ITech-Net

Promotional Products

2009-11-26T13:49:00.003+07:00

Download Architects Cad Drawings. Subsribe To Access Our Huge Database Of Downloadable Cad Symbols, Drawings & Details. Click Here!

Evidence Smart #1 Privacy Software. Best Evidence Cleaner And Privacy Protector. Ultra-Hot Niche & Conversions. Goog/Msn/Yhoo Conversion Tracking.Click Here!

PC Satellite Tv Box. PC Satellite Tv Box - Satellite Tv Software. Watch Your Favourite Movies, Tv Shows, News And Sports Anytime You Want! Very Unique, High Converting Offer!Click Here!

EksTron CMS400.NET v7.6

2009-08-06T02:03:00.003+07:00

Ektron CMS400.NET v7.6 provides a complete content management platform with all of the functionality necessary to create, deploy, and manage your Web site.

You can completed your website and could do as follows:

	Build enterprise Web sites on which Web marketers are able to independently create and launch new Web pages.
	Encourage user adoption and increase site traffic through social networking.
	Utilize the extensive out-of-the box features or take advantage of the open architecture.
	Streamline content and document management while providing a collaboration workspace.
	Empower your content authors while reducing IT bottlenecks.
	Enhance your search through taxonomy and let users find information the way they think.
	Add powerful Web 2.0 tools like blogs, wikis, forums, geo-mapping, rating syste

and many more...just registered and you can do it all above by taking demo program first.

DT Templates Program

2008-12-10T09:17:00.002+07:00

DreamTemplate is a premium template subscription provider with over 1800 professionally designed templates available for members. We serve Website Templates, Flash Templates, Office Templates, Word Templates, Powerpoint Templates, Corporate Identity packages and logo designs. Every month, we're adding over a hundred new designs. Unlike most template sites that charge per template, DreamTemplate works differently. We charge a one-time fee and then give members full download access to our premium template collection.

Now, here's your chance to refer one of the largest Internet template membership sites. Our site is unique and our templates are affordable and designed extremely well! Start earning great conversion rates.

Earn an incredible 30% commission for every member you refer to DreamTemplate.com/sale originating from your website.

1000's of Web Templates - Unique & Professional web templates. Unlimited downloads!

E-books on Net

2008-04-17T10:53:00.005+07:00

VideoWebWizard
The Easy Way For You To Start Using & Profiting With Online Video! This Software Is So Simple That You Could Have One Or More Streaming Videos On Your Website Just 10 Minutes From Now! ... more

The Web Marketers Traffic Course
If You Want to Learn All of the Most Powerful Traffic Generating Secrets That The Ultra Successful Website Owners Are Currently Using, Then You'll Want My Brand New Guide That Spills Their Traffic Generating Secrets... more

Buying Websites on eBay
eBay is becoming an increasingly popular venue for traders to sell their websites because keen buyers looking for an established, profitable website are ready to snap them up.... more

Private Label Rights Special Offer
Grab The NO RESTRICTION Private Label Rights To 4 Products You Can Call Your Own, DO ANYTHING YOU WANT With Them, And Generate Income From Multiple Profit Centers Selling These Products As Your Own!... more

Easy JV & Affiliate Manager
Here's The Easiest Way For You To Set Up, Track, And Automate Virtually All Aspects Of Your Joint Venture Marketing Campaigns! Don't Do Another Joint Venture Without This! ... more

Adsense & Affiliate SEO Guide
Discover How To Build Long-Lasting, Profitable Websites And Make Money With Adsense And Affiliate Programs. Here's a proven guide to long-term, ground-up approach to AdSense and affiliate gold that will NOT make you rich quick, but will guarantee that you... more

Download Secrets
Download Unlimited iPOD, PSP, PC Movies, Games, Music, TV Shows, Classics, Bloopers, Cartoons for dirt cheap or FREE! How to gain access to the Largest Music and Movie Selection on the INTERNET and Download it all!... more

Instant Website Security
Here's How To Easily Keep Your Websites And eBooks Secure From Hackers And Thieves. Right now - hackers want to break into your website and computer.... more

TubeTraffic
Discover The Little Known Secrets Of Generating Free Website Traffic From YouTube! Here's How To Get Unlimited New Visitors To Your Websites Without Paying A Penny (Other Than Video Production Costs) Using Free Online Video Sites Like YouTube.... more

Following The Guru
Discover How To Quickly Copy The Proven Profit Tactics That Work To Guarantee Your Own Online Success. Set Yourself Apart From The 95% Of Marketers Struggling To Make A Living Online By Modelling Your Business On The 5% Who Are Already Wildly Successful .... more

Implementing The Payment Card Industry Data Security Standard

2008-02-26T09:48:00.002+07:00

In order to protect the integrity of card-not-present transactions, such as online commerce, the five major credit card companies came together and created the Payment Card Industry Data Security Standard. As more and more stories about security breaches reach the public awareness, consumer confidence in electronic transactions is in danger of falling off significantly.

The Payment Card Industry Data Security Standard (or PCI DSS) was designed to offer guidance and incentives for implementing a standardized set of security measures.

So where do you start? There are twelve requirements in the Payment Card Industry Data Security Standard, so you might as well start at the beginning.

Requirement number one mandates that you install and maintain a firewall configuration to protect cardholder data. This allows you to control the traffic that has access to the sensitive areas of your site.

The second requirement states that you must not use vendor-supplied defaults for system passwords and other security parameters. These default passwords are often well known in the hacker community, and the first thing they try when attacking your system.

The third has a little more broad of a scope, in that it just requires you to protect cardholder data. That could mean anything, but in this case it includes the necessity of restricting physical as well as digital access to data. It also specifies exactly what information you cannot store at all.

Requirement four deals with encrypting transmission of cardholder data across open, public networks. Sometimes a hacker will bypass trying to break into systems and simply try to intercept sensitive information en route. It's very important to make that information unreadable, so they can't do anything with the information they might catch.

The fifth requirement deals with other, non-human threats. You are required to use and regularly update anti-virus software to guard your system against the various malicious programs that can infect your system. These programs can get into your system through any number of methods, and it's important to guard yourself against them.

Developing and maintaining secure application is the sixth requirement. Your programs and applications need to be current and up-to-date with current security measures. As you use certain programs, security holes are often discovered, and you must fix them or patch them as necessary.

Number seven requires you to limit access to sensitive information to people who need to know for the purposes of their job. For some people it it absolutely necessary for them to have access to this information, but they are the only people who should ever see it.

Requirement eight says you should assign a unique ID to anyone with computer access. By doing so you can be sure that any actions taken on important systems are performed by, and can be traced to, authorized personnel.

The ninth requirement says that you have to restrict physical access to your systems. You don't want the wrong people finding and stealing equipment, hardcopies, and encryption keys.

Number ten requires you to track and monitor all access to network resources and carholder data. This is absolutely essential if something goes wrong on your system. Logging software will help track and analyze what happened.

The eleventh requirement states that you must regularly test security systems and processes. No matter how perfect you think your security measures are, there's always a chance someone will find a previously unknown vulnerability. Regular testing is the best way to find those vulnerabilities first.

The final requirement is to maintain a policy that addressees information security for employees. It makes sense. All the procedures in the world don't mean a thing if your people don't know about them. You have to keep everyone informed.

The Payment Card Industry Data Security Standard can be a complex and time consuming thing to implement. For that reason many companies have opted to outsource their PCI compliance. But whatever you choose, just remember that the sooner you adopt the Payment Card Industry Data Security Standard, the sooner you will experience the benefits.

About the Author

Andy Eliason is a writer at Main10, Inc. If you'd like to learn more about the Payment Card Industry Data Security Standard visit Braintree Payment Solutions today.

GFI LANguard Security Overview

2007-08-23T10:06:00.000+07:00

Event logs are a valuable tool to monitor network security and performance that are often underutilized due to their complexity and volume. As organizations grow in size, they require a more structured approach towards event log management and retention. A recent survey carried out by SANS Institute found that 44% of system administrators do not keep logs more than a month.

Proper log management helps you to meet several objectives including:

Information system and network security
System health monitoring
Legal and regulatory compliance
Forensic investigations

Why use GFI EventsManager?

Centralizes Syslog, W3C and Windows events generated by firewalls, servers, routers, switches phone systems, PCs and more
Wizard assisted configuration simplifies end-user operation and maintenance
Unrivaled event scanning performance scalable to over 6 million events per hour
Preconfigured event processing rules for effective out-of-the-box event classification and management
Automated 24/7 event activity monitoring and alerting
Powerful reporting for effective network activity monitoring and immediate ROI.

