danielowen.com

This is presented in the same vein as Lenny Zeltser’s How to Suck at Information Security.  If you have not read Lenny’s article it is highly recommended.

What makes a good backup solution?
Part 4 of 4
Other topics

What makes a good backup solution?
Part 3 of 4
Three more topics

If you have not read part one and part two you may want to start there.

In this section we will look at three more topics. First we will look at what kind of disaster we want to protect ourselves from. Then we will look at protecting the backups themselves and finally we will look at backup media.

What makes a good backup solution?
Part 2 of 4
Backup Types

If you have not read part one you may want to start there.

In this section we will look at the types of backups that are available in a modern environment. First we will start with a review of the 4 types of backups that most traditional backup systems can do. Then we will move on to newer techniques and technologies.

What makes a good backup solution?
Part 1 of 4
Critical Elements of a Backup Plan

This came out of a discussion on the NLUG list about making sure that Windows boxes are not infected with malware. This goes beyond that and tries to look at what technologies are out there to protect and monitor your machines. It is somewhat Windows centered but the concepts are the same for any OS (OS X, Linux, *BSD etc). I’ll throw in here my regular comment about OS security. All operating systems have bugs. Some have less than others but any OS must be regularly patched or you will be vulnerable.

This is aimed toward the business market but many of the concepts still hold true for the home user.

For as long as I would say that I truly understood computer security I have believed that security in depth is one of the most important elements of security. Coming from this perspective I often find it interesting how many relatively easy elements are not implemented by practitioners. Some of these are the same practitioners that will go to extraordinary lengths in other areas to secure their systems.

This paper looks at the major spam filtering techniques in current use. In looking at methods both success rates and possible problems with each method are explored. Methods discussed include key word filtering, open relay filtering, open proxy filtering, dial-up filtering, non conforming mailing list filtering, cooperative sharing of spam samples, known spam origin filtering Bayesian filtering, Markovian discrimination, gray listing and challenge response.

This paper reviews the current state of Intrusion Detection Systems (IDS) with a particular emphasis on Network-Based Intrusion Detection systems (NIDS). Many of the topic covered will be applicable for any size business, but issues specific to the Small/Medium Business (SMB) sector are emphasized. The paper covers what an IDS is followed by implementation issues that should be considered when considering an IDS solution.

This paper was originally written in November of 2005. The concepts still hold true today. This article will be a good, no marketing spin, introductory overview of IDS technologies.