Home / Blogs
Follow this blog:
RSS
Email Alert

IT Security

Selena Frye

Selena Frye

TechRepublic Staff

Selena Frye

Selena Frye
Selena has been at TechRepublic since 2002. She is currently a Senior Editor with a background in technical writing, editing, and research. She edits Data Center, Linux and Open Source, Apple in the Enterprise, The Enterprise Cloud, Web Designer, and IT Security blogs.
  • 258

    The truth about viruses

    Once every couple months or so, I find myself explaining to someone that the flood of viruses everyone has come to expect is not an unavoidable side effect of an increasingly networked world....

    Posted by Chad Perrin | September 12, 2007, 10:45 AM PDT | Latest comment by apotheon

  • 41

    Force users to log off when their time is up

    Last time, I told you how to control access to home and workgroup machines by implementing logon restrictions using the net user command ("Restrict logon access with this command"). In response, a...

    Posted by Mike Mullins | September 6, 2007, 12:24 PM PDT | Latest comment by mlevine@...

  • 21

    Firefox 3: A look at its new security features

    Mozilla Firefox is one of the most popular Web browsers around today. But what does the Mozilla team have in store for us along security lines? To find out, let's take a look at the pre-release...

    Posted by Chris Torres | September 5, 2007, 12:19 PM PDT | Latest comment by apotheon

  • 0

    Use mtree for filesystem integrity auditing

    A little over a week ago, I offered an explanation for how you might use rsync for filesystem integrity auditing, as a follow-up to my previous post about implementing integrity auditing with...

    Posted by Chad Perrin | September 5, 2007, 10:22 AM PDT

  • 29

    Why there's no such thing as a trusted brand

    In my last post, "Rootkit redux: Sony doesn't learn from history," I discussed the problem of a vendor whose software isn't only poorly secured but actually unsecure by design. Similarly, on...

    Posted by Chad Perrin | September 2, 2007, 11:41 AM PDT | Latest comment by Sterling "chip" Camden

  • 16

    Restrict logon access with this command

    Do you need to make sure employees aren't cruising the Internet or using the network to browse inappropriate sites or copy proprietary data? What if you just want to control when your children can...

    Posted by Mike Mullins | August 30, 2007, 1:49 PM PDT | Latest comment by keithlattanzi@...

  • 35

    Rootkit redux: Sony doesn't learn from history

    Remember the Sony/BMG rootkit scandal in 2005? It was all over the news how Sony/BMG was distributing rootkits with its DRM software on legitimately purchased music CDs. Of course, Sony eventually...

    Posted by Chad Perrin | August 30, 2007, 10:02 AM PDT | Latest comment by apotheon

  • 1

    Use rsync for filesystem integrity auditing

    A few days ago, I discussed implementing an integrity auditing system using basic utilities. The point of that article was mostly to sketch out the often unexpected ways that a security...

    Posted by Chad Perrin | August 26, 2007, 4:15 PM PDT

  • 9

    Pinpoint vulnerabilities on your system with Nessus

    Fixing vulnerabilities is an ongoing process that requires diligence -- it's not something you can ever cross off your task list. However, there are plenty of excellent tools available that will...

    Posted by Mike Mullins | August 23, 2007, 11:33 AM PDT | Latest comment by steve_slayer64@...

  • 13

    Audit your Cisco router's security with Nipper

    While recently talking with a fellow network admin, I learned about Nipper. While there are many tools available to perform security audits of network devices, Nipper is unique. Let me show you...

    Posted by David Davis | August 23, 2007, 10:56 AM PDT | Latest comment by nacht@...

  • 2

    Implement integrity auditing with basic utilities

    The computing world is full of security tools. Ultimately, however, the only tool that can provide you with something approaching 100 percent certainty that your system hasn't been compromised by...

    Posted by Chad Perrin | August 22, 2007, 8:16 AM PDT | Latest comment by jcadbiz

  • 14

    10 (+1) reasons to treat network security like home security

    As I pack up my various technical references and novels in preparation for moving tomorrow, it occurs to me that the front door of your house can teach you some things about IT security....

    Posted by Chad Perrin | August 17, 2007, 12:53 PM PDT | Latest comment by joanyarrington@...

  • 0

    Troubleshoot IPSec with these tips

    Running IPSec to secure your network's communication traffic provides a very strong layer of defense to your network. However, it's important that you test these policies before deploying them and...

