NetworkingNexus.net

Cyber-physical attacks: Hacking a chemical plant

When it comes to hacking chemical plants, for an attacker to go hackedity-hack-hack and then the plant goes boom fortunately only happens in the movies. But “if you plan to improve your financial posture” now and at least in the five years is a good time for security researchers to jump into cyber-physical systems security where you will be most concerned about attacks that cause physical damage.Granted, you and attackers may know a lot about the IT world, and even Industrial Control Systems (ICS) aka SCADA, but hacking a chemical plant means also needing to know some physics, chemistry and engineering. The Damn Vulnerable Chemical Process was developed to help you master new skills; it’s the “first open source framework for cyber-physical experimentation based on two realistic models of chemical plants.”To read this article in full or to leave a comment, please click here

Docker Demo Webinar: FAQ

Thanks again to everyone who joined last week’s Docker Demo webinar! There were more questions than time to answer them – and we wanted to share the Q&A publicly so everyone had access to this information on their Docker journey. Don’t … Continued

The Cloud Security Boom Has Just Started

Information security technology is undergoing a generational shift. Once thought of as a collection of point solutions, security technology is moving to the cloud, where a coordinated suite of real-time software tools are needed.

Worth Watching: IPv6 Intro

If you want to understand more on IPv6, we’ve made a number of resources available. You can choose from a range of video interviews with leading industry experts as well as tutorials on different transition mechanisms. We also provide links to more information on these topics. via RIPE NCC

The post Worth Watching: IPv6 Intro appeared first on 'net work.

Worth Reading: Discovering PlugX Campaigns Automatically

One of the hardest things to do when you are receiving malware that have “anonymized” (e.g. name-is-hash) names or general samples that lack any indication of the infection vector is to determine the origin of the file and its intended target. via Arbor

The post Worth Reading: Discovering PlugX Campaigns Automatically appeared first on 'net work.

Looking back: Viruses that led to a path of destruction

VirusesImage by BixentroThe world of computer viruses has changed drastically over the last 25 or so years. In the early days, internet users were very naïve towards email attachments, contributing to the alarming speed that viruses could spread across the globe. These days, viruses very rarely land in our inboxes due to preconfigured firewalls and strict measures from the likes of Gmail and Outlook. SSLs.com compiled this list in looking at the destructive viruses that wreaked havoc on the Internet.To read this article in full or to leave a comment, please click here

How to uncover the Dark Web

One of the best ways to understand your enemy – what he’s up to, what his capabilities are and how he can damage you – is to spy on him.And according to some cybercrime experts, one of the easier and more effective ways to do that is to hang out where the bad guys do – on the Dark Web.In a recent post on Dark Reading, Jason Polancich, founder and chief architect of SurfWatch Labs, asserted that, “most businesses already have all the tools on hand for starting a low-cost, high-return Dark Web intelligence operations within their own existing IT and cybersecurity teams.”To read this article in full or to leave a comment, please click here

Engineering Sense

Why_Didn't_They_Ask_Evans_First_Edition_Cover_1934 Why didn’t they ask Evans?

For those who haven’t read the famous Agatha Christie novel, the entire point revolves around a man uttering these words just before dying. Who is Evans? What does this person know that can lead to the murderer of the man on the golf course? Bobby and Frankie, the heroes of the story, are led on one wild goose chase after another, until they finally discover it’s not what Evans knows but who Evans knows that really matters.

Okay… But this isn’t a blog about mysteries, it’s about engineering. What does Evans have to do with engineering? Troubleshooting, as Fish says, is often like working through a mystery novel. But I think the analogy can be carried farther than this. Engineering, even on the design side, is much like a mystery novel. It’s often the context of the question, or the context of the answer to the question, that solves the mystery. It’s Poirot straightening the items sitting on a mantelpiece twice, it’s the dog that didn’t bark, and it’s the funny footprints and the Sign of Four.

Just like the detective in a mystery novel, the engineer can only solve the problem if they can Continue reading

Well Known Intervals

Listed below are many events which occur on network devices at well-known intervals. The list is provided to serve as an aid while troubleshooting recurring network disruptions. Please consider helping to expand this list by adding other recurrent issues you encounter not already listed.

This list was generated by Jeremy Stretch from PacketLife, but lost after he took his wiki down. Luckily I had previously saved it, as I found it useful, and with his permission I’ve reposted it here.

Short (<=5 minutes)

1 Second

Default VRRP hello timer
Default EAP-Identity-Request Timeout (Unified WLAN)
Default EAP-Request Timeout (Unified WLAN)
Default EAPOL-KEY Timeout (Unified WLAN)
CleanAir AP Sampling Interval (Unified WLAN)
Default Group Specific Query interval (Maximum Response Time of 10) for IGMPv2

2 Seconds

Default IEEE 802.1D Continue reading

Four Reasons Why Whitebox Networking is Cheaper

Whitebox & Whitebrand network equipment has a lower purchase price than branded products. But why ?

The post Four Reasons Why Whitebox Networking is Cheaper appeared first on EtherealMind.

Network Change Management Best Practices

No one wants to be that person who caused the network to crash while implementing a change. Here are some steps to help ensure successful network changes.