System Requirements:

. NET Framework 2.0.
Microsoft Data Access Components (MDAC) 2.6 or later
Access to MSDE / SQL Server 2000 or later

GFI EventsManager collects data from all devices…More Info

Configure a Cisco PIX Firewall with this template

2007-08-16T17:05:00.000+07:00

Configuring a new Cisco PIX Firewall can be challenging and time-consuming. Why not automate the process with an Excel template? We've created an Excel template that will help you automate the configuration of a new Cisco PIX 501 Firewall.

What this template does

This template will generate the configuration for a Cisco PIX 501 Firewall according to the information you supply. The template contains two worksheets.

The first worksheet is a reference, which offers a sample configuration that lists the various commands and their purposes. This sample configuration performs the following actions for the firewall:

Configures a hostname for the PIX.
Creates a password to control who can log in to the PIX.
Creates an enable password to control who can administer the PIX.
Enables the HTTP Web server for remote administration using the PIX Device Manager (PDM).
Configures the proper time zone, and points the switch to a local NTP time server for date and time synchronization.
Configures IP addresses on the inside and outside interfaces, and enables both of them.
Creates a default gateway on the PIX.
Configures NAT Overload (Port Address Translation, or PAT) so all inside network devices can access the outside network (usually the Internet).
Creates an access control list on the PIX so inside clients can only use the Internet for Web browsing and FTP.
Saves the new configuration, which preserves the configuration during rebooting.

You can input your configuration information for your network on the second worksheet. If there's a setting you don't need, you can remove it.

What you need to know

Here's a list of things you need to know before you download the template:

Click the Enable Macros button when you open the Excel workbook.
This template performs basic setup commands. You can add your custom PIX configurations to create a fast configuration template that does much more.
This template assumes you want to use the firewall to allow all inside devices to access the Internet through the firewall. If preferable, you can disable this and instead set up individual NAT entries for certain servers.
This template assumes you have a local NTP server on your internal LAN. If this is not the case, you can use the clock command to set the time manually or point the PIX to retrieve its NTP updates from the Internet.

Get the template

Now that you know what the template can do for you and how to use it, you can get started. Follow these steps:

Download the template.
Open the Excel file, and fill in the yellow sections on the Variables worksheet.
Click the Replace button; it will generate the appropriate configuration on a new worksheet called PIX - 1.
Copy the configuration from the Excel file, and paste it into the Cisco CLI when connected to the PIX's console port.

For more information, see Cisco's documentation for Cisco PIX Firewall, Version 6.3.

We want your feedback

What do you think of this template? Would you like to see other templates covering different topics or products? Share your opinions in this article's discussion.

Miss a column?

Check out the Cisco Routers and Switches Archive, and catch up on David Davis' most recent columns.

Want to learn more about router and switch management? Automatically sign up for our free Cisco Routers and Switches newsletter, delivered each Friday!

David Davis has worked in the IT industry for 12 years and holds several certifications, including CCIE, MCSE+I, CISSP, CCNA, CCDA, and CCNP. He currently manages a group of systems/network administrators for a privately owned retail company and performs networking/systems consulting on a part-time basis.

OTHERS FAVOURITE TO READ

2007-07-23T09:17:00.000+07:00

Best Places to Work in IT 2007

Where can you earn top dollar, get the best benefits, the latest IT and more? Find out in our 14th annual survey of the Best Places to Work in IT.

First look at the iPhone: Tomorrow's technology today

Does the must-have phone of '07 live up to its hype? Absolutely -- it's worth the high price and delivers tomorrow's technology today, says reviewer Mike DeAgonia.

'80 Mbytes of storage for under $12k!' and other ad favorites through the years

Check out some of the most entertaining advertisements that have appeared in Computerworld since 1967.

First look: The new MacBook Pro 17, now with hi-res screen

What do you get when you take an already fine laptop and give it a faster processor, faster front-side bus, a better video card and a 7,200-rpm hard drive? Laptop nirvana.

Is IT losing the battle against DNS attacks?

2007-07-23T08:49:00.000+07:00

C-level execs have rosier view of the problem than folks in the field

Michael Cooney Today’s Top Stories or Other Network Security Stories

Few things can strike fear into the heart of the IT department like an attack on a company's Domain Name System servers. That may explain why companies are spending so much time to deploy myriad, complex security measures to keep their DNS protected from attackers.

A study released Wednesday of 465 IT and business professionals says despite the Sisyphean efforts, many companies remain vulnerable. More than half the respondents reported having fallen victim to some form of malware attack. More than one-third had been hit by a denial-of-service (DoS) attack, and more than 44% had experienced a pharming or cache-poisoning attack. External and internal DNS servers were equally vulnerable: Both types succumbed to attacks with roughly the same frequency, according to the study by Mazerov Research and Consulting.

A DNS server compromised by a hacker could be used to funnel Web surfers to all sorts of phishing attacks and malicious Web sites, and in some cases even could cause havoc with directory services and e-mail, said Paul Mockapetris, the father of the DNS technology, in a Network World story earlier this year. "Once you control the DNS server, you have license to do phishing and pharming attacks and mislead all the users of that DNS server," said Mockapetris, who in 1983 proposed the DNS architecture and is acknowledged, along with the late Jon Postel, as the technology's inventor.

According to the Mazerov study, DoS attacks are prevalent among the respondents, with only 16% never having experienced one, although more than 10% said they often or frequently receive DoS attacks to their network. What also is interesting is that, while a total of 59% of respondents rarely or never experience DoS attacks, a surprisingly high 41% experience them. The study found that the top forms of DNS attack are malware (worms, viruses, Trojans and so forth), 68%; denial of service, 48%; cache poisoning, 36%; and pharming, 23%.

The patching game seems to be the method of choice for protecting DNS. Three-quarters of all respondents devote valuable resources to patching their operating systems continuously. Others reported having to harden operating systems; invest in dedicated firewalls; and add DNS appliances, DoS mitigation services and other network security devices. On average, respondents typically used at least 3.5 overlapping methods simultaneously to shore up their DNS security.

The study also looked at how long respondents' companies could weather DNS being taken offline before significant problems occurred, IT personnel were more sensitive to the issue than those occupying C-suites. According to the study, C-level executives estimated they could withstand losing Internet connectivity for slightly more than two hours (126 minutes), whereas IT managers estimated significant problems would arise after 105 minutes. Other IT personnel -- who may be most directly responsible for maintaining Internet uptime -- estimated an even shorter time frame -- an average of 72 minutes.

Respondents also were asked to assess what the probable impact would be on the health of their company if they were to experience a loss of Internet connectivity for a significant period of time. Maybe most alarming was that 12% of participants claimed they would be extremely or somewhat likely to go out of business completely, the study said.

Fight, Cheat, And Steal For Real Cash And Prizes

2007-07-17T19:18:00.000+07:00

Get Paid $6.00 Per Referral That Signs Up For Free!

Wealth Wars members get $6.00 USD referral commission for you to send new members to Wealth Wars.

You will get the cash instantly into your Wealth Wars accounts to spend on upgrades or cash out by check or PayPal. Log in now and visit your referral center to start ranking in the cash! Wealth Wars pays on time every single month. Visit our chat forum to talk to other members and our testimonials forum to see what others are winning!

Get ready to fight, cheat, and steal from the rest of the world! Thousands of Wealth Wars members log in every day to defend their base camps from mercenaries and alliances ready to take their hard stolen cash.

Gain strength through experience and become unstoppable by forming alliances with your friends. Friends don't stay friends for long as deception is part of the game play. So choose your friends wisely and beware, because even the strongest alliances can hold spies and snitches just looking for some free cash.

Travel through and land with mountains that hide prizes, cash, and certain demise. Wastelands, forests and swamps blanket the map slowing your travels in search for your enemies. Deserted bases and vacant armories give you free upgrades for the taking when no stores are accessible.

Learn more about Wealth Wars here join now and let the fun begin

10 things you can do with the Cisco IOS service command

2007-07-10T12:36:00.000+07:00

Are you familiar with the Global Configuration Code service command? At first, you might not recognize this command, but if you think about it, some well-known commands start with service.

A quick review

The service command is the beginning of 24 other subcommands. Some of these commands are relatively unimportant, but others are so important that you probably know them by heart. However, as you know, many commands seem unimportant — until you need them.

