Cornerstone Issue 63: December 21, 2004
Welcome to Issue 63 of Cornerstone, a subscription-only electronic
newsletter issued periodically by Core Competence.
Cornerstone reports on a wide range of networking topics and
activities involving Core Competence. A brief abstract explains
what you will find if you choose to visit each URL.
http://searchmobilecomputing.com/tip/0,289483,sid40_gci1034894,00.html
Unauthorized devices pose a threat to every wireless LAN. In fact,
"rogue" access points are so common that the need to defeat them has
created a fertile market for wireless intrusion detection and prevention
systems. In this article, Lisa describes the benefits of WIDS/WIPS and
evolving features that move far beyond unknown device detection.
http://searchmobilecomputing.com/tip/1,289483,sid40_gci1026652,00.html
Today, many businesses are employing one of the two versions of the
Wi-Fi Protected Access, WPA or WPA2. Some, however, are still enduring
Wired Equivalent Privacy (WEP), under the false impression that to run
WPA/WPA2, their network must have AAA infrastructure. In this WLAN
Advisor column, Lisa Phifer considers SMB/SOHO options for using
WPA/WPA2 safely without in-house AAA infrastructure.
http://www.corecom.com/external/livesecurity/spyware2.htm
SMBs can implement an effective anti-spyware program without making a
large-enterprise-sized investment. By adopting programs and practices
recommended in Dave Piscitello's latest column, and carefully selecting
legitimate anti-spyware helpware, you can mount an effective defense
against this serious problem.
http://www.corecom.com/external/livesecurity/spyware1.htm
Until recently, many have dismissed spyware as less important to
contend with than viruses and spam. In this LiveSecurity column,
Dave Piscitello explains why he believes that spyware poses an even
greater business threat than viruses and spam.
http://www.corecom.com/external/livesecurity/smartphone.htm
Whether based on Symbian, Palm, or Windows CE, smartphones are ripe for
compromise. Many risks are caused by lack of awareness, disregard for
consequences, and failure to apply common best practices to smartphones.
Although lighter-weight operating systems and wireless technologies do
have vulnerabilities, Lisa Phifer recommends how to raise the bar in
this LiveSecurity column.
http://www.isp-planet.com/technology/2004/mssp1.html
Many companies, large and small, have outsourced certain network security
tasks to third-party providers. Today, there are hundreds of Managed
Security Service Providers (MSSPs), with offerings that range from managed
firewall and VPN services to managed IDS/IPS and spam/virus filtering.
Here, Lisa Phifer introduces this year's ISP-Planet survey of security
service providers and offerings.
http://hhi.corecom.com/spywareworstnightmare.htm
Sometimes called adware, nastyware, crapware, scumware, and worse,
Spyware is aggravating and intrusive. In this introductory overview,
Dave Piscitello what Spyware is, why you should care about it, and
anti-spyware techniques for removing it.
http://hhi.corecom.com/windowsxpresources.htm
What Dave Piscitello started as a simple effort to gather together his
own Windows XP security articles blossomed into a general collection
of articles and expert advice that may be useful to those who install
and manage Windows XP systems.
http://loop.interop.com/comments.php?id=234_0_1_0_C1
Reporting from NGN 2004 in Boston, Dave Piscitello relates one economic
model presented during an NGN security session that makes it fairly
obvious why spam is a profitable (though not admirable) business.
http://loop.interop.com/comments.php?id=224_0_1_0_C6
In this LOOP post, Dave Piscitello reviews Microsoft's own Top 10 Reasons
to deploy Windows XP Service Pack 2. Is XP SP2 more secure, and are ten
reasons enough to upgrade?
-----------------------------------------------------------------
Cornerstone is an electronic publication of Core Competence, Inc.
If you do not wish to receive future issues, please reply to this
message or send email to
cornerstone@corecom.com
with the word "remove" in the subject line or message body.
For additional information about Core Competence, visit our web site http://www.corecom.com
Wireless LAN Security
Beyond wireless intrusion detection
searchMobileComputing, December 16, 2004
Using WPA without enterprise AAA
searchMobileComputing, November 17, 2004
WatchGuard LiveSecurity Columns
Spyware Remediation: Not Mission Impossible
WatchGuard LiveSecurity, October 8, 2004
Spyware: Time to Get Smart
WatchGuard LiveSecurity, October 1, 2004
Smartphone (In)Security
WatchGuard LiveSecurity, September 16, 2004
Managed Security Services
ISP-Planet's 2004 Managed Security Service Provider Survey
ISP-Planet, December 21, 2004
On-Line Publications by CoreCom
Spyware: Your Worst Nightmare?
Dave's Blog, Fall 2004
Windows XP Security and Performance Resources
Dave's Blog, Fall 2004
MediaLive LOOP Columns
Why do spammers spam?
Comdex LOOP, November 3, 2004
Are ten reasons enough to upgrade to Windows XP Service Pack 2?
Comdex LOOP, October 11, 2004
For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
Send us a subscribe message to receive future issues of CornerStone.