http://www.articletrader.com/ Articles at ArticleTrader en-us http://www.articletrader.com/internet/security/useful-tools-for-circumventing-internet-censors.html http://www.articletrader.com/internet/security/useful-tools-for-circumventing-internet-censors.html Sat, 17 Jan 2009 00:31:18 -0600
One of the ways users can circumvent blocks is with the Java Anon Proxy, commonly referred to as JonDo. This method allows users to choose which network to surf through. These networks are run by independent organizations. After a user chooses their network, the data stream is scrambled and mixed with other users’ data. This allows users to remain anonymous since anyone attempting to spy on or restrict the data flow is confused by the cluttered connection. Unlike TOR, the operators are not anonymous, which allows a user to decide which operators they will or will not trust with their information. A major drawback of this service is that all the operators, also known as mix cascades, can record their logs and compare them to reveal users’ online activities.

A second way users can outsmart censors is by using Psiphon. Psiphon is a web proxy that was directly created to circumvent the tight Internet censorship of countries such as China, Saudi Arabia, and Cuba. The traffic between clients and servers is encrypted with “https” as the data is being transferred. Psiphon is offers users the advantage of turning their computers into servers that can display web pages from anywhere. This proxy works over trusted connections as opposed to an open proxy which travels over untrusted networks. Users in countries with tight censorship can log in and send a request to a server located in another country to gain access to blocked websites. Users do not have to download any software, meaning no traces of circumventors are found on the hard drive. While Psiphon can gain access to censored content it does not act as an anonymizer and all the client’s activities are logged in Psiphon’s servers, leaving it vulnerable to cyber attacks and hackers/crackers looking for information.

One of the most popular methods to access censored content is by using anonymous proxy servers, either in website form or software-based. These proxies are very common and can be found through the various search engines. Web-based proxies are very easy to implement, which attests to their abundance. While anonymous proxy sites are easy to block, the ease of creating new ones makes it a common go-to for surfers. Many surfers prefer to use the software-based proxy since it will usually offer more security features, such as encrypting the connection and also hiding the port and origin website of the surfer. Anonymous surfing software and websites allow a user to surf anonymously by redirecting their connection through a server which masks the real IP with one generated by the server. Anonymous proxy servers will also rotate IP addresses and randomly refresh so that a user is not constantly surfing with the same IP address. This allows users facing strict censorship to mask their IP address with one from a different country, which will allow the user free reign to surf the Internet.

Another option is The Onion Router, also known as TOR. This service allows users to stay invisible against traffic analysis by relaying the network connection over various gateways. Since the gateways are themselves anonymous, users can have their data relayed around the world. Users do not have direct access to the site they visit, instead they are sent through a series of connections, called relays, which are individually encrypted. It is then sent to the next gateway until it reaches the exit node and the user can then see the website that was requested. TOR uses cryptography in layers, which is where the “onion” reference originated, and encrypts each connecting node individually. This allows user to remain highly anonymous since each node only knows where they receive the information from and which node they are sending the signal to. While this service has become quite popular it does have one major flaw. A user can set up a node which records all the information it receives and sends, ultimately tracking a users surfing habits.

These methods all give users the opportunity to circumvent restrictions placed on their web surfing. Censors are always looking for ways to keep their restrictions in place and these services can help users fight back against those policing the internet. While in rare occurrences these controls and bans are lifted, it is unlikely that a user will be able to access the World Wide Web freely. Using one of these methods ensures users their internet privacy remains intact and shifts the power back into the hands of the netizens that are being told where they can and can’t surf and what content they are allowed to view.

--
Tino Bruno is the Internet Marketing Specialist for award-winning software developer Privacy Partners. He has been with Privacy Partners since college and strives to ensure all computer users maintain their Internet privacy and online safety. Come visit Privacy Partners for more information on staying protected while surfing the Internet.

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/importance-of-security-assessment-during-company-merger-or-acquisition.html http://www.articletrader.com/internet/security/importance-of-security-assessment-during-company-merger-or-acquisition.html Sun, 27 Jan 2008 00:00:00 -0600
Confirmation if there are already existence of trojans, worms, viruses, spywares in the office servers and PCs. In the event there are very damaging viruses or trojans, these threats can infect your network and possible spreading via e-mail, ftp and network sharing drives. Further, they can also be transported via portable hard disk, USB Thumb drives, DVDs, CDs carried by office personnel.

