Network Security Blog » Security Audit

active directory security group question?

admin — Fri, 16 Apr 2010 12:27:20 +0000

Ive got to audit all of our security groups and find what folders they have access to without having to look at every folder to see what permissions are on them, is there any scripts or free software out there to do this, Ive had a look at dumpsec and thats it

no free stuff…for this kind of proffesional work

Bandolier Demonstration

admin — Mon, 12 Apr 2010 06:39:15 +0000

This is a video introduction and demonstration of Digital Bond’s Bandolier security audit files for control system servers and workstations. The audit files work with the policy compliance plugins in Nessus.

Duration : 0:8:35

[youtube 3Q-2qvcWzTc]

Technorati Tags: audit, Bandolier, configuration, DCS, DigitalBond, Historian, HMI, infosec, nessus, Realtime, SCADA, security, Tenable

How can a company confirm its total number of employees without disclosing personal information?

admin — Sun, 11 Apr 2010 09:42:43 +0000

We’re ranking local companies by number of employees for an industry report. We need to make sure the responding companies are truthful. What’s an easy and reasonable way for them to document or prove the number of employees they employ without disclosing confidential information like names, social security numbers, salaries, etc. Is there an employee audit they must submit for health insurance, workers compensation or state unemployment purposes? We need a simple, acceptable and standard method of accounting for the number of employees. We don’t want anyone fudging or misleading/misrepresenting their company.
Allow me to clarify. Submitting to this list is voluntary.

And getting listed is valueable. Companies can’t wait to appear on this list each year!

To that end, we can set the standard or requirements to participate.

Therefore, we can and should request/require any reasonable documentation.

What documentation would you suggest or recommend that we can request/require that is reasonable, standard and acceptable documentation of true employment within a corporation?

What ever reports they must generate are not for you. Unless you have a court order, you have no right to this information. You have no choice but to take their word for it.

what is auditing when it comes to web security?

admin — Wed, 31 Mar 2010 13:23:34 +0000

Auditing = checking or verifying

Need any other definition?

Is this true about not being able to audit – not just the Fed but the dept of TREASURY etc?

admin — Thu, 18 Mar 2010 03:23:16 +0000

" The Defense Department’s eschewal of economic reality finds its counterpart in its disinterest in accountability. The dramatic admission of this statement of priorities came from Former Defense Secretary Donald Rumsfeld who admitted publicly that that DOD could not find $2.3 trillion. The money is still missing. (“The War on Waste: Defense Department Cannot Account for 25% of Funds – $2.3 Trillion, CBS Evening News, January 29, 2002)

Future Defense chiefs won’t face such embarrassment. On May 8, 2009 the GAO informed the House Subcommittee on Government Management that six executive agencies can prohibit audits and investigations by the Inspector General — Defense, Treasury, Federal Reserve Board, Department of Justice, Homeland Security and the Postal Service and the CIA’s infamous and classified “Black budgets.” Accountability has now taken remote second place to “national security.”

http://www.hamsayeh.net/hamsayehnet_iran-international%20news995.htm

I have never seen this source before, so I don’t know how reliable it is, but I DID know of the $2+ trillion ‘lost’ in defense in 2004 — is it true even the inspector general now can’t audit basic defense contracts, and the TREASURY???
LTM, oh, I agree there is a clear agenda to the article, and I never heard of them before. But they have sources sited for some of their stuff, so I think this may be true. Felonius seems to think so. How you put the data together is a separate matter.

Disturbing if true.

I have to do a security audit for a local credit union.?

admin — Tue, 16 Mar 2010 02:28:25 +0000

there are two offices headquarters downtown and a branch office on the east side of town.The headquarters has:ten Windows XP workstations,connected to a Windows server 2008 file server, ten Windows vista workstations, one Windows server 2008 RRAS server accessed by home workers after hours,one Windows server 2008 printer,one Linux database server,one Linux web server for members to check their account balances online, one firewall where the network connects to the credit unions ISP via a T3 dedicated link.The east side office has five Windows XP workstations,connected to the headquarters office Windows Server 2008 server through T1 link. I need to describe any entry points(physical or data transmission related, or any situations that may constitute a security risks, also how can I better train the employees to understand network security.

No disrespect, my friend, but if you need to come onto a public forum to ask this question, you do not appear qualified to conduct a security audit

Bandolier: Security Audit Files for Control System Applications

admin — Sat, 13 Mar 2010 17:32:37 +0000

Learn how Bandolier and the Nessus vulnerability scanner can help audit security configuration of your control system servers and workstations.

Duration : 0:8:33

[youtube C9unhYfIfuU]

Technorati Tags: Bandolier

CISA audit process part 1 last

admin — Fri, 12 Mar 2010 01:27:13 +0000

This is the last video on IS audit process part 1. For full part 1 video visit:
cisa-2007.blogspot.com

join like-minded people to discuss about this exam :
http://r.yuwie.com/jyeesg

Duration : 0:1:28

[youtube plHfRBUNHEk]

Technorati Tags: audit, certification, cisa, cism, Compliance, security

Event ID 680 Failure Audit?

admin — Mon, 01 Mar 2010 01:31:36 +0000

I am missing some files on my computer. I checked event viewer and saw under the security tab that I have a Failed Audit/Account Logon, event ID 680 0X0000064. I was wondering if this is anything to worry about. The computer that it failed with is another computer inside my works network. Could they be accessing my computer somehow?

There is some info about it at http://forums.techarena.in/windows-server-help/621166.htm The post is from 2006 ,but might put you in the right direction.

G4S begins staff audit

admin — Wed, 24 Feb 2010 23:41:22 +0000

Troubled security firm G4S is now alleging that an organized external criminal gang is behind the spate of robberies affecting its fleet. And as Yassin Juma reports, the security firm today ran a lie test on its employees as it moves to tackle the serious image crisis.

Duration : 0:1:53

[youtube h7ZrmZeSC1s]

Technorati Tags: audit, begins, G4S, staff