Again, you must use the service command when in Global Configuration Mode. Here’s a look at the 24 subcommands:

TechRepublic-Router# config t TechRepublic-Router(config)# service ? TechRepublic-Router(config)#service ? alignment Control alignment correction and logging compress-config Compress the nvram configuration file config TFTP load config files dhcp Enable DHCP server and relay agent disable-ip-fast-frag Disable IP particle-based fast fragmentation exec-callback Enable exec callback exec-wait Delay EXEC startup on noisy lines finger Allow responses to finger requests hide-telnet-addresses Hide destination addresses in telnet command linenumber enable line number banner for each exec nagle Enable Nagle’s congestion control algorithm old-slip-prompts Allow old scripts to operate with slip/ppp pad Enable PAD commands password-encryption Encrypt system passwords prompt Enable mode specific prompt pt-vty-logging Log significant VTY-Async events sequence-numbers Stamp logger messages with a sequence number slave-log Enable log capability of slave IPs tcp-keepalives-in Generate keepalives on idle incoming network connections tcp-keepalives-out Generate keepalives on idle outgoing network connections tcp-small-servers Enable small TCP servers (e.g., ECHO) telnet-zeroidle Set TCP window 0 when connection is idle timestamps Timestamp debug/log messages udp-small-servers Enable small UDP servers (e.g., ECHO)TechRepublic-Router(config)#service

Of course, it’s unlikely you’re going to spend the time to memorize all 24 subcommands. To help you out, I’ve chosen the 10 most important commands you should know.

#1: service dhcp

You can use the service dhcp command to enable or disable the Cisco IOS DHCP server and relay agent. The Cisco IOS enables this command by default.

However, if you’re turning on DHCP or it isn’t functioning, you should check the status of the service dhcp command. (You can disable the server using the no service dhcp command.)

#2: service linenumber

The service linenumber command notifies the user of the router’s or switch’s async line number used at login. This can come in handy if you’re having problems with your VTY line — it reminds you what line you’re on. It even works on the console. Here’s an example:

TechRepublic-Router con0 is now available Press RETURN to get started.

TechRepublic-Router line 0 TechRepublic-Router>

#3: service password-encryption

This command should be one you’ve already enabled. While disabled by default, the service password-encryption command is one that I recommend everyone turn on.

This command encrypts the Cisco IOS passwords stored in the router’s NVRAM configuration files. This helps prevent anyone from browsing the passwords if the configuration finds its ways to something like a TFTP server.

#4: service nagle

Nagle is a congestion control algorithm used to reduce the transmission of small packets. It’s a bandwidth-saving feature for keystroke-based applications (such as Telnet). While the Cisco IOS turns off Nagle by default, you can enable it with the service nagle command.

#5: service prompt config

The service prompt config command displays the configuration prompt. To be honest, I never noticed this command before researching this article. (All the hidden commands in the IOS continue to amaze me.)

If you enter no service prompt config, you’ll get no prompt when going into Global Configuration Mode. In other words, you can still type, but you don’t get any kind of prompt. This would really throw off someone who wasn’t familiar with this command.

Here’s an example:

TechRepublic-Router(config)# no service prompt config

^Z TechRepublic-Router# TechRepublic-Router# conf t Enter configuration commands, one per line. End with CNTL/Z.

service prompt config TechRepublic-Router(config)#

#6: service sequence-numbers

You can use the service sequence-numbers command to insert sequence numbers into log files. This can be important when log entries are coming really quickly. In fact, they can come so quickly that they appear at the same time. Here’s an example of sequence numbers:

000377: *Mar 17 23:06:33.609: %SYS-5-CONFIG_I: Configured from console by console

(where the 000377 is the sequence number)

#7: service tcp-keepalives

You can use the service tcp-keepalives-in and the service tcp-keepalives-out commands to monitor TCP connections to and from the router. They can terminate connections if the router or switch doesn’t receive a response from the remote device.

#8: service tcp-small-servers

The Cisco IOS disables the service tcp-small-servers command by default. Enabling this command turns on the following services on the router: Echo, Discard, Chargen, and Daytime.

I don’t recommend enabling this service because it could be a security concern. If you see any routers that have this command enabled, I suggest disabling it unless there’s a purpose for these services.

#9: service timestamps

You can use the service timestamps command to create timestamps on the router’s log files. Since version 11.3, the Cisco IOS has enabled certain timestamps by default, so most of us have this on. However, there are additional timestamps options that you can enable as well as places where timestamps are probably off by default.

Here’s an example of turning on all timestamp options for logging and debugging:

service timestamps log datetime localtime msec show-timezone year service timestamps debugging datetime localtime msec show-timezone year

#10: service password-recovery

The service password-recovery command enables the password recovery capability. This lets you recover the enable-mode password if you lose it by changing the config-register.

The no service password-recovery command can be dangerous. If you use this command, there’s no way to recover the enable-mode password if you lose it.

The service command offers plenty of options, but these are the 10 I think are the most important — do you agree? What do you use the service command for?

Want to learn more about router and switch management? Automatically sign up for our free Cisco Routers and Switches newsletter, delivered each Friday!

Online data storage is a best way to data security

2007-07-09T16:12:00.000+07:00

Data storage has been a concern to mankind for a long time now. Since time immemorial security has been a concern. How do we prevent unintended recipients from getting hold of data? Data storage is a very critical part of human existence. Can you imagine the mayhem if all the data across the earth was shared? Data meant to be protected has to be protected. Even the right to information cannot go beyond a certain level.

Data storage has improved leaps and bounds as time has moved on. A new era of data storage was heralded with the introduction of online data storage . Online data storage is a very secure form of data storage and all your information is kept with utmost secrecy and top notch security measures. Secure online storage is your safest best for any kind of data storage.

Online data storage allows you the luxury of storing your data online, extremely easy accessibility and security features that do not carry the drawbacks of physical data storage. Just make sure you have secure online storage in place and you are all set to rule the world of internet security.

Data backup is a crucial aspect. You need to make sure that you have an online data backup for all your crucial documents. Store your documents online so that you have a backup for all your physical documents. You never know when your online data storage comes handy. We all know very well how crucial documents have a knack for self destruction. Online data backup is the way to go.

Get Complete Privacy Protection from Innovative Software Solutions

2007-07-09T16:09:00.000+07:00

In the recent years, life has become immensely easy for the common person who wants to carry out some basic operations through the computer. These include storage of some information and communication through emails and chat programs.

With the increase in number of computer users, the allied products available for them have also increased. Today the market offers a vast variety of software that helps an individual to effectively use the computer for his needs.

What does privacy protection software do?

Privacy protection software is one of the latest offerings of the computer software market.

Privacy protection software is meant to apply certain settings on your computer that will help you to save the important information from unauthorized users. We often save such information, pictures or even music files on our computers, which we do not want others to view. We want to hide them from public view, so that even our colleagues, roommates, children or other family members cannot view them.

The most important feature of protection software is the way in which it hides the folders. None of the users can even identify that a certain folder or file has been hidden somewhere in the computer. All possible traces of these are removed from every application of the computer. As a result, even the best of experts cannot manage to trace such hidden information on your computer.

Another main utility is the easy to use and secure features, which make it possible even for a person with minimal computer knowledge to use the software. The settings can be applied very easily on the folders. For security purposes, you can also apply locks and passwords on the hidden folders, so that no one else can operate upon them, not even hackers.

Who uses privacy protection software?

Such software is now being increasingly used by all usage groups. In an office environment, people often do not want the other colleagues or subordinates to view certain files and folders they save on the computer. Even at home, we save such material, which we do not want our children or other family members to view.

These could include our financial details, critical business information, personal details, photographs, videos, music files and the like.

Where is it available?

You can visit the various websites on the internet offering such privacy protection software. Many internet suppliers offer this software in various forms, having different features. Another alternative is to contact your local computer software provider who will be able to suggest you some good options.

In fact, most of the internet suppliers of such software offer a free of cost trial version of the software. This can be downloaded and installed on the computer. The trial version is available for a fixed period, usually lasting up to 20 days.