Confirmation if there is a firewall. Firewalls provide more flexibility and capacity expansion in the network design. If there is a business requirement to have Internet facing servers, a firewall will allow creation of separate network segment to house these servers and at the same time provides network security.

Assurances there are no weak points in the network e.g. modem connecting to the servers and PCs. This can be the backdoor for intruders to penetrate the office network.

Other security controls such as confirmation if wireless network is encrypted, unnecessary services running in the servers, authorized personnel have access to critical data (Not everyone!), non business software which may have viruses.

Existence of a Security Policy

The responsible IT personal can then provide more information on the state of IT security in the offices. Further, a more detailed proposal if additional/reconfiguration servers, applications and equipment such as UPS, Gen-Set, Fire Suppression System to better support the business.

A more detailed study to review if the existing servers, storage systems are capable to support the current business requirement and future expansion.

This is my view of a Security Assessment based on my experience of setting up IT strategies of merging companies. Of course there will be a lot more information to review once the on-site audit/assessment is carried out. An IT Auditor/Security Consultant can then provide a more precise recommendation on the most feasible plan for the merger.



--

Gabriel Ng is a professional IT Security Consultant, IT Auditor (CISSP) and author of http://www.comsectutorial.com This site is setup to provide information, recommendation on hacking prevention, controls to minimise security threats from viruses, trojans, spywares, hacking based real life

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/onsite-factors-that-will-help-your-webpages-rank-better.html http://www.articletrader.com/internet/security/onsite-factors-that-will-help-your-webpages-rank-better.html Thu, 24 Jul 2008 00:00:00 -0500


Why is Google the best? Well mainly due to its PageRank algorithm, no one’s know exactly how this works but industry experts have spent years trying to find out what works and what doesn’t.



I will explain just a few of the onsite factors that PageRank takes into consideration and in my option help the greater good, which is Google returning relevant Webpage’s in its search.



Meta Tags



Meta tags are little pieces of code that is found at the beginning of an html webpage and gives help to search engine what the page is about. These tags mainly consist of Title tag, description tag, and keyword tag.



The title tag should give a brief explanation of what the webpage is about and this information is displayed at the top of the web browser and is the clickable part in the search engine listing.



The description tag should also give a longer description on the webpage with a call to action to entice searchers to click on it. This information is displayed below the clickable part of the search engine listing.



Keyphrase tag is mostly ignored by Google these days due to the abuse that spammers have gave it over the years; however, this tag should contain a list of key words that describe your webpage separated by commas.



Text elements



Some of the text factors are: how many words are on a webpage, the use of H1 (header text) and bolded text. These are just some factors that Google take into account, the proper use of these elements should be observed. Another factor that Google uses is Latent Semantic Indexing or LSA for short this is a lesser know factor in which Google analysis the words within a webpage and checks them against known words that are associated with that particular topic.



This just a few I have described here more to follow in later articles. If you are looking for a great SEO company that have involved themselves for years in researching the onsite factors I would recommend these guys, they also specialise in website design.



Do you need to worry about these onsite factors? Well yes and no if you write your webpage’s with the visitor in mind then you should cover most of these points naturally.

--
Author

Jack Mack

Jack's Website: party poker bonus codes

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/spyare-removal-a-key-to-a-healthy-pc.html http://www.articletrader.com/internet/security/spyare-removal-a-key-to-a-healthy-pc.html Sat, 24 Nov 2007 00:00:00 -0600 Spyware removal software is basically a part of everyday computer maintenance. It is also the surest way to ensure your computer. The spyware removal software that is currently on the market today is created to detect any spyware that is on your individual computer and then to remove it while at the same time the software is constantly defending your computer. There are a number of different ways that spyware can get on your individual computer. Your computer can become infected with spyware through downloads, installation of new software, browsing the internet and receiving and receiving and opening emails.

The spyware collects information from your computer regarding the searched topics and other related information which is then forwarded to the origin of the program. The spyware is send by most of the advertising companies to send advertisements and promotions and also to know the sites searched and preferred by the customer. It also lets the sender know more about the shopping sites and products liked by the customer.

