Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: New network... HELP

  1. #1
    Junior Member
    Join Date
    Aug 2002
    Posts
    4

    New network... HELP

    I have just created a network at my home, i am trying to learn how to make it as secure as possible and how to test to see if it is secure. If you can give me some advice or some ideas on tools or books that i can read, i would be greatful.

    Untruth
    I know not with what weapons World War III will be fought, but World War IV will be fought with sticks and stones.
    --Albert Einstein

  2. #2
    Old Fart
    Join Date
    Jun 2002
    Posts
    1,658
    Get a good firewall (do a search for threads on firewalls for more info), a good antivirus (again, do a search, plenty of good threads to choose from). There is a security testing tool at www.dslreports.com that you can use to evaluate your system.
    Al
    It isn't paranoia when you KNOW they're out to get you...

  3. #3
    Senior Member
    Join Date
    Dec 2001
    Posts
    321
    you need to give us more details, are you using a hub/swithc/router ?
    do you have a cable/dsl/isdn .... ?
    assembly.... digital dna ?

  4. #4
    Junior Member
    Join Date
    Aug 2002
    Posts
    4
    sorry nabylbt,
    i am using a swich and connecting to the internet through direct pc satalite (download only) phone line upload, and very soon i am going to be hooked up through dsl. all the computers hook up through one main comuter which is hooked up to the modem that talks to the satalite.
    I hope i have given anough details.
    I know not with what weapons World War III will be fought, but World War IV will be fought with sticks and stones.
    --Albert Einstein

  5. #5
    Senior Member
    Join Date
    Apr 2002
    Posts
    634
    I advise you to install a good IDS (like http://www.snort.org ) and/or to sniff yourself your network regularly.

    We could help you better if we'd have more precisions. What is the number of computers in your network? What OS's do you use? What is the architecture of your network? Do you have a static ip/dns name?
    Life is boring. Play NetHack... --more--

  6. #6
    Junior Member
    Join Date
    Aug 2002
    Posts
    4
    when i did a port scan against my network, it did not work. I use nmap. But when i used the testing tool at www.dslreports.com it showed that i have one port open. how would i close that port? Second, i remember a command at the prompt that shows a list of open and closed ports. I can't remember what that is, if someone can help me with that i would be greatful.

    kisscool: there are 5 computers in my network including the server, and my ip is not static. all the computers are hooked up by a swich, that then run to the server which has connection to the satalite which give me internet access. I hope i have given anough information.

    untruth
    I know not with what weapons World War III will be fought, but World War IV will be fought with sticks and stones.
    --Albert Einstein

  7. #7
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,325
    Untruth:

    If you are using windows, I think you are talking about netstat.
    There are a bunch of options for it depending on your OS.
    type netstat /? for the list

    You may also want to check out http://www.foundstone.com/knowledge/proddesc/fport.html
    This is a cool program. I put it in my %systemroot%\system32 so I can use it anywhere.
    You can also create a little batch file that will run various commands for you.

    I have one setup that lists my tasklist, net connections, fport to match all the connections to the tasklist and a couple others. For me it is just easiter to use a .bat file rather than typing them all out and going back in forth between screens. If you append them to a file and then open the file at the end of the batch, it will be there nice and neat on one screen. just my opinion.
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  8. #8
    Senior Member
    Join Date
    Apr 2002
    Posts
    634
    Ok, so I recommand you to put a very good firewall in the entry of your network (I think it is your server who is directly connected), you will be able to close your open port with it but I guess that your open port is open by your navigator. An NIDS (snort) on your network with logs copied in another computer.
    Keep up to date your servers patches and monitor regularly your logs and your network activity.
    Life is boring. Play NetHack... --more--

  9. #9
    Senior Member
    Join Date
    Aug 2002
    Posts
    310
    Is this server just for you to play with,or is it business based?(ie. are there going to be people who will have direct access to it that may not be completely trustworthy).If this is the case,permissions are going to play a big role in security.Also it's important to educate any others in the security risks involved with a network.As the old saying goes.Your computer(network in this case) is only as secure as its weakest link.
    [shadow]I don\'t believe in anarchy.If you\'re not smart enough to beat the system it\'s your problem. [/shadow]


  10. #10
    Old Fart
    Join Date
    Jun 2002
    Posts
    1,658
    From my 'comments' that I receive regularly these days...

    No, because a firewall would basically do crap. You would need IPTables or whatever to make sure the WHOLE network is secure or use an entire box to be a firewall.
    I figured that I would share that since it MIGHT be beneficial to untruth. As for the peckerhead that left it for me....I'm really getting a kick out of the comments you send me, honest. I'm just curious as to if this is Alex sending them (thus making good on his threat to "fix" me) or just somebody stupid enough to do whatever the little lamer tells them to do? It doesn't really matter which it is, I just want to thank you for providing me with an example of how not to act on the internet. You have my gratitude.
    Al
    It isn't paranoia when you KNOW they're out to get you...

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •