Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [network-security]

49 questions
11
votes
3 answers

If public IPs are pinned to a single AS, how does BGP anycast work?

It is my understanding that public IP blocks are assigned from IANA, which assigns sub-blocks to RIRs, which assigns sub-blocks to ISPs, which assigns sub-blocks to individual ASs as outlined in this question: How are IP addresses actually…
turtlemonvh
  • 293
  • 1
  • 8
5
votes
2 answers

Security Considerations of AWS Private Subnet vs Private Security Group

AWS Virtual Private Cloud allows several ways of restricting access to devices on the VPC network from the Internet. 1) Place devices into a private subnet (no Internet Gateway). Each device can communicate with other devices using private IP's. No…
hellodanylo
  • 153
  • 6
2
votes
0 answers

Does an IP lockout policy prevent most public RDP attacks?

My company uses RemoteApp to provide a "cloud edition" of our desktop software. The RDP port has been changed from default, and we run RDP Shield, which blocks the IP address after 5 failed login attempts. Each customer has their own Windows user…
Kyohei Kaneko
  • 121
  • 2
2
votes
1 answer

Apartment-wide single SSID / multiple password Wi-Fi network security concerns?

My apartment building is changing internet providers, and the new provider plans to install a network that will have a single SSID for the entire building. Each tenant will be given a unique password that is supposed to make it so each unit is…
bigreddmachine
  • 121
  • 2
1
vote
0 answers

Install SMBv1 client on win10 without admin or compromising security?

This relates to Sending files from win10 to SMBv1 server? but it is broader. Feel free to edit/move/remove. Windows 10 update 1803 removes all functionality of SMBv1 unless explicitly set so by admin, by using the windows procedure for installing…
bliako
  • 147
  • 6
1
vote
1 answer

Can user credentials from HTTP session be seen through Wireshark?

Can we get that info the same way we do for FTP since HTTP is a plain text protocol?
Yoane Maior
  • 21
  • 2
1
vote
1 answer

What to do with log entries indicating intended attacks at my server

Since last week I am running a web server (Apache2 on Ubuntu, accessible by IP only) and I reckon that I am most vulnerable now that I don't know well what to pay attention to, so I'll ask the experts just in case. When looking at the access logs, I…
doetoe
  • 111
  • 3
1
vote
2 answers

encrypting network traffic passing over 'untrusted' segment of Ethernet cable

let's say i have two office spaces in a multi-tenant building. landlord was kind enough to provide me with copper cat 6 cable connecting both of the disjoint spaces. i could just attach network switches at both ends and create a flat L2 network. but…
pQd
  • 29,561
  • 5
  • 64
  • 106
1
vote
1 answer

Blocking SSH access from WAN side of CISCO 890 to management plane

I've been round about the houses with this one for days, i've not found a solution yet that works. I haven't found a way to block the HTTP access to the management plane either, i had to give up and disable it completely. In my show run: ip…
Owl
  • 121
  • 6
1
vote
0 answers

Is there a way to modify specific IP options through iptables?

In IP header there is a option 130 - specified in RFC 1108, it adds some security options for IP packet, like mandatory access control levels and categories. My task is to try to modify at least level (it starts at 3rd byte of option) only by Linux…
kiyama
  • 11
  • 2
1
vote
0 answers

Location of authpriv.notice logs on Bitnami

I have a Bitnami server, Ubuntu Xenial, on AWS LightSail. I followed this tutorial to restrict SSH connections by country. This script ipfilter.sh filters IP addresses: #!/bin/bash # License: WTFPL # UPPERCASE space-separated country codes to…
miguelmorin
  • 229
  • 4
  • 13
1
vote
0 answers

Do we need Fail2ban for VPN server?

we are using Ubuntu 20.04 LTS vps and running OpenVPN on it. We use certificate key to login to SSHD and the vps is not using any other program(eg. webserver etc). Would you recommend installing and use Fail2ban to enhance the security? As what we…
aboka
  • 11
  • 4
0
votes
0 answers

Get information about MAC address

My router (FritzBox 7330) shows tons of errors about a device that continuously try to connect to my network: 23.12.19 10:17:07 Registrazione del dispositivo wireless fallita: chiave wireless non valida. Indirizzo MAC:…
Mark
  • 135
  • 1
  • 1
  • 7
0
votes
2 answers

Prevent Unjoined-to-domain computers from connecting to my network

How to prevent any computer that is not joined to the domain from requesting any service from my network? Considering that the computer is on another network.
Alaa AlHafez
  • 11
  • 1
  • 4
0
votes
1 answer

Multiple internet connections and single firewall appliance

The company that I work for has three internet connections. We're planning to install a single firewall appliance that covers all of the three connections. I can theoretically imagine it being done by connecting all of the network lines to a single…
Arpan Adhikari
  • 1
  • 1
1
2 3 4