[ISN] Security UPDATE -- Copying Files Securely Between Systems -- October 12, 2005

InfoSec News isn at c4i.org
Thu Oct 13 00:02:38 EDT 2005


====================

This email newsletter comes to you free and is supported by the 
following advertisers, which offer products and services in which 
you might be interested. Please take a moment to visit these 
advertisers' Web sites and show your support for Security UPDATE. 

CDW. The Technology You Need When You Need It.
   http://list.windowsitpro.com/t?ctl=1619A:4FB69 

Speed up your systems--try Diskeeper 9 free
   http://list.windowsitpro.com/t?ctl=1617B:4FB69 

====================

1. In Focus: Copying Files Securely Between Systems

2. Security News and Features
   - Recent Security Vulnerabilities
   - Microsoft Releases 9 Security Bulletins in October
   - Microsoft Announces New Products and New Consortium
   - Microsoft Brings Antimalware Tech to Corporations
   - Symantec to Acquire BindView
   - 10 Network Security Assessment Tools You Can't Live Without

3. Security Toolkit
   - Security Matters Blog
   - FAQ
   - Security Forum Featured Thread

4. New and Improved
   - Freeze Workstation Configurations

====================

==== Sponsor: CDW ====

CDW. The Technology You Need When You Need It.
   It takes a lot to keep up with today's business.
Starting with today's technology.
Our account managers and product specialists can get you quick 
answers to any questions you might have. 
So visit us online and find out first hand how we make it 
happen. Every order, every visit, every time.
No matter what you need in technology, you can count on CDW 
for the right technology, right away.
   http://list.windowsitpro.com/t?ctl=1619A:4FB69 

====================

==== 1. In Focus: Copying Files Securely Between Systems
   by Mark Joseph Edwards, News Editor, mark at ntsecurity / net

If you need to copy files from one system to another over an 
unprotected network, you can do it in a few ways. For example, you can 
employ the RRAS component that comes with Windows Server 2003 and 
Windows 2000 Server to establish a VPN that uses PPTP; you can use 
Microsoft IIS and Secure Sockets Layer (SSL) connections along with a 
custom Web interface; or you can use Secure Shell (SSH). There are 
other ways to accomplish this task, but these are probably the most 
common solutions. 

If you're interested in setting up RRAS and PPTP, you can find 
instructions in the Microsoft article "Step-by-Step Guide for Setting 
Up a PPTP-based Site-to-Site VPN Connection in a Test Lab" (URL below). 
This is a good solution, especially if you want to use the VPN for 
other tasks. 
   http://list.windowsitpro.com/t?ctl=16179:4FB69

Using IIS and SSL is simple enough, but it does require you to design a 
Web interface that meets your needs. For example, designing for 
downloading files is easy enough, but you'll need a script or ActiveX 
control for uploading files. This method also requires that you expose 
the IIS system to some extent, which you might not want to do. 

The third method, using an SSH server, might be a better solution. SSH 
servers provide encrypted transports between clients and servers by 
using a variety of encryption methods, including Triple DES (3DES), 
Blowfish, CAST (named after its developers Carlisle Adams and Stafford 
Tavares), Advanced Encryption Standard (AES), and possibly others, 
depending on the software you use. Another benefit is that SSH can use 
public keys instead of passwords to authenticate a session. Plus, SSH 
servers offer cross-platform support--versions are available for just 
about every popular OS, including Linux and BSD, as well as Sun 
Microsystems and Apple platforms. 

By using SSH, you can not only copy files securely, you can also open a 
secure Telnet session (using a special shell client) to a remote 
server, which might come in handy for remote administration. In 
addition, you can tunnel unencrypted services over SSH connections. For 
example, by using port forwarding, you can run SQL traffic, POP3 
traffic, and many other types of service traffic over SSH connections. 

Several commercial and open-source SSH servers are available for 
Windows. If you want a robust commercial solution, check out the 
products at SSH Communications Security (at the first URL below) or 
AttachmateWRQ (at the second URL below). If you want an open-source 
solution, consider OpenSSH for Windows (at the third URL below) or 
freeSSHd (at the fourth URL below). Both open-source solutions can run 
as a system service; freeSSHd offers a simple GUI interface, OpenSSH 
doesn't.
   http://list.windowsitpro.com/t?ctl=16190:4FB69
   http://list.windowsitpro.com/t?ctl=16193:4FB69
   http://list.windowsitpro.com/t?ctl=16197:4FB69
   http://list.windowsitpro.com/t?ctl=1619C:4FB69

If you run Windows 2003, a step-by-step tutorial is available to help 
you install OpenSSH for Windows. "Installing OpenSSH for Windows 2003 
Server - How to get it working," by Steve Pillinger, senior computer 
officer at the School of Computer Science at the University of 
Birmingham in England, describes how to set up user accounts, assign 
user rights, set file permissions, and configure authentication. 
   http://list.windowsitpro.com/t?ctl=1618F:4FB69

If you run Win2K Server, you can use Beau Monday's step-by-step guide, 
"Configuring OpenSSH (Win32) for Public Key Authentication." His guide 
is equally detailed and includes information about how to configure 
PuTTY, which is an open-source SSH command-line client for Windows 
platforms. The PuTTY package also includes a PuTTY Secure Copy (PSCP) 
client. If you use Monday's guide, take note that his link to OpenSSH 
for Windows is broken. The project has relocated to SourceForge, and 
you can find it by using the second URL below.
   http://list.windowsitpro.com/t?ctl=16195:4FB69
   http://list.windowsitpro.com/t?ctl=16197:4FB69

I've used the PuTTY PSCP client quite a bit, and even though it's a 
good tool, I prefer a GUI because it saves me a whole lot of typing. 
With a GUI, you can copy files using simple drag-and-drop techniques, 
and you can typically navigate directories in a treeview similar to 
that of Windows Explorer. As an alternative to PuTTY, you might 
consider WinSCP (at the URL below) for file-copying tasks. WinSCP 
supports both Secure Copy (SCP) and Secure FTP (SFTP). 
   http://list.windowsitpro.com/t?ctl=16199:4FB69

====================

==== Sponsor: Diskeeper ====

Speed up your systems--try Diskeeper 9 free
   The secret to maximum computer speed is simple: Eliminate disk 
fragmentation entirely. Diskeeper 9, the Number One Automatic 
Defragmenter, features a high-speed defragmentation engine that runs in 
the background. It's so fast and so transparent that you can run it on 
active servers and PCs, keeping your systems defragmented while your 
users work. All you do is "Set It and Forget It", and fragmentation-
related problems are gone for good. Don't settle for less performance 
than your servers and PCs can deliver. See the benefits for yourself--
download your FREE evaluation version of Diskeeper 9 now!
   http://list.windowsitpro.com/t?ctl=1617B:4FB69 

====================

==== 2. Security News and Features ====

Recent Security Vulnerabilities
   If you subscribe to this newsletter, you also receive Security 
Alerts, which inform you about recently discovered security 
vulnerabilities. You can also find information about these 
discoveries at
   http://list.windowsitpro.com/t?ctl=16183:4FB69

Microsoft Releases 9 Security Bulletins in October 
   Microsoft released nine security bulletins yesterday. Eight of them 
relate to patches for Windows and one relates to a patch for Windows 
and Microsoft Exchange Server. Of the nine, Microsoft considers at 
least one to be critical. 
   http://list.windowsitpro.com/t?ctl=1618A:4FB69

Microsoft Announces New Products and New Consortium
   After acquiring antivirus, antispyware, and antispam solution 
makers, Microsoft has finally announced its new antimalware product 
plans along with a new security consortium.
   http://list.windowsitpro.com/t?ctl=1618E:4FB69

Microsoft Brings Antimalware Tech to Corporations
   As promised, Microsoft will soon introduce a beta version of its 
antispyware and antivirus tools for managed corporate networks, giving 
enterprises the tools they need to remove malware on client PCs and 
file servers.
   http://list.windowsitpro.com/t?ctl=1618B:4FB69

Symantec to Acquire BindView
   Further strengthening its position in the security market space, 
Symantec announced a deal to acquire BindView. The acquisition, which 
is expected to close in first quarter 2006, better positions Symantec 
to offer end-to-end security solutions for policy compliance and 
vulnerability management.
   http://list.windowsitpro.com/t?ctl=1618D:4FB69

10 Network Security Assessment Tools You Can't Live Without
   Jerry Cochran describes his favorite penetration-testing tools, 
including Nmap and SNMPWalk, and encourages you to use them on your 
network--before the hackers do. 
   After you read this article, tell us your network security 
assessment story and win a Windows IT Pro T-shirt. Just click in the 
Interact! box on the article Web page.
   http://list.windowsitpro.com/t?ctl=16188:4FB69