How to Beat Trojan Virus and Worm Attack

2007-07-09T16:06:00.000+07:00

Trojans can erase your disk, send your credit card numbers and passwords to a stranger or let others use your computer for illegal purposes like denial of service attacks, crippling networks for months. Just like the original Trojan Horse that was built by the Greeks, the Trojan Horse Virus for your computer is actually something unwanted concealed within something that seems good and positive. Like sharks in a feeding frenzy, these hacker mercenaries view Instant Messaging clients as their personal bank because of the ease by which they can access your computer via the publicly open and interpretable standards. They unleash a Trojan horse, virus, or worm, as well as gather your personal and confidential information, and sell it to other criminals.

Many major operating system vendors have automatic update services. Many hardware vendors and other software packages have followed this trend, incorporating automated update services into their products. In some cases, the services for automatic updates run as the local "system" account. This account has the ability to access and modify most of the operating system and application environment. If this update service can be infected than millions of computers can be infected quickly. Hackers riding piggyback on viruses have only a short window of opportunity to maximize their gain before the viruses are detected, neutralized and logged into Virus Definition databases, 'vaccinating' the system against those strains. Without continuing system vulnerability caused by virus infection there is little they can do to further their malicious ends like stealing personal information, credit card details and other sensitive and vital data.

Many fine examples of Spyware, Trojan and Worm removal software are available, but you must be careful you only download a reputable programme from a reputable site. This is even more important when using free or evaluation software. This is one way that your system can be given a Trojan, through software downloads and installation and obviously the software will not protect you from its own malicious imbedded Trojan.

Because Instant Messaging operates on peer-to-peer (P2P) networks, it spawns an irresistible temptation for malicious computer hackers. P2P networks share files and operate on industry standard codec (encryption codes) and industry standard protocols, which are publicly open and interpretable. Most anti virus software does not incorporate protection for Instant Messaging services.

There is anti-Trojan software that specifically serves to get rid of Trojan Horse virus types, and in most cases it is this type of software you will want to use. You need to be protected against the most common way that users are infected with a Trojan program being through the spreading of it through emails. The sender will send it to the recipient within an email attachment that might say something like "complementarytickets.jpg" or something along those lines that will make you curious and open the file. Another increasingly popular way that Trojan Horses have been spread to users is through the ever-increasing instant messenger programs such as Yahoo Messenger, AIM, ICQ, MSN messenger, and IRC. The one key to remember about Trojans is that they have to be triggered by some mechanism and will not spread themselves. For example, you can have one in your email but you do not open the link then it will not infect your system.

In today's online environment it's important to know what risks lie ahead at each click. Every day millions of people go online to find information, to do business, to have a good time. We've been warned lots of times about stealing data -- identity theft, phishing scams and pharming; we have at least heard of denial-of-service attacks and "zombie" computers, and now one more type of online attack has emerged: holding data for ransom.

So in summary what do we need to do? Well we need at least one constantly updated anti-virus programme from a reputable source. It must be specified and configured to detect and remove virus, spyware, Trojans, and worms. We all need to be more careful when opening emails from unknown senders and most of all, only download from trusted sites.

Data Protection: Why and How

2007-07-09T15:59:00.000+07:00

The advent of world-spanning computer technologies has created an environment in which all sorts of data is easily accessible by almost anyone. At the same time, more and more of our personal data is being collected and stored in computer systems. How can we be sure that it's safe? Data protection systems and technologies exist to protect our privacy.

Data protection is geared towards protecting personal information such as family details and medical records - information we may not want to share with just anyone. Data protection schemes aim to guarantee everyone a basic minimum of privacy in line with the Universal Declaration of Human Rights. People dealing with sensitive government or corporate information may also rely on data protection.

Data protection begins with the type of privacy agreements which you will often see when you're asked to enter personal information into a website. This is the first stage of data protection - communication, ensuring that all those who are party to information exchange agree on what constitutes private data. Protection of such information can't otherwise be assumed, as the rules on what ought to fall under data protection schemes differ in different countries and between different organisations.

Whenever sensitive information is stored on computer systems, the law demands that it must be subject to adequate data protection. Special data protection software has been developed for this purpose, designed to identify this information and keep it separate from other records. Data protection depends on good information management, limiting access and, in some cases, limiting the period for which information is stored. Data protection software may also limit the context in which sensitive information can be utilised.

The advent of secure data protection systems minimises the risk of identity fraud faced by computer users sharing personal information. Data protection is essential in ensuring that emerging technologies do not undermine the older systems on which society is based.

Network Intrusion-Prevention Systems

2007-07-03T12:37:00.000+07:00

With our first "In the Wild" IPS test, we've spent the last five months testing 11 products on our live distributed network connecting sites in Los Angeles, San Jose and Tuscon, Ariz., to help sort out the real from the rhetoric.

An ounce of intrusion prevention may cure your network security ills
Talk about jumping on a bandwagon. When Gartner last summer declared "IDS is dead, long live IPS," marketeers everywhere picked up the intrusion-prevention system buzzword and ran with it.

Go with the flow
Rate-based IPSs detect detailed changes in traffic flow.

Content is king
Attack signatures trigger a range of responses among content-based IPSs.

ForeScout pitches honeypot technology as IPS
A few vendors that wanted to be tested didn't meet our criteria, but ForeScout's ActiveScout caught our attention.

Intrusion prevention as a service
Our review of intrusion-detection system devices attracted the attention of EcoNet.com, a company selling a managed, customer-premises-equipment-based IPS service.

How we did it
How we tested the various intrusion prevention systems.

Why we didn't test performance
Our intrusion-protection system review methodology was open for comment for four months before testing began. We openly solicited vendor input regarding what to test and how to test it. Three vendors pushed hard to include performance testing.

IPS forum
Discuss intrusion prevention and our review with the reviewers.

Top 20 Questions for your IPS vendor
What to ask your IPS vendor when evaluating a product or service.

Product upgrade chart
What has changed in the products since we reviewed them.

ARTICLES of The Week

2007-07-02T19:31:00.000+07:00

USB Pen Drive As Defined By Compact Size and Low Cost by Brayan Russell

The Best Gaming PC by John Anghelache

Bitlocker Data Encryption by Muneer Mohammad

Improving a http://www.Server's Response Time Using Its Execution Behavior I... by Sukanya Suranauwarat

What Is a No Deposit Bonus Online Casino? by Itay Paz

Optimize and Clean the Windows Registry Safely by Jim Haynes

Introduction to Preventing and Eliminating Malware, Adware, Spyware and Trojans by Jim Haynes

Disney Pixar Cars Games by Mike Rad

Where To Seek Software Help by Regina Schwartz

Get the key to Windows XP fonts

2007-06-25T20:03:00.000+07:00

by Greg Shultz

The Fonts folder, located in the Control Panel, provides a number of features you can use to keep track of the fonts installed on your Windows XP system. For example, on the View menu, you'll find the the List Fonts By Similarity command, which gives you a unique way to organize your fonts, and the Hide Variations command, which makes it easier to quickly discern available fonts by showing only one font from each family.

If you want to add more features to the Fonts folder, you can download the newest version (2.30) of the Font properties extension from Microsoft's typography page.

After you download and install this extension, the number of tabs on each font's properties dialog box will jump from two to 11, with each tab providing all kinds of information about the font. The information contained on these 11 tabs includes very detailed descriptions of each font, links to the font vendors and font designers, legal information, such as ownership, copyright, trademark, license, and embedding permissions, as well as technical information about the font.

Note: This tip is for both Windows XP Home and Professional.

Miss a tip?

Check out the Windows XP archive, and catch up on our most recent Windows XP tips.

Stay on top of the latest XP tips and tricks with our free Windows XP newsletter, delivered each Thursday. Automatically sign up today!

Articles Computers Category

2007-06-22T10:08:00.000+07:00

Toner: The Hidden Cost in Any Printer Purchase by Chris Robertson
550 words (Requested 0 times) Submitted: 2007-06-21
Not rated
Social Bookmarking: Sweeping Traffic With Social Bookmarking! by Ray J.Darken
332 words (Requested 0 times) Submitted: 2007-06-21
Not rated
Knock Down Writer's Block! by Terry Detty
705 words (Requested 0 times) Submitted: 2007-06-21
Not rated
Six steps to becoming an on-line Joint Venture Broker by Ben Ford
662 words (Requested 0 times) Submitted: 2007-06-21
Not rated
Sony Ericsson HBH-GV435 Bluetooth Headset by Anna More
514 words (Requested 0 times) Submitted: 2007-06-21
Not rated
Government Takes Anti-Virus Action by Kelly Liyakasa
322 words (Requested 0 times) Submitted: 2007-06-21
Not rated
Spam Statistics by Kelly Liyakasa
355 words (Requested 0 times) Submitted: 2007-06-21
Not rated
Playing Fun Games Online by Michael Rad
399 words (Requested 0 times) Submitted: 2007-06-21
Not rated
The Need for Backup and Disaster Recovery by Stephen J. Richards
387 words (Requested 0 times) Submitted: 2007-06-21
Not rated
What Is VOIP And How It Works by Jakob Culver
538 words (Requested 0 times) Submitted: 2007-06-21
Not rated

Wireless Laptops Bring Many Benefits to Normal Lives

2007-06-22T10:05:00.000+07:00

With the world of communication moving wireless, laptops are following the trend. Wireless laptops are owned by a large portion of the population. Gone are the days of the past when computer owners needed wireless 'cards' because most laptops built today are come customized with built in wireless switches. Just flip the switch and your online; flip it off and your disconnected. The world of communication has met the world of convenience!

