LAN Security
•Download as PPT, PDF•
4 likes•1,254 views
The Ethernet LAN has many security weaknesses when facing attacks externally and internally. This Presentation will helps user How they can Secure there LAN Network From unwanted threats
Report
Share
Related slideshows
LAN Security
- 1. LAN SECURITY BY SYED UBAID ALI JAFRI Information Security Expert CEO UJ Consultant & Solution Provider http://www.ujconsultant.com
- 2. CONSIDERATIONS •INTRODUCTION TO LAN •WHAT TO KNOW ABOUT LAN •WHY SECURITY? •THREATS •COUNTERMEASURMENT •MINIMIZING RISK •EVALUATE PERFORMANCE
- 3. INTRODUCTION TO LAN Any network that is connected on a same subnets lies under the category of LAN LAN Share resources of computer which includes: 1) File Sharing 2) Voice chatting 3) Message Sending 4) Desktop Sharing
- 4. WHAT TO KNOW ABOUT LAN •Information about host •Devices that are connected on the subnet •IP Address of the system •Remote Services •Events Logs
- 5. WHAT TO KNOW ABOUT LAN Information about host
- 6. WHAT TO KNOW ABOUT LAN Devices that are connected on the subnet
- 7. WHAT TO KNOW ABOUT LAN IP Address of the system
- 8. WHAT TO KNOW ABOUT LAN Remote Services
- 9. WHY SECURITY Any medium whether it is wired or wireless must have some strong security consideration. Using LAN, security can be helpful for the user who have a large network connected on a LAN, they must go through the process of analysis that interacts with LAN
- 10. THREATS Following are the list of threats that a LAN Network faces: •MAN IN THE MIDDLE ATTACK •SMURF ATTACK •IP SPOOFING •DENIAL OF SERVICES •ARP POISONING
- 11. THREATS MAN IN THE MIDDLE ATTACK: The man-in-the middle attack intercepts a communication between two systems.
- 12. THREATS SMURF ATTACK The Smurf attack is a way of generating significant computer network traffic on a victim network.
- 13. THREATS IP SPOOFING IP address spoofing or IP spoofing refers to the creation of Internet Protocol (IP) packets with a forged source IP address, called spoofing.
- 14. THREATS DENIAL OF SERVICES A denial-of-service attack (DoS attack) or distributed denial-of-service attack (DDoS attack) is an attempt to make a computer or network resource unavailable to its intended users
- 15. THREATS ARP POISONING ARP spoofing may allow an attacker to intercept data frames on a LAN, modify the traffic, or stop the traffic altogether
- 16. COUNTERMEASUREMENTS •Denying Unusable services •Checking people currently connect with this network •Closing Default operators of windows •Saving external resources •Making Log files •Updated Virus Definitions
- 17. COUNTERMEASUREMENTS Denying Unusable services RUN>Services.msc Close these services Automatic Updates Live Update Telnet
- 18. COUNTERMEASUREMENTS Checking people currently connect with this network
- 19. COUNTERMEASUREMENTS Closing Default operators of windows
- 20. COUNTERMEASUREMENTS HKLMSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer Operating system Default setting Windows 7 0x91 Windows Server 2008 0x91 Windows Vista 0x91 Windows Server 2003 0x95 Windows XP 0x91 Windows 2000 0x95 Windows 95/98 0x95
- 21. COUNTERMEASUREMENTS Making Log files RUN > eventvwr
- 22. MINIMIZING RISK •Making Remote Connectivity disabled •Services Like Telnet, SSH, VNC should be stopped forcefully •Changing Values from Registry •Releasing and Renewing IP Addresses
- 23. MINIMIZING RISK •Services Like Telnet, SSH, VNC should be stopped forcefully •Net stop telnet •Net start telnet
- 24. MINIMIZING RISK •Releasing and Renewing IP Addresses: •Ipconfig /release •Ipconfig /renew
- 25. EVALUATE PERFORMANCE By Default Windows Xp, 7 , Vista enble the services that are not used under he scope of a home user Operating system performance can be cutomized from 1) Windows Services. 2) Windows Registry 3) Windows Effects 4) Monitoring Services