====================

==== Resources and Events ====

Discover SQL Server 2005 for the Enterprise. Are you prepared?
   In this free half-day event, you'll learn how the top new features 
of SQL Server 2005 will help you create and manage large-scale, 
mission-critical enterprise database applications--making your job 
easier. Find out how to leverage SQL Server 2005's new capabilities to 
best support your business initiatives. Register today!
   http://list.windowsitpro.com/t?ctl=16180:4FB69

Get the Most from Your Infrastructure by Consolidating Servers and 
Storage
   Improved utilization of existing networking resources and server 
hardware enable allocation of scarce financial and time resources where 
they're needed most. In this free Web seminar, learn to optimize your 
existing infrastructure with the addition of server and storage 
consolidation software and techniques. You'll get the jumpstart you 
need to evaluate the suitability and potential of your computing 
environments for the added benefits that consolidation technology can 
provide.
   http://list.windowsitpro.com/t?ctl=1617D:4FB69

Deploy VoIP and FoIP Technologies
   Voice over Internet Protocol (VoIP) is the future of 
telecommunications, and many companies are already enjoying the 
benefits of transporting voice over IP networks to significantly reduce 
telephone and facsimile costs. Join industry expert David Chernicoff 
for this free Web seminar to learn the ins and outs of boardless fax in 
IP environments, tips for rolling out fax and integrating fax with 
telephony technologies, and more!
   http://list.windowsitpro.com/t?ctl=16182:4FB69

Exploit the Opportunities of a Wireless Fleet
   With the endless array of mobile and wireless devices and 
applications, it's hard to decide what you can do with the devices 
beyond providing mobile email access. It's even tougher to know how to 
keep it all secure. Join industry guru Randy Franklin Smith in this 
free Web seminar and discover what you should do to leverage your 
mobile and wireless infrastructure, how to pick devices that are right 
for you, and more!
   http://list.windowsitpro.com/t?ctl=1617C:4FB69

The Conference & Expo on Mobile and Wireless Security
   The must-attend event for securing your wireless applications and 
networks, the Conference & Expo on Mobile and Wireless Security is 
designed to navigate you through today's high-threat landscape. 
Discover real-world security solutions from practitioners winning the 
battle against hackers, undisciplined users, and the occasional 
villainous virus.
   Click here for details: http://list.windowsitpro.com/t?ctl=16194:4FB69 

Cut Your Windows XP Migration Time by 60% or More!
   If your organization is considering--or has already begun migrating 
your operating system to Windows XP, then this Web seminar is for you. 
Sign up for this free event, and you'll learn how to efficiently 
migrate your applications into the Windows Installer (MSI) format, how 
to prepare them for error-free deployment, what steps you need to 
follow to package your applications quickly and correctly, and more!
   http://list.windowsitpro.com/t?ctl=16181:4FB69

====================

==== Featured White Paper ====

Stopping Crimeware and Malware: How to Close the Vulnerability Window
   Computer users can no longer wait for a new vaccine every time a new 
security threat appears. How do you defend your network in a world of 
smarter, faster, Internet-borne zero-day attacks? Find out about 
Intrusion Prevention that can detect and destroy unknown malware with 
virtually zero false positives.
   http://list.windowsitpro.com/t?ctl=1617F:4FB69

====================

==== Hot Release ====

Meeting Enterprise Management Needs: The Integration of Microsoft SMS 
2003 and Afaria
   Learn about the capabilities offered by the integration of Microsoft 
SMS 2003 and Afaria. In this free white paper you'll learn about new 
functionality and benefits of Microsoft SMS specifically targeted to 
improving management of remote and mobile devices, challenges of 
managing frontline systems, how the combined solution creates value 
around the successful use of technology at the front lines of business 
and more.
   http://list.windowsitpro.com/t?ctl=1617E:4FB69 

====================

==== 3. Security Toolkit ==== 

Security Matters Blog: Nematodes: Worms That Help Your Networks
   by Mark Joseph Edwards, http://list.windowsitpro.com/t?ctl=16192:4FB69

Would you unleash a worm on your networks if that worm was designed to 
protect the networks instead of infiltrate them? Dave Aitel thinks you 
would, and that was the subject of his presentation at the latest Hack 
in the Box conference in Malaysia. Read more about it in this blog 
entry. 
   http://list.windowsitpro.com/t?ctl=16189:4FB69

FAQ
   by John Savill, http://list.windowsitpro.com/t?ctl=16191:4FB69 

Q:  Can I change the type of logging that Active Directory (AD) uses?  

