HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 18 guests and 6 members online
EH-Net Donations

Enter Amount:
$
Google Ads
ChicagoCon 2008f
chicagocon2008f_125x200banner.jpg
ChicagoCon 2008f
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Network Scanning
Ethical Hacker Community Forums
September 05, 2008, 12:39:41 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Registration Now Open for ChicagoCon 2008f Oct 27 - Nov 2! Visit www.chicagocon.com.
 
   Home   Help Calendar Login Register  
Poll
Question: Is is possible to scan a network for programs that are looking at my soldiers personal computers
choice 1 - 0 (0%)
choice 2 - 0 (0%)
Total Voters: 0

Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Network Scanning  (Read 1091 times)
0 Members and 1 Guest are viewing this topic.
GeekSquadSF
Newbie
*
Offline Offline

Posts: 1


View Profile
« on: May 09, 2008, 05:21:49 PM »
OK... wannabe/noob computer geek in the army looking at getting a little more savvy on network security. We have derka internet (only because the us is a little slow with getting us decent internet while we are here in Iraq). I have herd the rumor that some of the derka have been getting into our computers, and intercepting info that we are sending home... since I haven't been taught entirely too much about network security... or atleast in this sence... what can I do to check on these guys to make sure they're not skimming info off of my guys? is there stuff I can tell them to do besides keeping their software updated? Last, what would you guys recommend as far as training... since im here, I cant get to any classes... any ideas?

SPC Seth Alton
GeekSquadSF

"Whoever said that the pen is mightier than the sword,
obviously never encountered automatic weapons." -General Douglas McArthur
Logged
g00d_4sh
Sr. Member
****
Offline Offline

Posts: 282



View Profile
« Reply #1 on: May 09, 2008, 06:09:08 PM »
Had to look up what the hell Derka ment.  I'm assuming you're saying that the Army has it's network connected up to the Local ISPs for internet? And that you're concerned about both network penetration by outside (in the area) computers/users, and of surveliance of said traffic comming from your network through the local ISP?  I'm assuming, though that may be a screw up on my part, that your Army network managment is keeping a fairly tight control on stuff.  You arn't VPNing into networks back in the states?  I'd assume you'd be doing that.  I know when I'm not specifically at one of the local offices, I vpn into the DOI network before I do anything.  (Theoretially).  Using VPNs is a good way to avoid basic snooping.  Also for private mail addresses, using something like Hushmail isn't a bad call.  If you're thinking someone has gotten access to your computers... if it was physical access you have a bigger problem, and I'm ashamed at your security hehe.  If it's remote, and you have any evidence... root kit, etc.. I'd reformat the machine, and start anew. 
Logged
"Bad.. Good?  I'm the guy with the gun"
ChrisG
EH-Net Columnist
Hero Member
*****
Offline Offline

Posts: 981


View Profile WWW
« Reply #2 on: May 09, 2008, 06:19:48 PM »
the army shouldnt be connected to to derka-net, but the troopies may have bought internet access from a local ISP.  if you are connecting army systems to a local ISP you need to tell a network manager or Information assurance person ASAP. if you need help locating one PM me.

from a host perspective, ensure you are all patched up, using your windows firewall and run av (free from ako) and run your spyware checkers.  download fport from foundstone and see what services are listening on those open ports, google to make sure of the binary.  if you are really paranoid download rootkit revealer or something similar.

if you are on a local ISP...from a network perspective, go ahead and assume that all your traffic is being sniffed and monitored by the local isp and remember that when you are chatting on IM or whatnot.  all the normal OPSEC stuff you are constantly hit with should apply. 

if you guys bought internet for your own purposes and are actually worried about it i would suggest buying from a US SATCOM provider that would be a bit more trustworthy.
Logged
...tests i took go here...

http://carnal0wnage.blogspot.com/
Fathercat
Newbie
*
Offline Offline

Posts: 11


View Profile
« Reply #3 on: May 12, 2008, 07:41:07 AM »
GeekSquadSF

I am an IA rep for the AOR, please shoot me a PM. 
Logged
CISSP
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.5 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.051 seconds with 24 queries.
 
Polls
Best for daily desktop use:
 
Support EH-Net
chicagocon2008f_125x200banner.jpg
ChicagoCon 2008f

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Sadikhov.com
Top IT Cert Sites

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

chicagocon2008f_125x200banner.jpg
ChicagoCon 2008f
 
         
Advertisement

© 2008 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.