Wireless laptops operate on a similar plane as the traditional LAN, so there isn't much in terms of differences, except with the wires. Wireless obviously is equipped with wireless technology, erasing the wires that previously came with the older LAN systems. The wireless system allows users to 'grab' signals that are being transmitted over radio type frequencies instead of through tangible wires. Because of this laptop computers can be taken anywhere and they can have access to the internet as long as there is a detectible wireless network within reach.

To get a laptop ready for a wireless network the user is going to need to install an access point, which is basically just the network hub. This is the center of all wireless technology in the home or the office and it will allow a person to run several different wireless devices, including PDA's and different laptops at the same time. That's one of the greatest benefits that wireless network hubs offer, the ability to have numerous wireless devices reading off the same network simultaneously.

The 'old fashioned' way of connecting to these networks was the wireless network card but as stated above, most computers built today have built in cards that work with just the flip of a switch. These cards or switches take the place of Ethernet adapters or cords that are run through phone lines. Ethernet lines are the accepted way of connecting with wires through dial up connection.

What do wireless laptops bring to the life of consumers? Because wireless technology has made it possible for people to adapt in ways they weren't capable of before it has opened up several opportunities for students and businessmen. Most college campuses and high schools are run through wireless connections so connecting online can be done by all students and faculty members. This allows them to connect using their own laptops all over larger areas of land. Businessmen also benefit from the use of wireless laptop connections because it gives them the chance to work from remote areas where phone may not be in service or there may be no other practical way of communication. Plus, most coffee shops and casual restaurants are equipped with wireless network hubs so their patrons can always have internet access.

Wireless laptops are used by most people, whether they are students, business people or just normal consumers attempting to keep in touch with friends and family. Wireless technology works on a similar plane as wired computers but, without wires, it makes it much more convenient.

About the Author
Kelly Hunter is an a keen writer for http://www.wireless-laptop-reviews.com for Reviews of Wireless laptops with several years experience.

Is Your Personal Information Safe?

2007-06-22T09:57:00.000+07:00

Spyware is any software that secretly gathers user information through the user's Internet connection without user's knowledge, most of time for advertising purposes.

Unprotected cookies and monitoring devices are installed on your computer when you go online every time. Once installed, the spyware tracks user activity on the Internet and transmits that data in the background to the spyware author who will either use it for advertising/marketing purposes or sell the information to another party. Spyware can also gather information about e-mail addresses. Or, it can be used for malicious activities like tracking your keystrokes to intercept passwords and credit card numbers or stealing information from your private files. Besides of stealing your privacy, spyware steals from the user by using the computer's memory resources and bandwidth while it sends data back to the spyware's author through the user's Internet connection. It may be resulted in system crashes or general system instability as the spyware runs in the background.

In contrast, Adware is any software offered as free to people who do not want to pay for software. In general, most functions of the freeware are enabled but you will see sponsored advertisements while you are running the software. For example, in free version Eudora, the popular e-mail program will display an ad window in the program while the program is being used. In order to avoid spyware, keep you from downloading free software without reading the site's privacy statement, install a strong anti-spyware program that removes or disables the existing spyware on your computer and works well with your system security, and do not open emails from unknown people.

You can keep your privacy safe and your PC running smooth without losing system resources with the right anti-spyware solution for removing and detecting spyware installed.

About the Author
Linda A owns and operates http://www.spyedware.info Spyware She has been published on several article directories across the net.

Ten Ways To Limit Your Personal Information From Appearing Online

2007-06-22T09:49:00.000+07:00

by Gerald S. Wassum

Internet phone books, people-finding services, and other online directories make it almost impossible to keep your personal contact information entirely off the Web. In fact it's now quite easy for anyone to find your name, phone number, email address and home address online. Now some seeking such information about you may want it for personal, business or social purposes many others merely want to advertise, market or steal from you.

Here are a few ways to help control the amount of personal information that is widely available on the web:

Limit the amount of personal information you give to a site. Only share your primary e-mail address with people you know, and avoid listing any information in large Internet directories.
Always make sure you know how that information will be used by referencing the website's privacy policy and if they do share your information make certain you know who they are sharing your information with before you do business with them.
When you shop online, do your homework. Limit your purchases of expensive, popular items to prominent companies with clear privacy policies. Find out what others say about the sellers and selling sites by reviewing seller and buyer feedback and checking out comparison sites such as Epinions.com or Shopzilla.com.
Always read a website's privacy statement carefully. This statement should tell you how and why a business is collecting your information. If something doesn't sound right to you, contact the company with questions before you divulge any personal information. If the site doesn't post a privacy policy, take your business elsewhere.
Post your resume only on highly recognizable websites. Be sure that any Internet job sites you use have privacy policies that only allow verified recruiters to scan your information. Choose large companies with clearly defined privacy policies such as Monster.com or HotJobs.
Do not participate in sweepstakes or giveaways. Typically these such "sweepstakes" are merely a method to collect your information for marketing and upselling purposes. Do not fall prey to these types of traps.
Find out where you are currently listed by doing your own online research. Search for your name in the popular search engines and in online directories.
Request that your name be removed from online directories. If it's not clear how to do this on a Web site, use the "Contact Us" link or address at the bottom of the directory site.
Get an unlisted phone number or at least have your address unlisted. Also, instruct your phone and Internet service providers to remove any existing personal information of yours from all of their directories.
Set up a special e-mail address solely for online activities such as shopping and newsgroups. This way you can close it if needed and start a new one without disrupting your business or personal e-mail correspondence.
Keep a record any time you give your personal information to a company so you can ask them to remove it later if necessary.

About the Author
Prior to joining Oversight Technology as President and CEO, Mr. Wassum spent thirty-five years at Marathon-Ashland Petroleum LLC, one of the largest petroleum and oil companies in the United States, most recently as the President of Scurlock Permian LLC, a subsidiary of Marathon-Ashland Petroleum. Mr. Wassum received his BSE in Chemical Engineering from the University of Michigan in 1966.

Let's Share Together

2007-06-20T11:30:00.000+07:00

In accordance, we still remain for all readers to submit your ITech and Networking System analyst or others related document/articles about that to my site.

Mean while, comments, suggest and other ideas will accepted by me for greatfull this site.

Thank you very much.

Hackers compromise 10k sites, launch 'phenomenal' attack

2007-06-20T11:22:00.000+07:00

The large-scale attack is based on the multiexploit hacker kit dubbed 'Mpack'
Gregg Keizer Today’s Top Stories or Other Cybercrime and Hacking Stories

June 18, 2007 (Computerworld) -- Attackers armed with an exploit tool kit have launched massive attacks in Europe from a network of at least 10,000 hacked Web sites, with infections spreading worldwide, several security companies warned today.
As early as last Friday, analysts reported the opening salvos of a large-scale attack based on the multiexploit hacker kit dubbed "Mpack." The mechanics of the attacks are complex, but essentially attackers taint each compromised site with code that then redirects visitors to a server hosting the Mpack kit -- a professional, Russian-made collection of exploits that comes complete with a management console to detail which exploits are working and against what countries' domains.
Infected computers are fed a diet of malicious code, largely keyloggers that spy out usernames and passwords for valuable accounts such as online banking sites.
"The gang behind the attack has successfully compromised the homepages of hundreds of legitimate Italian Web sites," said Symantec Corp. researcher Elia Florio in a posting to the vendor's security response blog on Friday. "The list of compromised sites is huge and from Mpack statistics this attack is working efficiently."
Florio said that Symantec is uncertain how the sites were originally hacked but that she suspects a common vulnerability or configuration problem at the hosting level.
Paul Ferguson, a network architect at Trend Micro Inc., would only guess at how sites were hijacked but said that "how" is mostly a moot question. What's important, he said, is that "the hackers seem to be able to find a lot of sites to compromise no matter where they look."
By Friday night, Symantec had pegged the number of compromised sites feeding Mpack exploits at 6,000; by today, Websense Inc., a San Diego-based Web security company, said it had tracked more than 10,000.