Normally, you will find that this spyware comes in the form of a cookie which is an information packet that is silently installed on your individual computer. There is also other type of spyware that uses information gathered from your individual computer for purposes that are illegal.

With the improving and advancing technology, latest editions of the spyware removal software are available. If you cannot get these, the earlier ones used by the customer could also be updated easily. With the internet the spyware removal software installed in your computer also updates by itself.

Most of the time when you purchase a spyware removal software, it is going to be accompanied by anti virus software which means that you have complete protection for your computer. However, if you would like, you can download each software separately.

One of the best spyware removal and anti virus software that is available on the market today is Norton software. Norton is made by Symantec. One of the main advantages of Norton is that they offer a trail ware with every product that they have. The trail ware is basically a trail version that you can use for a period of thirty days so that you can evaluate the product and see if it is the right one for you. Once you have installed the software. Norton will scan your entire computer to check for spyware and viruses and then it will notify you of anything is found.

Apart from Norton there is other spyware removal programs and anti virus software available in the market. Before actually purchasing one it is advisable to have a trial package and try it on your computer so as to identify the best soft ware suitable for you.

--
At RemoveSpywareandAdware.com, we are proud to have Isaiah Henry as an expert on how to remove spyware software or without any software. He has written on Spy Sweeper review.

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/install-the-most-successful-spyware-removal-software-and-maintain-your-computer-security.html http://www.articletrader.com/internet/security/install-the-most-successful-spyware-removal-software-and-maintain-your-computer-security.html Wed, 26 Mar 2008 00:00:00 -0500
You may feel it is not a big problem as some of the spyware do not interfere in your normal processes. But be cautious. They can steal all your passwords and other valuable information without you noticing it. Most of them even slow down the processing speed of your system. It may start working sluggishly. Though it is illegal and a punishable offence it is difficult to trace the controllers of these spyware. But you can protect your system from their invasion by installing an efficient and up to date anti spyware software in your system.

Consider, the anti-spyware bot for installation as it offers a whole package of your computer�s security provisions. An award winning skill used in this spyware, which ensures the protection of your computer from malevolent spy wares, intrudes into the computer without your information. It is very quick in identifying all potential hazards. Do not drop your heart even though there is congestion in your computer with adware and spy wares because it is not late. The very effective anti-spyware bot, locates the adware and spyware, will remove it permanently from the hard disc.

Many types of antispyware software are available in market and wisely choose the best according to your need. You can go for the antispyware, which is available for no cost on the web also. Some are free for only a limited time and it is downloadable after understanding the efficiency of that software. Installing an antispyware of a reliable company with special services will be better. The software should update the computer regularly and frequent scanning of the folders, files frequently too. A scanning report should be send to you, which has information about the type, and genre of spyware infected in your system and then removes it.

There should be an option for manual scanning of your drives in your software so that you can check out your drives individually at your discretion for spyware and adware. While downloading be sure that the site is not fake. There are sites which appear to be an anti spyware site but as you start downloading it may start infecting your system with more and more virus.

--
At RemoveSpywareandAdware.com, we are proud to have Isaiah Henry as an expert on how to remove spyware software or without any software. You can visit us on spyware removal to gain insight.

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/with-inetformfiller-batch-submit-data-to-web-forms-fast-and-easy.html http://www.articletrader.com/internet/security/with-inetformfiller-batch-submit-data-to-web-forms-fast-and-easy.html Mon, 23 Feb 2009 07:47:49 -0600 Internet is flooded today with undesirable advertising letters also known as spam. Both for an ordinary user connecting to Internet via dialup and for various companies paying for the dedicated line or using DSL spam equals wasted megabytes of information. The megabytes, which are paid for. And time, wasted on viewing advertising offers of unnecessary things or services.
Currently there are a lot of ways to guard your email box against unceasing attacks of “Viagra”, tourist reservations, commercial seminars and the best “windows and doors” in the world, which can be bought cheaply and simply. One of the cures could be changing the email account. But this is by no means a panacea: in a while the new box will be displaying nonsense newsletters from all over the world. You can of course use the server-inbuilt filters or paid resources which try to minimize the spam flow, letting through just the letters from “authorized addressers”. But the server filters block just a small part of proposals to “enlarge” or “relax”. And the powerful “authorization” protection is, first, expensive (plus a monthly fee), and second, is very inconvenient for people on the contact-list (they have to undergo a lengthy “authorization” procedure).

