inappropriate used of domain John Abetong 5/12/2007 4:46:01 AM How can I prevent and ensure the inappropriate used of domain from the remote users and attackers.

Re: inappropriate used of domain "Kevin D. Goodknecht Sr. [MVP]" <admin[ at ]nospam.WFTX.US> 5/12/2007 3:21:11 PM Read inline please. In news:7E8C69AE-90C9-400A-A146-7C8AAE0569E7[ at ]microsoft.com, John Abetong <JohnAbetong[ at ]discussions.microsoft.com> typed: [Quoted Text] > How can I prevent and ensure the inappropriate used of domain from > the remote users and attackers. That's kind of like asking how can I keep my kids out of trouble and safe? The only 100% sure way to do it is to lock them in a room without Windows, but we all know that isn't possible. But you can install firewalls, get a a good Anti Virus, anti-spam, anti-spyware solution applied at mutiple levels. Starting with a good proxy server that has anti-virus scanning at the Data stream level so that viruses and other vulnerablities never make it to the end user. -- Best regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps Send IM: http://www.icq.com/people/webmsg.php?to=296095728 =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ http://message.wftx.us/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx ===================================

RE: inappropriate used of domain Ryan Hanisco 5/13/2007 2:44:00 AM John, I do agree with Kevin, though there are some things you can do to help protect DNS. 1. Specify what servers can do zone transfers and to where. If you turn zone transfers on and you don't specify the partners, ANYON can pull your entire DNS list. Thsi means that hackers get a shortcut to know what to hit. Granted they'll get it eventually through other means, but this makes them work for it. 2. Use AD Integrated DNS on the inside of your network and standard DNS on the outside. You may even consider an appliance for the outside. Yes windows can be secure, but you do have to know what you're doing and you have to harden the machine. 3. On the inside of your network sign communications for dynamic updates and transfers. 4. Make sure you really understand DNS and don't be afraid to ask questions. Most AD problems are DNS problems and understanding DNS is the key. -- Ryan Hanisco MCSE, MCTS: SQL 2005, Project+ Chicago, IL "John Abetong" wrote: [Quoted Text] > How can I prevent and ensure the inappropriate used of domain from the remote > users and attackers.

Re: inappropriate used of domain "Herb Martin" <news[ at ]learnquick.com> 5/13/2007 9:08:33 PM "John Abetong" <JohnAbetong[ at ]discussions.microsoft.com> wrote in message news:7E8C69AE-90C9-400A-A146-7C8AAE0569E7[ at ]microsoft.com... [Quoted Text] > How can I prevent and ensure the inappropriate used of domain from the > remote > users and attackers. Disconnect network and all possibility of remote access permanently. You can only take steps to REDUCE the likelyhood of unauthorized access. Generally this includes things like fixing all security problems with both the OS and other services and programs. (Security fixes). Running AV software, anti-hijacking and vary anti-malware protections. Checking the system regularly with some tool (e.g., MBSA) to make sure most obvious threats have been discouraged. Using strong passwords and both learning and using safe practices (like never running "unknown code" or using your internal passwords externally. Making sure all sensitive data is properly secured (permissions etc.) Making sure all sensitive information is transmitted securely (e.g., HTTPS, IPSec, etc.) Using strong security and passwords wherever possible, both for logon and for things like your VPN or Wireless access points. And much more. -- Herb Martin, MCSE, MVP http://www.LearnQuick.Com (phone on web site)