"That's a phenomenal number," argued Ferguson, who said that previous compromised-site attacks using hacker kits could be counted as "several hundred here, a couple hundred there."
Screenshots of the Mpack management console posted by Websense on Monday and Symantec on Friday illustrate the large numbers of computers that have surfed to the compromised sites and the high success rate of the Mpack-delivered exploits. Although the bulk of the victim PCs use Italian IP addresses, U.S.-based machines are not immune.
"The lion's share of the sites we're seeing are in Italy still," said Ferguson, "but we're seeing sites all over the world as well." For instance, Trend Micro has identified hacker-controlled sites hosted in California and Illinois. The California site is hosted by a company Ferguson called "notorious," but he wouldn't divulge the hosting vendor's name.
"The usual advice we give, 'Avoid the bad neighborhoods of the Web,' just doesn't hold water anymore," when legitimate sites have been hacked and are serving up exploits left and right, Ferguson said. "Everywhere could be a bad neighborhood now."

Hackers audition Yahoo Messenger exploits

2007-06-13T17:52:00.000+07:00

Gregg Keizer Today’s Top Stories or Other Cybercrime and Hacking Stories

June 11, 2007 (Computerworld) -- Hackers are now using exploits that target Yahoo Inc.'s instant messaging software, security vendors said today, making it critical that users patch the Windows program immediately.

A modified version of an exploit made public last week is being used in the wild, Symantec Corp. said in an alert to customers of its DeepSight threat network. "At least one Web site is known to be hosting the exploit," said Symantec's warning. "Customers are advised to blacklist the n.88tw.net domain."

Last Wednesday, just a day after eEye Digital Security Inc. said it had found a flaw in Yahoo Messenger, a hacker posted details of vulnerabilities in two ActiveX controls distributed with the IM client, along with proof-of-concept exploit code. Later that same day, Yahoo patched Messenger and urged users to download and install the new version as soon as possible.

The SANS Institute's Internet Storm Center's (ISC) analysis noted that the in-the-wild exploit differed only slightly from the code posted last week on the Full-disclosure security mailing list. The exploit lets an attacker hijack the PC, then inject more malware into the computer. "This dropper downloaded further components, of which one was called 5in1.exe," said ISC analyst Bojan Zdrnja yesterday. "We haven't analyzed this yet but judging just by the file name, it doesn't sound good."

Over the weekend, Yahoo also added a "Security Update" warning on the Messenger home page to inform users of the new, patched software.

Dynamic DNS and Windows 2000 Server DHCP

2007-06-13T17:18:00.000+07:00

by Jim Boyce Jun 4, 2007
Tags: Domain names, NETWORKING, dynamic DNS, Jim Boyce, Microsoft Windows 2000 Server, DNS, DHCP, Microsoft Windows 2000, Microsoft Windows

Takeaway: If your Windows 2000 Server still networks with older clients, you'll need to manually configure DHCP in order to update DNS records for those clients. Here's what you need to know about enabling DHCP to update DNS records for all your clients.

Windows 2000 clients can use the dynamic nature of Microsoft Windows 2000 domain name system (DNS) servers. This means that Windows 2000 clients can register and update their own records in the DNS database, but other clients (Windows NT 4, Windows 9x, and others) know nothing about dynamic updates and thus don't update their own records in DNS. You'd still have to manually add, remove, and update DNS records for these clients.

Fortunately, Microsoft provides an option to allow the Windows 2000 Server dynamic host configuration protocol (DHCP) service to update records in DNS on a client's behalf. After Windows 2000 DHCP installation, the DHCP server will update a client's PTR record and let the client update its own A record. This works fine for Windows 2000 clients because they know how to update DNS records, but older clients don't support dynamic updates. If your network still includes non-Windows 2000 clients, you should change this behavior so that DHCP updates both A and PTR records for all clients.

All related settings can be found on the Scope Properties window in the DHCP console (go to Start Programs Administrative Tools DHCP, right-click on Scope and go to Properties DNS). By default, Update DNS Only If DHCP Clients Request is selected; this means that the DHCP server will update a DNS record only upon client request. To enable DHCP to update DNS records for all clients (including non-Windows 2000 machines), you'll need to select Always Update DNS and Enable Updates To DNS Clients That Do Not Support Dynamic Update.

Miss a column?
Check out the Windows 2000 Server archive, and catch up on the all the W2K Server columns.
Want more Win2K tips and tricks? Automatically sign up for our free Windows 2000 Server newsletter, delivered each Tuesday!

Efficient Hardware Repair

2007-06-05T10:31:00.001+07:00

Researchers devise a new way to patch hardware like software, without slowing processors.

By Rachel Ross

Defective chips can be expensive for computer manufacturers, especially when the hardware is recalled. They can also be a hassle for consumers, as they can cause computers to miscalculate, slow down, and, sometimes, crash. Computer-science professor Josep Torrellas thinks he has found a better way to deal with faulty chips: an efficient repair mechanism that treats hardware more like software, by fixing bugs with downloadable patches. His system is still in development, but he says it could ultimately make chip production faster and cheaper.

"We know how to fix software really easily," says Torrellas, a professor at the University of Illinois at Urbana Champaign. "We send patches around. Wouldn't it be nice if you could simply get another patch from the vendor to fix your hardware?"

The centerpiece of Torrellas's system is Phoenix: special hardware that resides on the chip and can be programmed to detect defects and implement solutions. The prototype hardware consists of a standard semiconductor device called a field programmable gate array. While such devices are typically a bit slower than chips made for a single application, they have the advantage of being easily reprogrammed--an essential feature of Torrellas's system.

In some ways, the system works much like antivirus software, which uses downloaded virus information to identify and eliminate new threats. Similarly, if a defect is discovered on a Phoenix-enabled chip, the manufacturer would automatically transmit the patch to all machines that might be affected. The patch contains a defect signature outlining the specific events that lead to the hardware problem. (For example, when the processor executes certain instructions and stores something in a particular part of the computer's memory, the computer might crash.) Once installed, the patch reprograms the Phoenix device so that it monitors the chip for the defect signature and alters the computer's processes to prevent a crash.

Torrellas says that most chips have dozens of defects, although not all are catastrophic: some simply result in miscalculations, for example. Today, manufacturers often deal with hardware problems by disabling features that are found to be defective. "In the end, the user loses functionality," Torrellas says. When no solution can be found and the problem is critical, manufacturers recall the chips at their expense. A patching scheme would avoid those costs and maintain the chip's functionality.

A Phoenix-enabled chip would also have a shorter time to market, according to Torrellas. Manufacturers could skip the last few weeks of testing, knowing that ultimately, they can solve problems with patches. "If they know that they could fix the problems later on, they could beat the competition to market," he says.

Five ways to make Outlook Express more secure

2007-05-28T18:08:00.000+07:00

by Michael Mullins CCNA, MCP More from Michael Mullins CCNA, MCP

Microsoft Outlook Express is a popular and free e-mail client that comes bundled with most versions of Windows client (except for Windows Vista, which replaces Outlook Express with Windows Mail). It's easy to set up, and it's easy to use.

However, it's also a target for a lot of current and future hacks and viruses -- thanks to the fact that it's an e-mail client (one of the preferred methods of virus delivery) and its tight integration with Internet Explorer (the most heavily targeted browser of black hats). But just because it's popular with the bad guys doesn't mean you have to pay for a client to read your e-mail.
You can still use Outlook Express safely: You just need to add a little security and follow a few simple rules. Here are five ways to make Outlook Express more secure.

Prevent applications from sending e-mail
A virus that wants to replicate and share itself with other computers will try to use Outlook Express to get the job done. But it's rather easy to prevent. In Outlook Express, go to Tools Options, select the Security tab, and enable the Warn Me When Other Applications Try To Send Mail As Me option.

Turn off HTML e-mail
Although HTML e-mail looks cool with all of its pictures and links, it's a dangerous format overall. Web bugs, bogus links, and a host of other nasty problems can do a great deal of damage to your computer. Sometimes just opening an HTML e-mail is enough to launch a malicious surprise. That's why I recommend using text mail instead.

