http://www.corecom.com/html/bcrmag.html#oct06d
It’s Time For Enterprises To Take On DNS Security
BCR Magazine, October 2006

For some time, the Internet community has been developing -- and deploying -- measures to make DNS secure. In this BCR article, Dave Piscitello looks at why these services are important and how they can help enterprises mitigate several types of attacks.

http://www.corecom.com/external/livesecurity/rootkits101.htm
Rootkits 101: Rotten to the Core
Rootkits 101: Rotten to the Core

http://www.corecom.com/external/livesecurity/rootkits201.htm
Rootkits 201: Countermeasures and Defenses
WatchGuard LiveSecurity, 04 Dec 2006

In these LiveSecurity articles written for WatchGuard, Lisa Phifer explains what rootkits are, how they do their dirty work, and defensive strategies to detect and mitigate them. LiveSecurity subscribers are also invited to watch the accompanying pair of video demonstrations produced by WatchGuard's Corey Nachreiner and Scott Pinzon.

http://searchnetworking.com/tip/0,289483,sid7_gci1241358,00.html
Content filtering -- Taming the wild Webt
searchNetworking, January 30, 2007

Delivering safe, fast, transparent Web access that meets workforce needs has never been more challenging. In this security spotlight article, Lisa Phifer describes how content-filtering appliances can complement firewalls and web proxies, adding the muscle and features necessary to efficiently enforce web AUPs.

Wireless

http://www.wi-fiplanet.com/tutorials/article.php/3656661
Getting Phished: Why SSID Spoofing (Still) Matters
Wi-Fi Planet, January 29, 2007

The next time you connect to any WLAN, ask yourself: are you really certain the AP is legitimate? If not, you could be setting yourself up for a variety of nasty phishing attacks, with personal, professional and financial consequences. In this tutorial, Lisa Phifer describes how phony APs combine spoofed SSIDs with phishing and snarfing tools, and steps you can take to detect and avoid them.

http://searchmobilecomputing.com/tip/0,289483,sid40_gci1236097,00.html
Location-based services for your mobile
searchMobileComputing, December 21, 2006

A growing number of 3G phones and PDAs incorporate GPS chips that can be used to determine and map geographic location. As a result, carriers are finally getting serious about Location-Based Service applications for mobile devices carried by individuals and businesses. In this Mobile Innovator column, Lisa Phifer describes several readily-available LBS offerings, including Verizon's VZ Navigator.

2006 Managed Security Service Provider Survey

http://www.isp-planet.com/technology/mssp/2006/mssp1a.html
MSSP Survey: Introduction
ISP-Planet, December 20, 2006

From small offices with no IT staff to over-burdened enterprises, many companies now implement their security policy by partnering with a Managed Security Service Provider. Doing so could save time and money while yielding more effective security -- IF you choose the right partner. In ISP-Planet's biennial survey, Lisa Phifer compares services offered by fifteen MSSPs.

http://www.isp-planet.com/technology/mssp/2006/mssp2a.html
MSSP Survey: Managed Firewall Services
ISP-Planet, December 20, 2006

This year's MSSP survey finds more firewall features than ever before ­- but, as we learned, it's important to understand what's included and what's extra when comparing managed firewall services.

http://www.isp-planet.com/technology/mssp/2006/mssp3a.html
MSSP Survey: Managed Intrusion Detection and Prevention Services
ISP-Planet, December 21, 2006

In this year's survey, we saw much greater emphasis on Intrusion Prevention (vs. Detection), with most providers combining multiple IDS/IPS platforms and expert analysis to battle network threats.

http://www.isp-planet.com/technology/mssp/2006/mssp4a.html
MSSP Survey: Managed Virtual Private Networks
ISP-Planet, December 21, 2006

Virtual private network offerings are becoming increasingly broad and mature. Although every participating provider offers both site-to-site and remote access VPN services, significant differences can still be found by comparing the details.

http://www.isp-planet.com/technology/mssp/2006/mssp5a.html
MSSP Survey: Managed Anti-Virus and Anti-Spyware
ISP-Planet, December 22, 2006

Our survey found network anti-virus being combined with anti-spyware and anti-spam functions to offer more proactive, multi-layered malware defenses, accompanied by increasingly sophisticated provider threat monitoring and reporting.

http://www.isp-planet.com/technology/mssp/2006/mssp6a.html
MSSP Survey: Managed Anti-Spam and Content Filtering
ISP-Planet, December 22, 2006

When it comes to spam and web content filtering, the features and packaging that we encountered were so varied that we recommended consumers look beyond service names and categories to find a managed security offering that matches their business needs.

Dave Piscitello's Blog

http://hhi.corecom.com/arc20070101.htm#BlogID584
Changing MAC addresses
Dave's Blog, January 19, 2007

A MAC address is a 48-bit unique identifier for a LAN or WLAN adapter. Many reasons exist to change a MAC address. Some are evil and some good. Dave blogs about situations where you might want to change your MAC address and identifies some software that you might find helpful.

http://hhi.corecom.com/arc20070101.htm#BlogID580
Testing Firewalls for IPv6 and EDNS0 Support
Dave's Blog, January 5, 2007

The ICANN SSAC committee is collaborating with the DNS Root Server System Advisory Committee (RSSAC) to study the matter of including the IPv6 addresses at the root level of the DNS. This involves adding "AAAA" resource records to what is known as the hints file. Adding AAAA RRs also affects an initializing or "priming" message exchange many DNS resolvers perform to verify their hints file is accurate; in particular, it increases the UDP-encapsulated responses from root name servers to 587 bytes. Dave explains how ICANN's advisory committees have solicited help from firewall users and vendors to test whether firewalls used to protect resolvers in ISP and enterprise networks will block responses from name servers.

http://hhi.corecom.com/arc20061201.htm#BlogID576
Tops on the Security Blessings List
Dave's Blog, December 23, 2006

In this blog post, Dave closed out the year by offering a short list of what he considers to be security blessings for 2006.

-----------------------------------------------------------------

Cornerstone is an electronic publication of Core Competence, Inc. If you do not wish to receive future issues, please reply to this message or send email to cornerstone@corecom.com with the word "remove" in the subject line or message body.

For additional information about Core Competence, visit our web site http://www.corecom.com
For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
Send us a subscribe message to receive future issues of CornerStone.