Security and Redesign of a Network - Essay Example

Security Analysis and Redesign of a Network Purpose of this policy Technology has advanced and facilitated internet business. Entrepreneurs and business owner has welcomed the technology change and advanced their business involvement. Internet come with disadvantages and security lapses so has to be made secured for businesses to enjoy its full benefits. In the case of A2Z information security is essential that is why users’ password has to be properly protected. Below this is all the information provided for network setup and statistics about the company’s current system Official XYZ Network Diagram Below is the current network diagram of XYZ prior to merger with ABC. All servers are meant to be Windows 2003 based. XYZ utilizes a private IP internally of 192.168.x.x.   Below are the outcomes of the NMAP scan carried out as part of the consulting conformity with infosecwizards? Results of NMAP Scan Starting Nmap 5.00 at 2013-06-24 23:12 UTC. Fascinating ports on XYZ Domain Controller at 192.168.0.1: 997 filtered ports Port State Service Product Version Extra info 135 tcp open msrpc     139 tcp open netbios-ssn     427 tcp open svrloc     445 tcp open microsoft-ds     Service Information: Operating System: Microsoft Windows 2003 Server or XP Service Park 2. Interesting ports on XYZ Invite Design at domain 192.168.0.2: Not indicated: 997 filtered ports Port State Service Product Version Extra info 135 tcp open msrpc     139 tcp open netbios-ssn     427 tcp open svrloc     445 tcp open microsoft-ds     Service Information: Operating System: Microsoft Windows 2003 Server or XP Service Park 2. Interesting ports on XYZ Invite Design at domain 192.168.0.3: Not indicated: 997 filtered ports Port State Service Product Version Extra info 135 tcp open msrpc     139 tcp open netbios-ssn     427 tcp open svrloc     445 tcp open microsoft-ds     Service Info: OS: Microsoft Windows 2003 Server or XP SP2: Interesting ports on XYZ printing at domain192.168.0.4: Port State Service Product Version Extra info 135 tcp open msrpc     139 tcp open netbios-ssn     427 tcp open svrloc     Service Information: Operating System: Microsoft Windows 2003 Server or XP Service Park 2. Interesting ports on XYZ Invite Design at domain 192.168.0.5: Port State Service Product Version Extra info 135 tcp open msrpc     139 tcp open netbios-ssn     427 tcp open svrloc     1025 tcp open NFS-or-IIS     Service Information: Operating System: Microsoft Windows 2003 Server or XP Service Park 2. Interesting ports on XYZ Invite Design at domain 192.168.0.6: The 1656 ports screened but not displayed below are in state: closed Port State Service Product Version Extra info 22 tcp open ssh     80 tcp open Apache     111 tcp open rpcbind     6000 tcp open X11     32771 tcp open sometimes-rpc5     Service Information: Operating System: Linux 2.5.25 - 2.6.3 or Gentoo 1.2 Linux 2.4.19 rc1-rc7. Interesting ports on XYZ Invite Design at domain 192.168.0.6: Nmap done: 6 IP address (6 hosts up) scanned in 64.27 seconds. Quantitative Analysis Ranking of Assets  This is the analysis of the assets required to implement the merger of ABC to XYZ to get A2Z. Routers Firewalls VPN concentrator IDS sensor Servers Workstations Printers Redesign of network. The redesign incorporate additional components to existing network to incorporate ABC specifications and implement design. User password strengths Password strengths are essential in security matters. Users’ password must be encrypted so as to prevent unauthorized entries to the system (Stewart, 2010). The Public Key Infrastructure, Hashing and Digital Signatures, Cryptography: Public Key Encryption and Cryptology assist in the implementation of password protection.   5f4dcc3b5aa765d61d8327deb882cf99 MD5: password 200ceb26807d6bf99fd6f4f0d1ca54d4 MD5: administrator 391d878fd5822858f49ddc3e891ad4b9 NTLM: a2z a2345375a47a92754e2505132aca194b NTLM: windows Web Server Hardening Procedure IIS  Set up an NTFS drive applicable for the IIS application and data. If likely, do not tolerate IUSER or whatever the unidentified username access to any of the available drives. If the relevance runs into any problems due the anonymous user does not have admission to programs on the available drive(s), then apply FileMon from Sysinternals to test which file it cannot access and attempt working around it by relocating the program to the IIS drive. If that is not possible, then permit IUSER access just to that file. Set the NTFS rights on the drive as follows: Developers = Full; IUSER = execute and read only; System and admin = Full (Weaver, Weaver, & Farwood, 2013). Apply a software firewall to ensure that none of the users but only the developers, have right of entry to any other port on the IIS machine besides port 80. Apply the Microsoft applications for locking down the machine: and UrlScan and IIS Lockdown Enable logging Utilizing IIS. Apart from the IIS logging, if necessary, use logon applications from the firewall as well. Shift the logs from the default position, and ensure back up. Set up duplication for the log location so that a duplicate is always accessible in a second location. Allow Windows auditing on the machine, since there is never sufficient data when trying to backtrack any attackers movements. It is even likely to have a script run to check for any distrustful activity via the audit logs, and then send an account to an administrator. Now this could appear a bit extreme, but if security is actually significant in your organization, this sort of action is an excellent practice. Set up auditing to account any failed account log in attempts. Plus, same as the IIS logs, alter the default location to a different location, and make sure that the company have a backing and a replicated copy (Weaver, Weaver, & Farwood, 2013). On a customary basis, go through as a lot of security articles from various sources as the company can. It is at all times better that company appreciate as much as possible about IIS and universal security practices and not just stick to one approach. Sign up to a posting list for IIS bugs and updated in reading them and applying necessary adjustment. One such list is Advisories and X-Force Alerts from Internet Security Systems. Lastly, ensure that the company frequently run Windows Update and confirm that the patches really get deployed. Web Server Hardening Procedure Apache  The following steps are carried out to harden Apache. Disable Apache signature and/or banner Trace the HTTP request to echo information received Remove PHP scripts that produce or print information info utilizing phpinfor() Disable directory indexing Disable WebDave Generate a chooted Apache environment Enable php basedir Web stats and apply Google Additional steps incase of MYSQL involvement would involve file permission boosting (Combee, 2001). Policy A policy is classically a document that outlines specific needs or rules that must be accomplished. In the information and network security realm, policies are frequently point-specific, covering a solitary area. For instance, an Acceptable Use policy would wrap the rules and regulations for suitable use of the computing facilities. Template Section 1: security issues introduced Section 2: role and responsibilities of stakeholders Section 3: Policy directives Section 4: Auditing, Enforcement, Reporting Section 5: references of bodies enforcing policy a Section 6: control and maintenance Security, Risk and Compliance Security risk and compliance appraisals are undertaken in agreement with day-to-day information security application of the Company. This may comprise input from CSD where requirements influence centrally managed practices and/or in an advisory capability. Activities in this area comprise but are not limited to: •Response to security occurrences •Third party and outside party threat assessments •Information security check ups for new and on-going projects •Review of information security managements •Review of technical requirements correlated to information security. References Combee, B. (2001). Palm OS Web application developers guide: Developing and delivering PQAs with Web clipping. Rockland, Mass: Syngress Media. Weaver, R., Weaver, D., & Farwood, D. (2013). Guide to network defense and countermeasures. Boston, Mass: Course Technology, Cengage Learning. Stewart, J. M. (2010). Network security firewalls & VPNs. Mississauga, Ont: Jones & Bartlett Learning. Read More