Security UPDATE--Application and Host IDS Tools--March 21, 2007

Firekeeper is an extension for the Firefox application that works similarly to Snort. OSSEC Host IDS (HIDS) can detect known rootkits and keep tabs on important system files. Learn about these IDSs and other security news and resources.

10 Min Read
ITPro Today logo in a gray background | ITPro Today

PLEASE VISIT OUR SPONSORS, WHO BRING YOU SECURITY UPDATE FOR FREE:

Extend your MSCS cluster offsite

http://www.windowsitpro.com/go/whitepaper/caxosoft/mscscluster/?code=SECtop0321

Free White Paper: Address the Insider Threat

http://findtechinfo.com/penton/nl/250

Automatically fix links when you move files!

http://list.windowsitpro.com/t?ctl=44A7B:21AD1

CONTENTS

===========================================

===============================

Extend your MSCS cluster offsite MSCS clustering can be a good option for local high availability - but it doesn't provide complete protection from unplanned downtime. Download this free white paper and learn how extending your MSCS cluster offsite with a high availability solution with CDP technology can protect from data corruption, including damage done by viruses or human error. http://www.windowsitpro.com/go/whitepaper/caxosoft/mscscluster/?code=SECtop0321 === IN FOCUS: Application and Host IDS Tools

=========

===================================

Free White Paper: Address the Insider Threat Learn how to develop a comprehensive management system that virtually eliminates the risk of an insider threat. Co-authored by NetIQ and Dr. Eric Cole, this informative white paper identifies the key business processes that must be secured and ready to build a solution to contain the insider threat. http://findtechinfo.com/penton/nl/250 === SECURITY NEWS AND FEATURES

=======================

Windows 2003 SP2 Ready for Download Windows Server 2003 Service Pack 2 adds new features and tools, including WPA2 and improvements to IPsec. Be absolutely certain that you review the installation requirements and instructions. http://www.windowsitpro.com/Article/ArticleID/95442 EldoS Provides Raw Disk Access for Vista and XP Security component maker EldoS announced the availability of RawDisk, a raw disk access driver for Windows Vista and Windows XP systems. Fortunately, the company won't make the product publicly available. http://www.windowsitpro.com/Article/ArticleID/95477 New Coating System Contains Wireless Signals EM-SEC Technologies announced the successful testing of its new liquid coating product designed to contain Wi-Fi signals. The EM-SEC Coating System also prevents leakage of signals from several other types of electronic devices. http://www.windowsitpro.com/Article/ArticleID/95468 Recent Security Vulnerabilities If you subscribe to this newsletter, you also receive Security Alerts, which inform you about recently discovered security vulnerabilities. You can also find information about these discoveries at http://www.windowsitpro.com/departments/departmentid/752/752.html === SPONSOR: LinkTek

=================================

====================================

SECURITY MATTERS BLOG: Helios Lite--Rootkit Detector by Mark Joseph Edwards, http://www.windowsitpro.com/securitymatters Can you ever have enough rootkit detectors? MIEL-Labs just released Helios Lite. Read more about it and get a link to download a copy in this blog article on our Web site! http://www.windowsitpro.com/Article/ArticleID/95485 FAQ: Vista BitLocker Safety by John Savill, http://www.windowsitpro.com/windowsnt20002003faq Q: Does Windows Vista BitLocker Drive Encryption have a security vulnerability? Find the answer at http://www.windowsitpro.com/Article/ArticleID/95453 FROM THE FORUM: "Audit Privilege Use" Events A forum participant wonders what events will be created if he selects Audit Privilege Use--Failures in the audit policy. All he can find are the three IDs that appear for successes: 576, 578, and 579. He's trying to determine if it's worth having the failures on in the audit policy. To join the discussion, go to http://forums.windowsitpro.com/web/forum/messageview.aspx?catid=42&threadid=84591&enterthread=y TELL US ABOUT THE PRODUCTS YOU LOVE! What products are you using that save you time or make your workload a little lighter? What hot product discoveries have you made that other IT pros need to know about? Let the world know about your experiences in Windows IT Pro's monthly What's Hot department. If we publish your story in What's Hot, we'll send you a Best Buy gift card! Send information about your favorite product and how it has helped you to [email protected]. SHARE YOUR SECURITY TIPS AND GET $100 Share your security-related tips, comments, or problems and solutions in Security Pro VIP's Reader to Reader column. Email your contributions to [email protected]. If we print your submission, you'll get $100. We edit submissions for style, grammar, and length. === PRODUCTS

=========================================

by Renee Munshi, [email protected] Encrypt Sensitive Files Before They Leave the Office Spotted Dingo announced GuardTheft, an Internet software application that lets users encrypt sensitive documents before taking them out of the office on removable media or before storing them on a server for transmission. Users can then use GuardTheft's Internet "black box" to decrypt the files when the users get to their destination and want to work with the files. GuardTheft can encrypt AutoCAD, ArcInfo, DNG, JPG, GIF, BMP, TIFF, MDI, PDF, DOC, TXT, PPT, and XLS files. The software uses the RC2 (128-bit) encryption algorithm and lets users make their key set unique by modifying the key set's 16 keys. A one-week free trial of GuardTheft is available. For more information, go to http://www.spotteddingo.com === RESOURCES AND EVENTS

=============================

=============================

Learn the 7 critical email problems to watch for and how to prevent them. Find out how to better manage your email environment, including disaster recovery, compliance, data storage, security, and wireless devices. Download this free white paper today. http://www.windowsitpro.com/go/whitepapers/messageone/emailcrisis/?code=0319featwp === ANNOUNCEMENTS

====================================

===========================================================

Security UDPATE is brought to you by the Windows IT Pro Web site's Security page (first URL below) and Security Pro VIP (second URL below).

http://www.windowsitpro.com/windowssecurity

http://www.securityprovip.com

Subscribe to Security UPDATE at

http://www.windowsitpro.com/Email/Index.cfm?action=archive

Unsubscribe by clicking

http://list.windowsitpro.com/u?id=%%SUBSCRIBER_ID_TAG%%

Be sure to add [email protected] to your antispam software's list of allowed senders.

To contact us:

About Security UPDATE content -- [email protected]

About technical questions -- http://www.windowsitpro.com/forums

About your product news -- [email protected]

About your subscription -- [email protected]

About sponsoring Security UPDATE -- [email protected]

View the Windows IT Pro privacy policy at

http://www.windowsitpro.com/AboutUs/Index.cfm?action=privacy

Windows IT Pro, a division of Penton Media, Inc.

221 East 29th Street, Loveland, CO 80538

Attention: Customer Service Department

Copyright 2007, Penton Media, Inc. All rights reserved.

Read more about:

ITPro Today
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like