Ideal filter
To clean the mail account from spam a universal anti-advertising shield is needed which will save the money otherwise wasted on downloading weighty letters traffic and the time otherwise lost on viewing and deleting them. Such a shield is the programs which remotely check the mail in the user box without uploading them and block unwanted letters immediately at the server. Such programs are many. They differ in interface and functionality, but have one thing in common: obligatory check of email at the server. Without this feature there would be no sense in the blockers at all. To upload messages and check them locally is not a big deal. The applications differ in their settings, spam filtering ways, speed of work and different features enabling maximum efficiency. The most wide-spread way of blocking spam is by letter headings and continuously updated list of “illegitimate” addresses, which are known as harmful advertisements distributors.
What should an ideal spam blocking application be like? First, it should cope with its primary duties flawlessly. Second, it should have a nice interface, be simple to tune and work autonomously. Third, it shouldn’t prevent normal functioning of other programs, mail clients in particular. Let’s look into the interior side of a spam-blocking application and decipher the underlying basics.

Spam-blocking principles
Usually the application downloads message headers which undergo “partial enquiry”. Depending on the functionality of a certain “tool”, filtering is conducted by fields (header, sender, addressee etc.), black and white lists of electronic addresses in the database and a wider list of recognized spam generating servers. For checking lists are used, either created by developers or edited by users. Undoubtedly, the more thorough the home-made spam-blocking provisions, the better, but ideal work cannot be achieved without proper tuning of blocking and filtering rules. Of course a user setting the most rigid rules risks losing with the blocked spam useful and harmless letters. But in any case, it’s a private decision.
Apart from preinstalled blocking rules, user can make his/her own corrections, such as widening the “dangerous server” lists, editing black and white lists and creating his/her own lists conforming to certain rules (for instance, taking into account letter size plus filtering from “that particular left-most Korean server list). On installing the application and adjusting its settings (or you can leave everything as it is) and initial workability check, one can make a final decision concerning fitness of the filter for further use. It remains to decide which application to select.

SoftInform Spam Blocker
New spam-blocking application by SoftInform company - Spam Blocker – enables maximum efficiency by guarding the user computer (his/her mail box to be more specific) from spam flows, saving money and time on viewing useless messages and paying for the “mail advertisements” traffic. As a universal spam blocking tool Spam Blocker possesses indefeasible advantages compared to analogical applications. High quality (blocking 85 to 100% of spam), simple, exquisite and friendly interface, flexibility of settings make SoftInform newly released application the best in its class.

Are you not tired of endless spam? Have you lost track of newly registered (“clean”) accounts? Dozens of letters daily burn you and your company megabytes of far from free traffic? All you need to do is to install Spam Blocker, in such a way ridding your computer from persistent and useless e-mail advertising.

--
Software

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/protect-your-computer-with-zone-labs.html http://www.articletrader.com/internet/security/protect-your-computer-with-zone-labs.html Wed, 14 Jun 2006 00:00:00 -0500
They're also easy to install and configure to meet your needs. Zone Labs' products offer a range of services depending on what you need and want from an Internet protection program.

ZoneAlarm, the most basic firewall program offered by Zone Labs, can be downloaded for free and used for personal, non-business use.

ZoneAlarm Antivirus adds the Zone Labs triple-defense firewall, antivirus protection, e-mail security and protection for your wireless network.

Zone Labs' ZoneAlarm Anti-Spyware offers the same features as the antivirus program except with anti-spyware protection instead of antivirus.

The added power of ZoneAlarm Pro includes Zone Labs' identity theft and privacy protection programs, e-mail security and anti-spyware.

The all-in-one solution from Zone Labs is ZoneAlarm Internet Security Suite, which includes the basic and triple defense firewalls, anti-spyware, antivirus, identity theft and privacy protection, anti-phishing and spam blocker, e-mail security, instant messenger security, parental controls and protection for wireless PCs.

