenleSo what should you do if you receive a warning about some horrible virus? Generally, if these demand to be sent to everyone you know, it's a hoax. If you are unsure, then check out following site: Symantic Antivirus Research Center - http://www.sarc.com Go to search page and enter a few words from message claiming to warn you about a horrible virus. Behold, you will now read about hoax. In fact, here's datasheet on virus mentioned at start of this article: http://securityresponse.symantec.com/avcenter/venc/data /wtc.survivor.hoax.html In any event, hoax or not, it's a good idea to just file email or delete it. Don't send it on to all of your friends. Don't do anything dramatic. These things only gain power when people give them power. In other words, maintain your reason and don't give in to an emotional response which simply floods email inboxes with junk.
Richard Lowe Jr. is the webmaster of Internet Tips And Secrets at http://www.internet-tips.net - Visit our website any time to read over 1,000 complete FREE articles about how to improve your internet profits, enjoyment and knowledge.
|