    Posted by Mike Mullins | August 16, 2007, 12:04 PM PDT

  • 5

    The three elements of access control

    Effective security starts with understanding the principles involved. Simply going through the motions of applying some memory set of procedures isn't sufficient in a world where today's "best...

    Posted by Chad Perrin | August 15, 2007, 5:43 PM PDT | Latest comment by apotheon

  • 6

    Security specialists' salaries are up... so what?

    Baseline magazine reports that IT security specialists' salaries have been rising in the first half of 2007. Security professionals saw an initial jump in demand after Sept. 11, 2001, but the...

    Posted by Chad Perrin | August 10, 2007, 2:02 PM PDT | Latest comment by jim.greenstreeter@...

  • 1

    Two proactive steps to protect data when using Windows EFS

    Depending on the community that your network serves and the information contained on that network, the government may require you to encrypt that data. But even if you're not subject to such...

    Posted by Mike Mullins | August 9, 2007, 1:25 PM PDT | Latest comment by CaptainGoodnight

  • 4

    Adobe-FedEx Kinko's: Convenience and collaboration, or collusion and security breach?

    Back in June, Adobe added a new print feature to the latest version of its popular Acrobat and Reader applications, version 8.1. Instead of printing right to your own home or business printer,...

    Posted by Eve Lee | August 7, 2007, 1:33 PM PDT | Latest comment by Big Ole Jack

  • 5

    There's more to security than counting vulnerabilities

    It's important, when making decisions related to IT security, that you keep in mind not only what options you have and their relation to various measures of security, but also what security...

    Posted by Chad Perrin | August 6, 2007, 2:41 PM PDT | Latest comment by Justin James

  • 13

    Rootkits 201

    Once you have security measures in place to protect you against unauthorized access to your computers and data, as well as the means to detect rootkits in case security is compromised despite your...

    Posted by Chad Perrin | August 1, 2007, 6:45 AM PDT | Latest comment by ben@...

  • 1

    Beef up Active Directory security with these three steps

    The Active Directory (AD) structure and the data contained in that structure are the keys to a Windows domain, and it's vital that you implement the proper security and delegation. Here are three...

    Posted by Mike Mullins | July 31, 2007, 10:55 AM PDT

  • 2

    List open ports and listening services

    You should turn off any services you don't actually need so that they will not become avenues of attack for security threats. Different systems will have different services running by default,...

    Posted by Chad Perrin | April 15, 2008, 8:47 PM PDT | Latest comment by jackhard

  • 151

    Hackers: From innocent curiosity to illegal activity

    Researchers asked why talented youth skilled in "computerese" evolve into criminal hackers. Michael P. Kassner explains their unexpected results.

    Posted by Michael Kassner | May 6, 2013, 7:59 AM PDT | Latest comment by mattohare@...

  • 36

    Cloud-service contracts and data protection: Unintended consequences

    There are things your cloud-service (Facebook, Amazon, Google, Dropbox, etc.) contracts aren't telling you. Michael P. Kassner interviews an attorney concerned about what's not being said.

    Posted by Michael Kassner | May 13, 2013, 11:52 AM PDT | Latest comment by Michael Kassner

  • 36

    Battling the Google Redirect virus

    Consultant Bob Eisenhardt recounts his frustrating experience trying to track down and get rid of a client's search-redirect virus. Here's how he finally ditched it.

    Posted by Bob Eisenhardt | January 2, 2013, 10:56 AM PST | Latest comment by Jane3344

  • 103

    DropSmack: Using Dropbox to steal files and deliver malware

    Michael P. Kassner interviews a digital forensic scientist who uses Dropbox to compromise targeted networks -- something the bad guys probably figured out as well.

    Posted by Michael Kassner | April 15, 2013, 7:46 AM PDT | Latest comment by Michael Kassner

  • 15

    BoxCryptor vs. DropSmack: The battle to secure Dropbox

    Can DropSmack malware be stopped? Michael P. Kassner asks the creators of BoxCryptor if it is up to the task of securing the Dropbox file-synchronization service.

    Posted by Michael Kassner | April 29, 2013, 10:30 AM PDT | Latest comment by Michael Kassner

  • 63

    How to spoof a MAC address

    MAC address filtering for wireless networking isn't real "security". Anyone who pays any attention to current trends in wireless security at all should know that MAC filtering is less effective...