You can also buy the instant messenger security and parental controls separately from Zone Labs in the product IMsecure Pro.

These products from Zone Labs can give you peace of mind as they protect your computer from a variety of problems you don't want to have. Zone Labs can protect you from hackers, spam, viruses, identity theft and more. Stop these menaces before they get to your computer and your information, with a little help from Zone Labs.

Zone Labs is the trusted leader in Internet protection and personal firewall systems. More than 30 million computers worldwide are trusted to Zone Labs products. And it couldn't be easier to protect your computer from all of the various threats that are out there when one Zone Labs product can do it all for you.

The Zone Labs products are easy to install and use but still very powerful. They allow customers to protect themselves without a lot of effort or thought on their part. Zone Labs also allows more knowledgeable users to fine-tune the settings on their products to give them exactly what they need from the firewall and Internet protection package.

If you need technical help when working with any product from Zone Labs, you can find support online, via e-mail and through the ZoneAlarm Support Center. Zone Labs is there with you to help make your Internet systems work for you and protect your computer in the best way possible.

There's no better feeling than being able to get online and know that your computer is safe from viruses, hackers and identity thieves. Zone Labs can give you that kind of security.

--
Steve Williamson is the owner of Best Software Review, your source for reviews of the top software for your home and office. Shop smarter and run your home or business more efficiently with a little help from http://www.best-software-review.com.

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/notebook-and-wifi-standards.html http://www.articletrader.com/internet/security/notebook-and-wifi-standards.html Sun, 29 Jul 2007 00:00:00 -0500
The 802.11g Wi-Fi standard is the latest standard, which your notebook follows when you are online. The Wi-Fi alphabet spaghetti consists of protocols like 802.11, 802.15, 802.16, and 802.20. However, for most notebook users 802.11 would be sufficient with added `a`, `b`, or `g`.

There are protocols like `e`, `h`, `i`, and `n` that are waiting in the wings to make their entry. Nevertheless, as of now, 802.11g is the only protocol that one needs to think when it comes to wireless connectivity. The latest Wi-Fi standard is the 802.11g and offers connection speeds up to 54 Mbps in the 2.4 GHz radio bands, which is five times more than the previous standard 802.11b. It is more stable, more secure, and backward compatible.

Almost all notebooks that are manufactured today are 802.11g Wi-Fi standard ready. This standard is also designed to replace the older Wired Equivalent Privacy or WEP by specifying the Wi-Fi Protected Access or WPA. The WPA will function as an interim solution, until the next standard, the 802.11i network security standard is implemented with a new algorithm called Temporal Key Integrity Protocol, which shall be much more secure and reliable.

However, until the new standard is implemented, the 802.11g is to be followed. There are only two disadvantages with this notebook Wi-Fi standard, that firstly, since it is a new standard, it may not perform as promised; and secondly, with fast emerging latest technologies, it may become obsolete by newer standards before you have the time to benefit from it.

Few tips for a secure Wi-Fi experience:

1 - You should raise the level of your laptop settings. Raise the security settings of software applications like Microsoft Outlook and Internet Explorer. Update them frequently to ensure latest protection from hackers and viruses. You should keep the encryption feature always on to ensure safest browsing with Wi-Fi.

2 - Along with the software, you should also consider updating to better hardware. Hackers have always found 802.11a and 802.11b very easy to hack. However, 802.11g is harder to crack and you should consider upgrading your hardware to a `g` card. An 802.11g is backward compatible with IEEE 802.11b, thus 802.11g can leverage the widespread, international adoption of IEEE 802.11b in products from laptops to PDAs. A personal firewall, such as ZoneAlarm or BlackICE can significantly add up to the security level of your notebook.

3 - Whenever you are using your notebook at a Wi-Fi hotspot, make it a point not to send data. While you are surfing, do not type your credit-card number, expiration date, passwords, bank account numbers, etc. Sensitive data are the goldmines for hackers, and they will swipe your bank account before you can finish saying, ` I have been a victim of online identity theft!`

4 - Consider not staying online while working. If the risks outweigh the benefits, then it would be better to stay offline; at least until the new 802.11i standard is not implemented. Even then, the security can be breached, albeit with difficulty. If you do not need Wi-Fi to implement your work, then stay switched off. If you need the Wi-Fi just to send and receive files, then stay connected for only that period. Rest of the time, stay offline.