To disable HTML e-mail in Outlook Express, go to Tools Options, select the Mail Sending Format tab, and select the Text option. To configure Outlook Express to read HTML e-mail as text, which strips away any malicious content, go to Tools Options, select the Read tab, and select the Read All Messages In Plain Text option.

Give up the Preview Pane
The Preview Pane definitely comes in handy when scanning through e-mails. However, it's actually quite dangerous: The operating system considers previewing an e-mail and opening an e-mail to be the same thing. To get rid of the Preview Pane, go to View Layout, and deselect the Show Preview Pane option.

Disable JavaScript
The malicious use of JavaScript can pull a lot of information off a computer -- specifically, browsing history and cookies. It can't format your hard drive, but it can help someone steal information without your knowledge.
Because of Outlook Express' integration with Internet Explorer, disabling JavaScript takes a little more effort. Follow these steps:
In Outlook Express, go to Tools Options, and select the Security tab.
Enable the Restricted Sites Zone (More Secure) option.
Go to Start Control Panel, and double-click the Internet Options applet.
On the Security tab, click the Custom Level button.
Under Scripting, select Disable under the Active Scripting heading.
Note: This also disables Visual Basic scripts (VBS).

Block potentially malicious attachments
Some attachments are bad; some are good. But sometimes, it's just better to be safe. To disable potentially malicious attachments, go to Tools Options, select the Security tab, and select the Do Not Allow Attachments To Be Saved Or Opened That Could Potentially Be A Virus check box under Virus Protection.
If you enable this option, Outlook Express uses the Internet Explorer 6 Unsafe File list and the Confirm Open After Download setting in Folder Options to determine whether a file is safe. It blocks the download of any e-mail attachment with a file type reported as "unsafe."
Note: Outlook Express Service Pack 1 enables this option by default.

Final thoughts
Outlook Express is a handy, easy-to-use e-mail client -- it just needs a little help in the security department. You don't need to dump it because of security integration flaws with Internet Explorer; you just need to add a little security and remember to never open an attachment from someone you don't know.
Miss a column?
Check out the Security Solutions Archive, and catch up on the most recent editions of Mike Mullins' column.

Worried about security issues? Who isn't? Automatically sign up for our free Security Solutions newsletter, delivered each Friday, and get hands-on advice for locking down your systems.
Mike Mullins has served as an assistant network administrator and a network security administrator for the U.S. Secret Service and the Defense Information Systems Agency. He is currently the director of operations for the Southern Theater Network Operations and Security Center.

Learn about changes to Cisco's CCNP certification

2007-05-25T09:37:00.000+07:00

by David Davis CCIE, MCSE+I, SCSA More from David Davis CCIE, MCSE+I, SCSA

Last year, Cisco made some important modifications to its Cisco Certified Network Professional (CCNP) certification program, and the changes took effect Jan. 1, 2007. If you're thinking about pursuing CCNP certification, it's important that you know about these changes.
What is the CCNP?
The CCNP is so popular that most members are more than likely familiar with it. But just in case, here's a brief overview.
The CCNP program is an intermediate-level certification for networking professionals. According to Cisco, this certification "validates a network professional's ability to install, configure, and troubleshoot converged local and wide area networks with 100 to 500 or more nodes."
The CCNP falls between the Cisco Certified Network Administrator (CCNA) and the Cisco Certified Internetwork Expert (CCIE) certifications in Cisco's Routing and Switching track. The CCNP is the most popular intermediate-level certification that Cisco offers.
To earn CCNP certification, you can take one of two tracks to certification. One track offers four individual exams; the other offers one consolidated exam and two individual exams. Prior to taking CCNP exams, you must already have CCNA status. If you don't have your CCNA yet, start by learning more about the certification at the Cisco CCNA Prep Center.
Changes to the CCNP exam requirements
In the old CCNP program, you needed to pass these exams:
642-821 BCRAN: Building Cisco Remote Access Networks
642-831 CIT: Internet Troubleshooting Support
642-801 BSCI: Building Scalable Cisco Internetworks
642-811 BCMSN: Building Cisco Multilayer Switched
Under the new program, you need to pass these exams instead:
642-825 ISCW: Implementing Secure Converged Wide Area Networks
642-845 ONT: Optimized Converged Cisco Networks
642-901 BSCI: Building Scalable Cisco Internetworks
642-812 BCMSN: Building Converged Cisco Multilayer Switched Networks
Cisco has added important subject material to each of these exams. The ISCW and ONT exams are completely different tests that replace the BCRAN and CIT exams.
In these changes, you can see how Cisco's focus has changed. In the ISCW, the emphasis has shifted from the concept of remote access (usually dial-up) to security (usually VPNs for remote access and Internet security).
In the ONT, the focus has changed from merely troubleshooting networks to actually making the network more efficient. In addition, note the addition of converged to each exam's name. Organizations are moving more and more toward converged networks—one network for voice, data, and video.
The remaining two exams, BSCI and BCMSN, don't appear to have changed at all. But don't let the names fool you. The test numbers have changed—and so has the test content.
The BSCI now includes more material on services that a router can offer at the edge of the network (such as DHCP) and multicast (because of its use in a converged network). The BCMSN now contains more information on voice and wireless.
It's obvious that Cisco has updated these exams to keep current with networking today. That's very important for the certification in general because it keeps the CCNP certification valuable.
Preparation material for the CCNP
No one takes a Cisco certification exam without using some kind of preparation material. This could be an instructor-led class, information from the Internet, test simulation software, books, study guides, or computer-based training (CBT).
When preparing for this certification, keep in mind that many materials you may find are outdated. As of Jan 1, 2007, you can only take the new CCNP exams. And newly updated exams means there's not a lot of preparation materials available yet. In fact, there isn't a lot available even from Cisco Press.
Currently, Cisco Press offers two books for the CCNP.
Building Scalable Cisco Internetworks (BSCI) (Authorized Self-Study Guide), 3rd Edition
CCNP BCMSN Official Exam Certification Guide, 4th Edition
A third will publish this month: Building Cisco Multilayer Switched Networks (BCMSN) (Authorized Self-Study Guide), 4th Edition. In addition, two more are on the publishing schedule for May 2007. Besides the TechRepublic Web site, Cisco's CCNP Prep Center is another good source for information for the new CCNP changes.
Do you have any Cisco certifications, or are you currently pursuing one? What do you think about the changes to the CCNP exams? Do you have any preparation materials to recommend. Share your thoughts in this article's discussion.
Miss a column?

Analysis: Microsoft patent claims hint at internal issues

2007-05-15T18:51:00.000+07:00

by: Elizabeth Montalbano Today’s Top Stories or Other Intellectual Property and DRM Stories

May 14, 2007 (IDG News Service) -- Microsoft Corp.'s aim to seek patent royalties from open-source software distributors and users may be an attempt to use legal threats to deflect attention from larger questions surrounding its business -- including lack of interest in new versions of core products and lackluster profit from new wares.
Microsoft's claims that it will ask distributors and users to pay royalties for up to 235 of its patents included in open-source software, including Linux, is clearly an attempt to spread fear, uncertainty and doubt and make people hesitant to use open source as an alternative to commercial products, intellectual property (IP) attorneys said. But the claims also raise questions about the business strategy behind Microsoft's aggressive moves amid rumbles that customers have been slow to adopt Windows Vista and Office 2007 while new products such as the Xbox 360 remain unprofitable.
The issue came to light today with the publication of a Fortune article that quoted Microsoft CEO Steve Ballmer saying, "We live in a world where we honor, and support the honoring of, intellectual property," and adding that users of free and open-source software have to "play by the same rules as the rest of the business. What's fair is fair." The article included comments from additional Microsoft executives detailing plans to seek the infringement claims, and just as it was posted online, Microsoft sent e-mails to other journalists about the issue.
One of the operations targeted, OpenOffice.org, quickly fired back, saying Microsoft's claims are a desperate move.
There may be a link between the timing of Microsoft's patent claims and the release of Windows Vista, said Stuart Meyer, a partner at law firm Fenwick & West LLP in Mountain View, Calif. Rather than adding features to Vista that would make business users want to adopt it, the operating system's distinguishing characteristic is the addition of an engine that will shut down users' access to the operating system if they are using a counterfeit or pirated version, he said.

