Archive for August, 2009
7 effective precautions for ONLINE shopping.
by cisspfix on Aug.31, 2009, under General
Today in the Internet era, the range of online retail options makes us really lucky to shop comfortably at the click of a mouse. While the perks of online shopping are obvious – no traffic jams, irritating crowds, billing queues or parking problems – taking some simple precautions will ensure safe shopping. Here are some basic safety tips for a secure online shopping experience.
- Look for visual cues
ARP spoofing…UnPlugged
by cisspfix on Aug.31, 2009, under Uncategorized
ARP spoofing is a common method of attacking a network by stealing the IP address of a network server and sniffing the traffic passed to it.
An open source solution is ArpON “Arp handler inspectiON”. It is a portable ARP handler and it detects and blocks all ARP Poisoning/Spoofing attacks with Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approach on switched/hubbed LAN with/without DHCP protocol.
Some switch vendors have devised a defense against this form of attack that imposes very strict control over what ARP packets are allowed into the network. Allied Telesis switches have a sub-feature of DHCP Snooping, known as ARP Security, while the equivalent feature on Cisco devices is called Dynamic ARP Inspection.
Malware..different from viruses..
by cisspfix on Aug.28, 2009, under Study notes
Malware, short for malicious software, is software designed to infiltrate a computer without the owner’s informed consent. The expression is a general term used by computer professionals to mean a variety of forms of hostile, intrusive, or annoying software or program code. The term “computer virus” is sometimes used as a catch-all phrase to include all types of malware, including true viruses.
Malware is a program containing sequences of steps to carry out attacks. This has gone through three generations so far.
by cisspfix on Aug.21, 2009, under CISSP
International Information Systems Security Certification Consortium, Inc., abbreviated (ISC)², creates the Certified Information System Security Professional (CISSP) course. It ranked highly as the important Security course and certification available in the market today. Holder of CISSP certificate have one of the highest package of all IT certifications exam. CISSP course and exam focuses on real-life situations and the parameters of the IT and security market. A candidate with CISSP certification is likely to have a job that deals with the security issues to the management, instead of finding and fixing problems on there own, CISSP certificate holders manages a team as a leader instead of be a part of one.
