Your search for forbidden returned 17 results.

Companies are storing credit-card verification codes and data contained on the magnetic strip even though both practices are banned by the Payment Card Industry Data Security Standard (PCI DSS), according to a new study. Cybercriminals are randomizing content served from malicious web pages so that they can prevent security researchers from doing proper analysis. The arrival of the iPhone could signal the beginning of the end for consumer choice. Now that the marketing blitz and customer hype about the Apple iPhone are reverting back to more realistic levels there comes some not entirely unexpected news... Instant messaging should be treated like email, with similar constraints. The 8e6 R3000 and Enterprise Reporter is a superb product. The feature-rich appliance was easy to set up and performed well. The setup procedure is typical of more advanced appliances. Once a keyboard and monitor are connected to the appliance, a wizard guides the user through setup. Once the initial configuration is complete, policy development is quick and easy thanks to the intuitive web interface. This product is designed to protect against hacker and network worm attacks, block spyware and adware, thwart so-called zero day attacks via its heuristics technology, and even ban the use of forbidden networking software.

GemSafe Logon is intended for the individual computer. It is self-contained, but with an administrative twist. Access policies are set up centrally by an administrator who creates a configuration file for the individual smartcards and distributes it to users. This is practical for smaller installations but perhaps not for large, distributed enterprises.

This is a 1U rack-mountable unit containing a 233 MHz StrongARM processor with 16 MB of RAM, with ports for WAN, LAN and DMZ connections. Do this, don’t do that – you know the rules. But policy management is changing, and Barbara Gengler discovers that the future involves new technology and fresh ideas In a post-Sept. 11 world, the security community is being asked to address a growing list of sobering scenarios that range from the newly plausible to the truly frightening.

The principle of Xiscan is a good one. It takes the idea of war dialing software, which hackers have used to their advantage for many years to scan telephone networks in an attempt to locate entry points, and turns it against the enemy.
Xiscan works in the same way that the hackers have always used automated telephone dialers – to probe for weaknesses in the network. The difference is that it is designed to be used within the network, to locate rogue modems and bring users to heel.
The basic idea is that if hackers can use automated dialers to gain an advantage over legitimate users, then why can't the legitimate user do the same? It is a very good question – and there is something very satisfying about the idea of wrestling control of hacker-type tools, and using them for legitimate ends. Xiscan takes the wardialer idea and turns it on its head, using it as a way to monitor the network from within.

The Aladdin eSafe Appliance is a hardened, Linux-based device, which can be configured as an email inspection tool (SMTP relay) and, additionally, as a full content-filtering gateway for HTTP/FTP. To obtain the full content-filtering gateway functionality you need to use Check Point Firewall-1 configured with a HTTP/FTP security server as a content vectoring protocol (CVP) client.

Cobion's OrangeBox Web is a very similar product to DynaComm i:filter. Designed to integrate with a proxy server (for example, Microsoft ISA on Windows 2000/XP), it is also happy to sit on a number of popular Linux and Unix platforms. It can also be used as a proxy server in its own right if you have a small or medium-sized intranet network.

Unique in this test, the iPrism is actually an appliance. Although these tend to be more expensive than software-only products, they usually have the advantage of a fairly solid configuration since they are factory-build.

Symantec Web Security is a product specifically designed to monitor the content of HTTP, HTTPS and FTP traffic. It takes the form of a proxy server that sits behind your firewall; with most firewalls it will operate transparently, but you have the bonus of integration with Check Point's FireWall-1.

MIMEsweeper was one of the first products capable of protecting organizations against unwanted content, and it is still widely used today. The vendor, Clearswift, acquired MIMEsweeper's developer, Content Technologies, from Baltimore last year, and it is good to see that re-branding and product development have happened so quickly.

Today, MIMEsweeper is not just one product, but a suite of email security applications allowing network administrators to fine-tune their defenses as required. With the MAILsweeper application, administrators can define both the routing of all emails into and out of the network, and the content policies required. Throughout, the performance of the various elements can be monitored and the appropriate action taken.

EnCase from Guidance Software has established itself as the leading tool for forensic investigators. Perceiving a need for similar tools in the enterprise space, the company announced EnCase Enterprise Edition, bringing most of the functionality enjoyed by criminal forensic investigators to corporate users.