Security Certified Program Review

[Shahriar]

Dear friends,

Are you bothered by the security of your network? Are you at a loss before a number of network security technologies? The Security Certified Program offers THREE certifications to validate your security skill set. The SCP has certified people in more than 40 countries.

SCNS

The Security Certified Network Specialist (SCNS) program focuses on the critical defensive technologies that are the foundation of securing network perimeters, such as firewalls, intrusion detection, and router security.

The SCNS certification requires the passing of one exam (number SC0-451).

Prerequisite for this certification is CompTIA Security+ or equivalent experience.

SCNP

The Security Certified Network Professional (SCNP) program focuses on the required elements of securing a network, such as securing Windows and Linux systems.

The SCNS certification requires the passing of one exam (number SC0-471).

The prerequisite for this certification is the SCNS.

SCNA

The SCNA program will focus on the advanced security skills and technologies of building trusted networks.

The SCNA program is divided into two exams: Enterprise Security Implementation (ESI) （number SC0-501） and The Solution Exam (TSE) (number SC0-502).

Prerequisite for this certification is the SCNP.

SCP offers training classes and self-study materials in preparation of the SCP program. For details, go to http://www.securitycertified.net/training_schedule.htm .

Pass4sure provides latest SCP exam questions and answers to ensure you pass the exams. For details, go to http://www.pass4sure.com/SCP-index.html.

Best Rerards

---

http://www.pass4sure.com/

 

--
Thanks...&...Regards:
=================================================
"Everything Linux & Open Source"
"Linux rules the heart of its users. This is enough a reason why one should embrace Linux."
================================================
Md.Shahriar Kabir
Sr.Network Engineer
Information Technology Division
TM International (BD) Ltd.

[Shahriar]

[Sohel Anis]

Thanks Shariar it was
important for me................

[masum]

Dear All,
I need a Help about Squid Transparent Proxy. That is, I'm using Cento 5  with  Transparent  Proxy in my Network . I need to  Block P2P software  download like, Kazza, Limeware , Emule Etc. I know IPP2P can handle this thing. I tried to install IPP2P software in my Squid Box But fail to do this. Could you please give me the proper  solution about that problem or need complete IPP2P install HOW TO. or any other solution. need help as early as possible.

masum

---

Looking for last minute shopping deals? Find them fast with Yahoo! Search.

[Kazi Tariqul Islam]

Dear Masum,

 

Please use the following two lines in you squid.conf file:

 

acl Safe_port 80
http_access deny !Safe_port

This ACL will only permit access to servers running on port 80. This is likely to interfere with your users' web browsing, because quite a number of legitimate web servers run on things like port 8000, port 8080, and even some others.

 

So, it will not cause any problems for web servers running on the standard HTTP port 80, but it willcause problems if they use anything else. Whether this is important to you depends on the websites your users try to visit.
 

Regards,

Tariqul

[masum]

Dear Tariqul Bhaia,
I all ready done this. But not working.

---

Never miss a thing. Make Yahoo your homepage.

[Shahriar]

Dear masum bhai..
IPP2P software work with iptables but  remember that predifind iptables (install by rpm) not work , cause it has no support but It has to be compiled with netfilter support enabled.
u must use source iptables with patch-o-matic support. another  things  squid has  a ability to  do this  , Tariqul bhai's statement is ok but it has to be adjust in your squid.conf file.  look u r squid.conf file allow and deny statement. ok no problem if u want the full squid.conf as an example i will send.
bye..........

[masum]

Dear Shahriar Bhai,
thanks for your mail. here is my squid.conf acl list. please find if here some modification.

#Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl allowed src "/etc/squid/ip_list"
acl snmpmanager src "/etc/squid/ip_list"
acl snmppublic snmp_community public
acl manager proto cache_object
acl ftpdr proto FTP
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443         # https
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-1030   # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl Safe_ports port 8080
acl CONNECT method CONNECT
acl deny_ext urlpath_regex -i "/etc/squid/deny_ext"
acl denied_domains dstdomain "/etc/squid/denied_domains.acl"
acl url_ads url_regex "/etc/squid/banner-ads.acl"
acl porndomains dstdomain "/etc/squid/urls"

#Default:
http_access deny deny_ext
http_access deny url_ads
http_access deny denied_domains
http_access deny porndomains
always_direct allow ftpdr
http_reply_access deny audiovideo
http_access allow allowed
http_access deny all
#
#Recommended minimum configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports


"Masum"