Network Managers Meeting Minutes

May 2, 2002

 

Minutes recorded by Joe Dance – send corrections or comments to dancejoe@moore.sc.edu

 

 

Ronni Wilkinson opened the meeting and introduced John Baumgartner, a consultant working with Computer Services on a security project.

 

 

John Baumgartner: Security

• Most problems identified to date are the common errors in network administration and common vulnerabilities.
• Findings are being reported to the respective departments as they are found.
• The project is expected to produce a set of Best Practices, which can be used to educate the community.

 

 

Russel Kaiser:  Demonstration of some Windows-based network security tools:

 

            http://matrix.cosm.sc.edu/tutorials/scanning/

 

• “Net Brute Scanner” by Raw Logic Software can be used to scan for open network shares; it can also be used for port scans.
• Norton Ghost usually has an account named nsgserver, with a default username of ngserver and admin permissions.
• “Ping” (a program, not the command) can be used to check for accessible ftp servers.
• “DirCheck” looks for writable directories on the FTP server.
• The demonstrated programs are free or shareware.
• Links to the sources of these programs will be published.
• “SN Scan” can be used to scan for open SNMP ports.
• For HP printers with JetDirect, use the “allow” command to restrict the range of IP addresses allowed to connect – restriction to the local subnet is recommended.
• Some of the older versions of JetDirect firmware will answer to anything for the Community name; new firmware is available to rectify this problem.
• “Retina” (available for download as a 15 day evaluation copy) performs numerous checks on a targeted server.
• The Network Abuse Clearinghouse (a website - www.abuse.net) run by abuse.net can be used to test SMTP mail servers for open relays, which are exploited by spammers.

 

Ronni Wilkinson closed the meeting.