Secure Network Testing Criteria

  • Thread starter Thread starter A. Stephen Elliott
  • Start date Start date
A

A. Stephen Elliott

Hello,

We have just completed setting up a secure network. The structure
contains a primary domain controller, secondary domain controller,
Anti-virus server and firewall server. What steps should we take in
showing that this enviroment has met all secure conditions. Thanks for
your time.

Andre
 
First of all, until you've tested it its not secure. There are a number of
applications out there that will test various aspects, and some that will
report what you're doing. Look at nmap, Languard LanNetScan, snort.
Positioning these at strategic locations, they will attempt to scan, hack,
crack, etc. Snort on either side of your firewall will show you what hits
you from the outside and how much of it gets through. LanGuard is a windows
app and is simple to install and run (although you'll need some expertise to
configure it and interpret the results). The others are Linux/Unix and will
require a good bit of experience to set up and run. As far as your domain
goes, the Microsoft Security and Analysis tool will find the open
vulnerabilities specific to your Windows domain.

....kurt
 
Hello,

We have just completed setting up a secure network. The structure
contains a primary domain controller, secondary domain controller,
Anti-virus server and firewall server. What steps should we take in
showing that this enviroment has met all secure conditions. Thanks for
your time.

Andre

You know, I believe you should never proofread your own work.
Evaluating yourself is like looking at a checklist for the things you
already know. What you really want to find out is if you overlooked or
forgot something in the first place. It is the unknown vulnerability
that you want to eliminate.

Why don't you ask a third party to review your security? There are
sites that do this online, there is specific software that test for
hundreds of mapped vulnerabilities and there are specific companies
that try to hack your network and provide you a report. Take your
pick.
 
Kurt,

Thanks for the information.

Andre
First of all, until you've tested it its not secure. There are a number of
applications out there that will test various aspects, and some that will
report what you're doing. Look at nmap, Languard LanNetScan, snort.
Positioning these at strategic locations, they will attempt to scan, hack,
crack, etc. Snort on either side of your firewall will show you what hits
you from the outside and how much of it gets through. LanGuard is a windows
app and is simple to install and run (although you'll need some expertise to
configure it and interpret the results). The others are Linux/Unix and will
require a good bit of experience to set up and run. As far as your domain
goes, the Microsoft Security and Analysis tool will find the open
vulnerabilities specific to your Windows domain.

...kurt
 
Thanks Speeder.
You know, I believe you should never proofread your own work.
Evaluating yourself is like looking at a checklist for the things you
already know. What you really want to find out is if you overlooked or
forgot something in the first place. It is the unknown vulnerability
that you want to eliminate.

Why don't you ask a third party to review your security? There are
sites that do this online, there is specific software that test for
hundreds of mapped vulnerabilities and there are specific companies
that try to hack your network and provide you a report. Take your
pick.
 
Back
Top