User Tools

Site Tools


links:security

Security Links

SSL / TLS

OpenSSL

Test SMTP-over-SSL:

openssl s_client -verify 3 -showcerts -connect host.domain.net:3525

X509 Certificates

Publicly Signed SSL certificates

Security

SSH

Secure FTP Overview

  • FTP is insecure: both the control-channel (login, dir list, get/put cmds) and the data-channel (file upload/download) is clear-text
  • There are 3 “Secure FTP” versions (overview):
    • FTPS = FTP over SSL
      • Explicit FTPS = FTPES (negotiates AUTH)
        The CCC (Clear Command Channel) command revert the control-channel back to cleartext to allow NAT-routers to snoop the data-channels ports.
      • Implicit FTPS (deprecated)
    • SFTP = SSH-FTP (is a SSH native file-transfer protocol, like SCP)

SFTP/SCP

Rootkit

Token

Encryption Apps

Secure Editor

VPN tunneling

IPsec

ID in phase 1 = authentication of the remote VPN gateway:
  ID_IPV4_ADDR/ID_FQDN/ID_USER_FQDN/ID_DER_ASN1_DN
ID used in phase 2 = proxy id = retrieved from the pre-configured policy =
  ID_IPV4-ADDR/ID_IPV4_SUBNET/ID_IPV4_RANGE
IPsec overview:
- IKE phase 1: establish ISAKMP-SA (used to encrypt IKE phase-2)
- IKE phase 2: establish IPsec-SA (used to encrypt IPsec ESP)
- IPsec ESP tunneling

IKE phase 1:
- ISAKMP 
- match local/remote IKE ID (IP/FQDN/U-FQDN)
- negotiate proposals with elements:
  * d

OpenVPN

IPsec clients

Open-Source IPsec clients

IPsec info

Linux Security

  • picture from SNORT that shows traffic flow through Linux-kernel and netfilter (iptables):


Secure Timestamp

Fortigate

Tokens

Aladdin SafeWord

Firewall

Juniper Netscreen ScreenOS

SSG-140

SSG documentation

WebSense on Juniper

Log Analyzer

Anti-Virus

/var/www/john.de-graaff.net/wiki/data/pages/links/security.txt · Last modified: 2016/02/19 10:46 by jdg