Find the answer at
   http://list.windowsitpro.com/t?ctl=1618C:4FB69

Security Forum Featured Thread: How to Automate Setting ACLs on Folders
   Drew is trying to verify folder security on his file servers. He's 
running into many inconsistencies with folder permissions and wants to 
know if there's a script he can run to adjust the permissions. For 
example, all his users have a home directory on one of his file 
servers. He wants to set the ACL on each home directory folder to allow 
the user, administrators, and System account to have full control. Join 
the discussion at:
   http://list.windowsitpro.com/t?ctl=1617A:4FB69

====================

==== Announcements ====
   (from Windows IT Pro and its partners)

Become a VIP Subscriber!
   Get inside access to ALL the articles, tools, and helpful resources 
published in Windows IT Pro, SQL Server Magazine, Exchange and Outlook 
Administrator, Windows Scripting Solutions, and Windows IT Security--
that's more than 26,000 articles at your fingertips. Your VIP 
subscription also includes a valuable 1-year print subscription to 
Windows IT Pro and two VIP CDs (that contain the entire article 
database). Sign up now:
   http://list.windowsitpro.com/t?ctl=16184:4FB69

SQL Server Magazine Has Answers
   You won't want to miss any of the fall issues! Subscribe now and 
discover the best tools to keep SQL Server tuned, the ins and outs of 
SQL Server 2005, ways ADO.NET 2.0 solves your problems, and much more. 
You'll also gain exclusive access to the entire SQL Server Magazine 
online article database (more than 2300 articles) and you'll SAVE 44% 
off the cover price. Click here:
   http://list.windowsitpro.com/t?ctl=16187:4FB69

====================

==== 4. New and Improved ====
   by Renee Munshi, products at windowsitpro.com

Freeze Workstation Configurations
   Faronics Technologies announces the official release of Deep Freeze 
5.5 Standard, Professional, and Enterprise editions. Deep Freeze 
protects original computer configurations. No matter what changes a 
user makes to a workstation, when he or she restarts the system, Deep 
Freeze eradicates all the changes and resets the computer to its 
original state. Deep Freeze 5.5's new features include enhanced 
compatibility when deployed as part of a master image, the ability to 
specify login information for executing custom scripts during scheduled 
maintenance periods, and enhanced password security. For more 
information, go to 
   http://list.windowsitpro.com/t?ctl=1619B:4FB69

Tell Us About a Hot Product and Get a T-Shirt!
   Have you used a product that changed your IT experience by saving 
you time or easing your daily burden? Tell us about the product, and 
we'll send you a T-shirt if we write about the product in a future 
Windows IT Pro What's Hot column. Send your product suggestions with 
information about how the product has helped you to 
   whatshot at windowsitpro.com.

Editor's note: Share Your Security Discoveries and Get $100
   Share your security-related discoveries, comments, or problems and 
solutions in the Windows IT Security print newsletter's Reader to 
Reader column. Email your contributions (500 words or less) to 
r2rwinitsec at windowsitpro.com. If we print your submission, you'll 
get $100. We edit submissions for style, grammar, and length.

====================

==== Sponsored Links ====

Admins rush to install BLOG servers
   How to run your own blog server. Free 5-user license.
   http://list.windowsitpro.com/t?ctl=16198:4FB69

====================

==== Contact Us ==== 

About the newsletter -- letters at windowsitpro.com
About technical questions -- http://list.windowsitpro.com/t?ctl=16196:4FB69
About product news -- products at windowsitpro.com
About your subscription -- windowsitproupdate at windowsitpro.com
About sponsoring Security UPDATE -- salesopps at windowsitpro.com

====================

This email newsletter is brought to you by Windows IT Security, 
the leading publication for IT professionals securing the Windows 
enterprise from external intruders and controlling access for 
internal users. Subscribe today.
   http://list.windowsitpro.com/t?ctl=16186:4FB69

View the Windows IT Pro privacy policy at
   http://www.windowsitpro.com/AboutUs/Index.cfm?action=privacy

Windows IT Pro, a division of Penton Media, Inc.
221 East 29th Street, Loveland, CO 80538
Attention: Customer Service Department

Copyright 2005, Penton Media, Inc. All rights reserved.





More information about the ISN mailing list