New products of the week 08.10.2015

New products of the weekOur roundup of intriguing new products. Read how to submit an entry to Network World's products of the week slideshow.Newly Observed Domains and HostnamesKey features: Newly Observed Domains and Hostnames tracks new hostnames, or fully qualified domain names, when first seen on Internet. This real-time knowledge allows organizations to discover malicious hostnames targeting users. More info.To read this article in full or to leave a comment, please click here

A10 Health Monitors

This post is an equivalence check of A10 vs ACE probes/health monitors.

ACE

ACE-A# show probe

probe : tcp-3121-probe-1
type : TCP
state : ACTIVE
----------------------------------------------
port : 3121 address : 0.0.0.0 addr type : -
interval : 10 pass intvl : 30 pass count : 2
fail count: 2 recv timeout: 5
--------------------- probe results --------------------
probe association probed-address probes failed passed health
------------------- ---------------+----------+----------+----------+-------
serverfarm : vip-11.95.79.90_3121
real : ip-11.95.79.68[3121]
11.95.79.68 1286028 1104 1284924 SUCCESS

interval – the time period health checks for a healthy server are sent
pass intvl – the time period health checks for a server marked “DOWN” are sent
pass count – the number of successful probes required to mark a server as “UP”
fail count – the number of unsuccessful probes required to mark a server as “DOWN”
recv timeout – timeout before a probe fails

a10-1[test-1]#show health monitor Idle = Not used by any server In use = Used by server Attrs = Attributes G = GSLB Monitor Name Interval Retries Timeout Up-Retries Method Status Attrs --------------------------------------------------------------------------------- tcp-443-monitor-1 30 2 5 2 TCP In use
Interval – the time period Continue reading

SDN Controller Benchmarking

There’s been a lot of talk of late on the performance of centralized network controllers (such an odd thing to say when you think about it, but there it is). Ethan recently had a post up on the topic of scaling and SDNs that overlaps with this topic, and SDN Testing ran some interesting tests […]

The post SDN Controller Benchmarking appeared first on Packet Pushers.

Cisco ASA: VPN with over overlapping addresses and twice NAT

IP addressing design is a topic that follows every networker from the basic to the architect level of experience. Usually we just pick a random range from RFC1918 and address all the devices. But then VPN happens, and with VPN…

IPv6 and the Swinging Technology Pendulum

35 years ago, mainframes, single-protocol networks (be it SNA or DECnet), and centralized architectures that would make hard-core SDN evangelists gloat with unbridled pride were all the rage. If you’re old enough to remember IBM SNA, you know what I’m talking about.

A few years later, everything changed.

Foxconn to invest $5B to set up first of up to 12 factories in India

As part of its plan to set up to 12 manufacturing facilities in India by 2020, contract manufacturer Foxconn Technology Group is investing US$5 billion in a factory and other facilities in the western Indian state of Maharashtra.The Indian government has been coaxing foreign companies, including smartphone makers, to set up manufacturing units in India under its “Make in India” program.A number of smartphone makers are planning to make the devices in the country, with Chinese maker Xiaomi expected to announce its first phone manufactured in India on Monday.The government recently gave security approval to Huawei Technologies’ plans to set up a manufacturing facility for network equipment in the country, though the facility still needs final approval from the ministry of commerce as it is a Chinese company, according to sources close to the matter. India and China have a border dispute.To read this article in full or to leave a comment, please click here

Writing a Custom IPAM Application

Four years ago, I lamented the lackluster selection of IPAM applications available for service providers. Unfortunately, it seems not much has changed lately. I was back to exploring IPAM offerings again recently, this time with the needs of a cloud hosting provider in mind. I demoed a few tools, but none of them seemed to fit the bill (or they did, but were laughably overpriced).

So, I decided to write my own. In my rantings a few years back, I had considered this option:

Could I create a custom IPAM solution with everything we need? Sure! The problem is that I'm a network engineer, not a programmer (a natural division of labor which, it seems, is mostly to blame for the lack of robust IPAM solutions available). Even if I had the time to undertake such a project, I have little interest in providing long-term maintenance of it.

My opinion has not changed, but I've come to realize that if I want a tool that fits my requirements, I will need to build it. And after surprisingly little time, I'm happy to report that I have now have a kick-ass IPAM tool that does exactly what I want it to.

Writing a Custom IPAM Application

So, I decided to write my own. In my rantings a few years back, I had considered this option:

Could I create a custom IPAM solution with everything we need? Sure! The problem is that I'm a network engineer, not a programmer (a natural division of labor which, it seems, is mostly to blame for the lack of robust IPAM solutions available). Even if I had the time to undertake such a project, I have little interest in providing long-term maintenance of it.

Writing a Custom IPAM Application

So, I decided to write my own. In my rantings a few years back, I had considered this option:

Could I create a custom IPAM solution with everything we need? Sure! The problem is that I'm a network engineer, not a programmer (a natural division of labor which, it seems, is mostly to blame for the lack of robust IPAM solutions available). Even if I had the time to undertake such a project, I have little interest in providing long-term maintenance of it.

« Previous 1 … 3,377 3,378 3,379 3,380 3,381 … 3,855 Next »