Precautions to take at a public Wi-Fi hotspot:

Whenever you are in public domain, you need to take precautions, as it is free for all. The Wi-Fi hotspots are available to any and every person, and anybody can be connected. Besides online thefts, there is also the risk of offline thefts.

While in a public hotspot, do not be so absorbed with your notebook, that you fail to notice the people around you. There are persons who are in the business of stealing notebooks, from public hotspots. And they do not operate as individuals but as a gang.

Also, while you are online at a public hotspot, follow simple rules like encrypting files before transferring or emailing them; making sure you are connected to a legitimate access point; and file sharing is turned off. Basic precautions like password protecting your notebook, updating your system regularly, and using anti-virus software should be strictly followed. For further online security, consider using a personal firewall, a virtual private network (VPN), and web-based email with secure http (https).

Having a good Wi-Fi experience directly translates into a satisfying Internet experience. With the above suggestions being implemented, you are guaranteed to have a pleasant online time with your notebook.

This article is under GNU FDL license and can be distributed without any previous authorization from the author. However the author's name and all the URLs (links) mentioned in the article and biography must be kept.


--
This article can also be accessed in portuguese language from the News Article section of page www.polomercantil.com.br/notebook.php

Roberto Sedycias works as IT consultant for www.PoloMercantil.com.br


Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/pdf-security-what-is-digital-rights-management.html http://www.articletrader.com/internet/security/pdf-security-what-is-digital-rights-management.html Tue, 24 Jul 2007 00:00:00 -0500
While many companies have claimed to have had an input into the file security solutions that we find ourselves using today, such as XrML for example, only Adobe have managed to lead with the sheer scale and reach to make their solution resonate and be considered the global standard. With the evolution of on-line retailing environments, the lack of barriers to entry, and other digital communication advancements; it is now more necessary than ever to ensure that digital rights management tackles copyright theft through adding complications and difficulties to the processes used to steal content. Indeed, it is widely acknowledged that DRM software can only stop copyright theft at some levels – for example, DRM cannot stop manual replication (writing your own copy) in the case of ebook copy prevention.

It is said that the primary functions of DRM security software are controlling copying/extraction, printing functionality management and changing after a subsequent save. Such functions are always going to needed where copyright is not surrendered upon receipt of the document. Watermarking – as a copy control and digital rights management solution – is often considered to be surrounded with some uncertainty. In the case of ebook copy prevention, for example, publishers are faced with making a decision where the implementation of watermarking can leave their customers having to sacrifice appearance and usability in return for prevention of black-market distribution. Although the value of this is disputed, we can at least agree that while advancements are under way, such as identifying the purchaser, the video, music and broadcast business do not appear to be moving away from watermarking in a hurry!

As electronic learning methods advance, Adobe have been careful to facilitate comment authoring in tandem with document security, to allow both collaboration and copyright implementation. This is something which is unlikely to have much value in commercial publishing, however Adobe would not want to allow any competitors to eat away at a sub-niche and innovate across the board at the same time.

The middle ground between practicality, reasonableness, and implementation of the rights that come along with copyright assets, can be best depicted by the situation where the 2000 publication of Lewis Carroll's Alice in Wonderland, which did not allow the book to be read aloud – a feature which is widely considered to be an advantage of PDF documents, and an assumed feature when purchasing a digital document. Some claim that such behaviour goes against accessibility initiatives, while others suggest that the necessity for document security, coupled with the associated disadvantages of market forces, mean that the decision is one which should be made at the free will of the copyright holder. Some find that the controls made available by innovators such as LockLizard – www.locklizard.com - suit them better.

--
Alice Pierce is a president of lock lizard. He writes about copy protection and digital rights management.

