Close
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Menu
Search
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Latest News
    • Networking

    Heading Off Hack Attacks

    By
    Dennis Fisher
    -
    February 12, 2001
    Share
    Facebook
    Twitter
    Linkedin

      While many security products such as intrusion detection and anti-virus technology concentrate on identifying and alerting administrators to attacks after theyve taken place, several companies are beginning to focus on preventing the conditions that invite such attacks.

      Two companies in particular, WatchGuard Technologies Inc. and Entercept Security Technologies, have taken novel yet different approaches to the problem.

      WatchGuard, a Seattle startup, this week will announce its Windows NT-based ServerLock technology, which defines two modes for each server: operational and administrative.

      When the server is in operational mode—that is, transmitting and receiving traffic—all the machines administrative features and functions are unavailable.

      “This goes a long way toward making sure that nothing gets touched on your Web site,” said Chip Moore, a security analyst at DataSafe Inc., of Boston, which has been testing ServerLock for three months. “Its much more effective than simple intrusion detection.”

      To perform tasks such as updating or reinstalling software or changing configuration settings or user preferences, the administrator must enter a password and change to administrative mode.

      This change effectively takes the server offline and enables the administrator to perform maintenance without exposing the machine.

      Not only does this protect servers from outside attacks, it also prevents administrative errors—such as the one that brought down Microsoft Corp.s Domain Name System servers a few weeks ago—from crippling a companys network.

      “This is designed to protect the core of the network against people with administrative privileges doing bad things,” said Jack Danahy, vice president and general manager of WatchGuard. “We assume a hacker will be able to get root privileges, and then we go from there.”

      Entercepts Entercept 2.0 sits at the kernel level and intercepts operating-system-level calls, compares them with a database of known attack signatures and then prevents the execution of the operation if it is found to be suspect.

      Entercept can also protect servers against unknown attacks through much the same method. For example, if an attacker tries a new type of buffer overflow against a machine running Entercept, the software will look for a series of individual calls that make up all buffer overflow attacks, regardless of the actual hole they exploit.

      “The idea is to stop whole classes of attacks, not just react to each individual exploit,” said Robin Matlock, senior vice president at Entercept, in San Jose, Calif.

      Avatar
      Dennis Fisher

      MOST POPULAR ARTICLES

      Android

      Samsung Galaxy XCover Pro: Durability for Tough...

      Chris Preimesberger - December 5, 2020 0
      Have you ever dropped your phone, winced and felt the pain as it hit the sidewalk? Either the screen splintered like a windshield being...
      Read more
      Cloud

      Why Data Security Will Face Even Harsher...

      Chris Preimesberger - December 1, 2020 0
      Who would know more about details of the hacking process than an actual former career hacker? And who wants to understand all they can...
      Read more
      Cybersecurity

      How Veritas Is Shining a Light Into...

      eWEEK EDITORS - September 25, 2020 0
      Protecting data has always been one of the most important tasks in all of IT, yet as more companies become data companies at the...
      Read more
      Big Data and Analytics

      How NVIDIA A100 Station Brings Data Center...

      Zeus Kerravala - November 18, 2020 0
      There’s little debate that graphics processor unit manufacturer NVIDIA is the de facto standard when it comes to providing silicon to power machine learning...
      Read more
      Apple

      Why iPhone 12 Pro Makes Sense for...

      Wayne Rash - November 26, 2020 0
      If you’ve been watching the Apple commercials for the past three weeks, you already know what the company thinks will happen if you buy...
      Read more
      eWeek


      Contact Us | About | Sitemap

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Property of TechnologyAdvice.
      Terms of Service | Privacy Notice | Advertise | California - Do Not Sell My Information

      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×