    Posted by Chad Perrin | January 22, 2008, 1:28 PM PST | Latest comment by Doug Vitale

  • 8

    Aaron Swartz legacy lives on with New Yorker's Strongbox: How it works

    Strongbox was Aaron Swartz's final project. Michael P. Kassner explains why The New Yorker requested a way to keep sources and their information secret.

    Posted by Michael Kassner | May 20, 2013, 7:17 AM PDT | Latest comment by tylerpitchford

  • 10

    The basics of using a proxy server for privacy and security

    Patrick Lambert goes over the basics of how proxy servers work and why they are used to add security and privacy.

    Posted by Patrick Lambert | December 5, 2012, 6:30 AM PST | Latest comment by Tony Hopkinson

  • 0

    DDoS attack methods and how to prevent or mitigate them

    Patrick Lambert covers the various methods attackers use to launch distributed denial of service attacks, and the precautions you can take to prevent or at least, mitigate these types of events.

    Posted by Patrick Lambert | October 15, 2012, 11:24 AM PDT

  • 67

    Use PuTTY as a secure proxy on Windows

    Last month, I wrote about using OpenSSH as a secure Web proxy on UNIX and Linux systems. This time, I'll show you how to do the same thing on Microsoft Windows using PuTTY -- probably the single...

    Posted by Chad Perrin | March 10, 2008, 4:30 PM PDT | Latest comment by abaabaa

  • 0

    Security lessons from the 2013 Verizon Data Breach Report

    Verizon's latest report on data breach statistics offers security pros a guide to the most persistent threats and where attention should be focused to defend against them.

    Posted by Alfonso Barreiro | May 15, 2013, 6:00 AM PDT

  • 21

    Software-Defined Networking: How it affects network security

    SDN technology is set to rewrite the book of networking. Michael P. Kassner looks into how SDN will improve security, and where it's vulnerable.

    Posted by Michael Kassner | April 8, 2013, 7:13 AM PDT | Latest comment by Michael Kassner

  • 64

    Dropbox: Convenient? Absolutely, but is it secure?

    A potential security lapse and possibly misleading statements are plaguing Dropbox, a hugely popular file-syncing app. What are the issues and is concern justified?

    Posted by Michael Kassner | June 13, 2011, 8:03 AM PDT | Latest comment by kprivigyi@...

  • 5

    The future of IT security compliance: 201 CMR 17.00

    Why should you be concerned about a security rule that is part of the State law of Massachusetts -- especially if you aren't in business there? Donovan Colbert explains how compliance regulations...

    Posted by Donovan Colbert | April 30, 2013, 6:00 AM PDT | Latest comment by dcolbert@...

  • 9

    New McAfee patent hints at a more walled-off online world

    A McAfee patent hints at content filtering at the user level in order to block sites that offer pirated content.

    Posted by Patrick Lambert | May 3, 2013, 9:00 AM PDT | Latest comment by public_domain

  • 36

    Understanding what motivates Chinese hackers

    Michael P. Kassner, with the help of a noted academic and author, looks at what motivates Chinese hackers. It may not be what you think.

    Posted by Michael Kassner | April 22, 2013, 10:16 AM PDT | Latest comment by HAL 9000

  • 101

    Hacker vs. cracker

    The word "hacker" gets used in a pejorative sense by journalists an awful lot. Some people think this is perfectly reasonable; others find it offensive, and recommend an alternative term for that...

    Posted by Chad Perrin | April 17, 2009, 1:20 PM PDT | Latest comment by wizard57m-cnet

  • 74

    10 services to turn off in MS Windows XP

    As I pointed out on 19 October, in point number four of the article 10 security tips for all general-purposes OSes, an important step in the process of securing your system is to shut down...

    Posted by Chad Perrin | November 7, 2007, 10:02 AM PST | Latest comment by JonB2008

  • 11

    The CIA Triad

    The CIA Triad is a venerable, well-known model for security policy development, used to identify problem areas and necessary solutions for information security. Read on for an introduction to the...

    Posted by Chad Perrin | June 30, 2008, 3:13 PM PDT | Latest comment by white house

Keep Up with TechRepublic

Discover more newsletters

Follow us however you choose!

Media Gallery

View All

Hot Questions

Ask a Question
View All

Hot Discussions

Start a Discussion