Source: http://www.articletrader.com ]]> http://www.articletrader.com/internet/security/basic-it-infrastructure-investments-that-cannot-be-ignored-for-an-acquired-new-business.html http://www.articletrader.com/internet/security/basic-it-infrastructure-investments-that-cannot-be-ignored-for-an-acquired-new-business.html Sun, 27 Jan 2008 00:00:00 -0600
In order to expand, most companies either grow organically or acquire new businesses. For newly acquired business, there will be a lot of groundwork need to be done to merge the acquired companies IT System to the purchaser company IT System. In IT Infrastructure areas, there are basic requirements that cannot be ignored especially if the new business is in another location or country. These requirements will assist in mitigating the risk of possible security threats from Internet such as trojans, viruses, and worms, hackers damaging business servers or worst unauthorized intrusion retrieving valuable data.

Basic IT Infrastructure investment includes:

a)Firewall

A proper firewall should have Packet filter, Stateful level protection, IPS, Anti-Spyware, Web Anti-Virus that acts as the first line of defense against any attacks, security threat from the Internet.

A Web-based firewall with easy secured configuration menu is preferred. Further, this is suitable for offices that are lack of dedicated local IT personnel. The HQ IT Experts can remotely assist in administering this firewall for the remote office. Remote administration should be via a secured HTTPS channel. Lookout for reputable firewalls that comes with built-in VPN, Web-based Application Filter (Proxy) Anti Virus and also Intrusion Protection.

b) Anti-Virus

To implement the first layer of anti-virus to protect the servers and PCs from harmful viruses, it will be advisable to setup a central Anti-Virus server in the HQ. This meant all acquired offices require are to install the Anti-Virus clients into their local servers and PCs. Management of the latest virus pattern file, scheduled scanning, and licence management will be centrally managed by HQ IT team using the central anti-virus Server.

Note: When your IT Infrastructure grows, it is better to place your servers in a proper Tier 3 or 4 Data Centre. These Data Centres often guarantees electrical and air-condition supply with a SLA agreement of 99.99%. If the HQ servers are not in a proper Data Centre, imagine a severe electrical outage may just cripple your main servers and also all your acquired companies and subsidiaries IT Systems.

c)E-Mail

Instead of investing ground up on an Industry standard communication software such as Lotus or Exchange E-Mail system, it will be advisable that the new acquired company also take advantage of your HQ E-Mail system. The acquired company only requires to install E-Mail clients and can start utilizing the e-mail for communication and data delivery (if required). The E-Mail system will also be administered centrally.

To mitigate risk further, HQ E-Mail system should be clustered for high-availability and comes with dual layer anti-virus systems, anti-spam and anti-relay mechanisms to mitigate risk of E-Mail viruses, spam and relay attacks.

d)Tape Backup System

To reduce the risk of not been able to recover data in the event of server or database failure, a proper tape backup should be implemented. It is recommended to use enterprise Backup Systems (e.g. CA, Veritas) software that comes with Open File Agent (allows to backup files that are currently still open), SQL Backup Agent (allows to backup database without shutting down the database). It will be prudent to conduct daily, weekly, monthly and yearly backups. Monthly and yearly backups should be kept off-site.

e) Telecommunication line

Option 1)

A WAN (Wide Area Network) link will provide a stable communication line given the provider will guarantee a minimum bandwidth. E-Mail replications, Business related application connections will be more predictable on a WAN line. As you have more subsidiaries and new acquired offices, you can leverage onyour numbers with your WAN provider for a better pricing and services. WAN links are costly but are stable and critical if your business relies on fast and reliable International connectivity.

Option 2)

Cost effective Internet lease line or broadband. This meant connection between the offices to HQ is via Internet. However, please note Internet connection is "best effort" where there is no guarantees of bandwidth or uptime. This is a cheaper solution that WAN.

For secure communication between the offices, I would recommend implementing VPN (Virtual Private Network) connections between these offices. This will facilitate encrypted communication between the offices.

These are basic measures that should be in place before allowing communications between these new offices and your HQ data servers. The impact is severe if security threats were to spread to your HQ and other offices from a new business via WAN or private lease lines.



--

Gabriel Ng is a professional IT Security Consultant, IT Auditor (CISSP) and author of http://www.comsectutorial.com This site is setup to provide information, recommendation on hacking prevention, controls to minimise security threats from viruses, trojans, spywares, hacking based real life experience while conducting security assessment and penetration tests.

Source: http://www.articletrader.com ]]>