130 things you should know...about computer equipment

2007-05-04T07:54:00.000+07:00

by TechRepublic Blogs: Tech Sanity Check Project Management Microsoft Office Help Desk Window On Windows Tech News Programming and Development Security Geekend Tech Manager Networking Career Open Source

10 things you can do to give old servers a second life
10 things you should know about building a PC from scratch
10 things you can do to optimize and maintain your PCs
10 things to look for in a server chassis
10 things to look for in a business-class battery backup
10 things to look for in a PDA/cell phone
10 things you should know before you buy an 802.11n wireless device
10 things to consider when leasing computers
10 things you should know about saving money on computer hardware
10 ways to protect systems from electrical catastrophes
10 things you should know about deploying technology in harsh environments
10 things to seek in an uninterruptible power supply/surge-protection device
10 things you should know about deploying a UPS

Five ways to make Outlook Express more secure

2007-04-30T18:34:00.000+07:00

by Michael Mullins CCNA, MCP More from Michael Mullins CCNA, MCP
Tags: E-mail messages Viruses and worms Security threats Spyware/adware
Rewriter by: http://www.RasyidSuyitno.WS

Takeaway: Outlook Express is a handy, easy-to-use e-mail client -- it just needs a little help in the security department. Mike Mullins lists five ways you can boost the security of Outlook Express.
Microsoft Outlook Express is a popular and free e-mail client that comes bundled with most versions of Windows client (except for Windows Vista, which replaces Outlook Express with Windows Mail). It's easy to set up, and it's easy to use.
However, it's also a target for a lot of current and future hacks and viruses -- thanks to the fact that it's an e-mail client (one of the preferred methods of virus delivery) and its tight integration with Internet Explorer (the most heavily targeted browser of black hats). But just because it's popular with the bad guys doesn't mean you have to pay for a client to read your e-mail.
You can still use Outlook Express safely: You just need to add a little security and follow a few simple rules. Here are five ways to make Outlook Express more secure.
Prevent applications from sending e-mail a virus that wants to replicate and share itself with other computers will try to use Outlook Express to get the job done. But it's rather easy to prevent. In Outlook Express, go to Tools Options, select the Security tab, and enable the Warn Me When Other Applications Try To Send Mail As Me option.
Turn off HTML e-mail although HTML e-mail looks cool with all of its pictures and links, it's a dangerous format overall. Web bugs, bogus links, and a host of other nasty problems can do a great deal of damage to your computer. Sometimes just opening an HTML e-mail is enough to launch a malicious surprise. That's why I recommend using text mail instead.
To disable HTML e-mail in Outlook Express, go to Tools Options, select the Mail Sending Format tab, and select the Text option. To configure Outlook Express to read HTML e-mail as text, which strips away any malicious content, go to Tools Options, select the Read tab, and select the Read All Messages In Plain Text option.
Give up the Preview Pane The Preview Pane definitely comes in handy when scanning through e-mails. However, it's actually quite dangerous: The operating system considers previewing an e-mail and opening an e-mail to be the same thing. To get rid of the Preview Pane, go to View Layout, and deselect the Show Preview Pane option.
Disable JavaScript The malicious use of JavaScript can pull a lot of information off a computer -- specifically, browsing history and cookies. It can't format your hard drive, but it can help someone steal information without your knowledge.
Because of Outlook Express' integration with Internet Explorer, disabling JavaScript takes a little more effort. Follow these steps:
1. In Outlook Express, go to Tools Options, and select the Security tab.
2. Enable the Restricted Sites Zone (More Secure) option.
3. Go to Start Control Panel, and double-click the Internet Options applet.
4. On the Security tab, click the Custom Level button.
5. Under Scripting, select Disable under the Active Scripting heading.
Note: This also disables Visual Basic scripts (VBS).

Block potentially malicious attachments Some attachments are bad; some are good. But sometimes, it's just better to be safe. To disable potentially malicious attachments, go to Tools Options, select the Security tab, and select the Do Not Allow Attachments To Be Saved Or Opened That Could Potentially Be A Virus check box under Virus Protection.
If you enable this option, Outlook Express uses the Internet Explorer 6 Unsafe File list and the Confirm Open After Download setting in Folder Options to determine whether a file is safe. It blocks the download of any e-mail attachment with a file type reported as "unsafe."
Note: Outlook Express Service Pack 1 enables this option by default.
Final thoughts Outlook Express is a handy, easy-to-use e-mail client -- it just needs a little help in the security department. You don't need to dump it because of security integration flaws with Internet Explorer; you just need to add a little security and remember to never open an attachment from someone you don't know.

Windows cursor patch causing trouble

2007-04-05T18:45:00.000+07:00

By Joris Evers Staff Writer, CNET News.com

Video: Hacking a Vista PC

Installing Microsoft's Tuesday patch for a "critical" Windows vulnerability is causing trouble for some users. Microsoft broke with its monthly patch cycle Tuesday to repair a bug in the way Windows handles animated cursors. Cybercrooks had been using the hole since last week to attack Windows PCs.

But the fix is not compatible with software that runs audio and networking components from Realtek Semiconductor, some Windows users have found.

"Apparently the update is not compatible with Realtek," CNET News.com reader Dave House wrote in an e-mail. "We lost all Ethernet and audio functions. Removing the update and doing system restores brought the systems back."
Microsoft is aware of problems with Realtek's audio software. In fact, it knew about them before releasing the fix and published a support article with the security bulletin. An additional update is available from Microsoft to remedy the problem, according to the company's Web site. Microsoft is not aware of networking issues, a representative said.

The audio problem occurs on Windows XP PCs that have the Realtek HD Audio Control Panel installed, Microsoft said. The application may not start after the patch is applied and Windows may display an error message, the company said.
Microsoft consciously released the cursor flaw patch despite the compatibility problem, Mike Reavey, a Microsoft Security Response Center staffer, wrote on a corporate blog. The company tested the fix throughout February and March and eliminated many problems, he wrote.

"At one point our testing had uncovered over 80 potential issues with the update that were investigated and resolved...at the time of release, only one minor quality issue was known," Reavey wrote. The cursor vulnerability is one of seven flaws addressed by Microsoft's Tuesday patch--three of them also affect Vista. Cybercrooks moved quickly to exploit the cursor hole. Security firm Websense has spotted hundreds of Web sites that try to use the bug to compromise PCs, as well as an e-mail spam campaign with links to the malicious sites.
Microsoft plans to issue additional fixes next week on its regular monthly patch day, the company said.

Top Ten TIPS & TRICKS

2007-04-05T18:20:00.000+07:00

Search your PC with Vista Instant Search
Filed under: Desktops, Laptops, Windows Vista series
Windows Vista Upgrade Advisor
Filed under: Desktops, Laptops, Windows Vista series
Online resources for podcasters
Filed under: MP3 and digital music
HDTV mood lighting
Filed under: TVs
Buying a graphics card for PC gaming
Filed under: Desktops, Games and gear
How not to get hacked
Filed under: Networking and Wi-Fi
Adjust your HDTV picture controls
Filed under: TVs
How to 'clean install' an upgrade copy of Vista
Filed under: Desktops, Laptops, Windows Vista series
Airbrush away photo mistakes
Filed under: Digital cameras
Use a blog to connect with your customers
Filed under: Internet access

AGLOCO - UPDATE

2007-03-02T20:28:00.000+07:00

The Viewbar is currently slated for a March release.

Keep on top of all AGLOCO Updates at the company blog : http://blog.agloco.com.

Visit our new Member Blog page :http://www.agloco.com/web/guest/blogarticle

Check out the AGLOCO Top Gun recruiters list : http://agloco-top-gun.spaces.live.com

Maybe you should be on it.

And now please SIGN-UP just follow this link http://www.agloco.com/r/BBBK5257

iftitah

2006-04-30T12:40:00.000+07:00

Bismillah.........

kala ayat-ayat cinta menetesi jiwa
raga tergoda
mengeliat
hingga terbang
mengepakan sayap ke langit ketujuh
cumbuannya
membuat ku luruh.......

apakah ini cinta yang menggoda...

cinta yang mebuat ku hanya punya satu ingin........
saat kurajut hari dengan meniti inginnya 4JJI,
Maunya 4JJI,
Ridhonya 4JJI,
Sang pemilik cinta dan hati ini sebenarnya

kala cinta menggoda ,biarkanlah aku terbang setinggi mungkin
terbang yang menebarkan cahaya-Nya