Firewalls & Security
Are you secure?
We've had our share of attempted hacks by our competitors - in one instance where we displaced an IT company who weren't too happy and started a DoS attack, we set up the necessary trace during their attack to present their MD with the evidence and a polite invitation to stop or have a police visit.
In short, to keep ahead of the game, we've become gamekeepers turned poachers including a server installed in our datacentre loaded with some "interesting software" capable of exploiting even the slightest security flaw. We've had some very interesting reactions when we've called a new prospect to give them their login password.
To keep ahead of the game, we've had to become "gamekeepers turned poachers". We have the skills and tools to attempt to hack any system with even the slightest flaw. We have developed a server which literally assaults the target. It has a number of tools we use to double-check when installing a new firewall or expose an existing one. We've had some very interesting reactions when we've called a customer to give their login password. Security is one of those topics that requires individual environmental analysis, but as an overview:
Security is one of those topics that requires individual environmental analysis, but as an overview:
First level:
All DSL lines installed by us use ICSA certified router. This keeps moderate attempts and "drive-by" probes at bay.
Second level:
Where requested, we will install a second (also ICSA) device - either ISA or a Zywall, depending on circumstances. This creates a public and private side.
Third level:
A ultimate solution is a Demiliaratized Zone (DMZ) where ISA is on a separate server hence creating two internal networks. Material to be available to the web (i.e. reverse publishing) is held on the external network creating a second firewall before progressing to the inner network.