Archive for the ‘Web Security’ category

Blurring the lines between admin and security

June 22nd, 2010

I’ve been a network/systems admin for a long time now and just when I think I’ve got all of my responsibilities nailed down, I discover a new pile of them hiding in the corner.  The latest batch has turned out to be security.  Yes that’s a very, very broad scope.  I’ve always been responsible for network security, being the primary manager of our firewalls and VPN platforms, but this is quickly branching into areas I’m not comfortable (yet) with. 

We’re currently being audited for PCI compliance by our bank.  This means that all sorts of things need to be tested and verified and that numerous configurations must be in place from the perimiter to the desktop.  Lots of these things aren’t in place, mainly on the desktop side, but I was welcoming this audit as I’ve always felt that we should be better about security and I just didn’t know where to start.  Well the PCI stuff is pretty straight forward, but what happened was that during the interviews I discovered that several of our internet-facing systems are allowing the submission of sensitive customer data.  It turns out that some of our internal developers don’t have much sense for security and have taken some of our web applications much further than we in the IT department ever anticipated.  This was a massive wakeup call.  Massive. » Read more: Blurring the lines between admin and security

No comments »

Posted in General IT, Web Security

Tags:

Let’s stop web-borne malware – Qualys

March 1st, 2010

My oh my how the landscape of malware has changed over the last 10 years.  The traditional “virus” is all but dead, and the transports for new threats are evolving almost faster than the security services can adapt.  The latest trend of malware is web-borne annoyance-ware like FakeAV, which tries to trick you into buying something and then essentially makes doing any task on your computer so obnoxious that you can’t even use it.  Is FakeAV dangerous?  That depends on how you look at it.  Is FakeAV a big problem?  Absolutely. » Read more: Let’s stop web-borne malware – Qualys

No comments »

Posted in General IT, Web Security

Tags:

Websense Remote Filtering – x64, Vista, Windows 7

November 6th, 2009

We have been a Websense customer for quite a few years now and while the basic functionality of the system has always been acceptable, I’ve always found everything else to be a tedious and slow process with them. 

For example, when we first implemented Websense we had a Cisco PIX firewall and integrating Websense with the PIX was a snap.  Eventually we replaced the PIX with a Watchguard and had to find a new method of integrating Websense into our network.  We had a Cisco router as our LAN gateway, and Websense had an integration for Cisco routers so that seemed like the logical road to go down.  After spending over a month working with their support crew without getting the integration to work, one of their techs asked “why don’t you just use it in standalone mode?”   Naturally I had assumed that standalone mode would require the Websense server to be physically between the clients and the internet gateway, or to have the clients configured with proxy settings.  Neither of which was something that I was willing to do.  Turns out, neither is required.  Why wasn’t this the first road for tech support to show me?   It turned out that standalone mode was SO easy to install and configure, that I still can’t for the life of me understand why they even have integration options. » Read more: Websense Remote Filtering – x64, Vista, Windows 7

1 comment »

Posted in Web Security

Tags:

Josh Currier - Blogged