https://sobac.com/mediawiki/index.php?action=history&feed=atom&title=Network_Security%2FMeeting_Notes_2019-03-11Network Security/Meeting Notes 2019-03-11 - Revision history2026-06-14T20:53:43ZRevision history for this page on the wikiMediaWiki 1.34.0https://sobac.com/mediawiki/index.php?title=Network_Security/Meeting_Notes_2019-03-11&diff=2322&oldid=prevBobJonkman: Link to pfSense2019-03-25T10:08:23Z<p>Link to pfSense</p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="en">
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">← Older revision</td>
<td colspan="2" style="background-color: #fff; color: #222; text-align: center;">Revision as of 10:08, 25 March 2019</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l67" >Line 67:</td>
<td colspan="2" class="diff-lineno">Line 67:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>Bob Jonkman logged into his live pfSense installation and stepped through each of the menu items.</div></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>Bob Jonkman logged into his live pfSense installation and stepped through each of the menu items.</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">* [https://www.pfsense.org/ pfSense® - "World's Most Trusted Open Source Firewall"]</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f8f9fa; color: #222; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"></td></tr>
</table>BobJonkmanhttps://sobac.com/mediawiki/index.php?title=Network_Security/Meeting_Notes_2019-03-11&diff=2321&oldid=prevBobJonkman: New Page2019-03-25T09:59:45Z<p>New Page</p>
<p><b>New page</b></p><div>{{:Network Security}}<br />
<br />
<br />
__TOC__<br />
<br />
<br />
==== Resources ====<br />
* Firewalls<br />
** The most secure firewall: [[File:Nipper for Electronic Wire (Old).png|150px]]<br />
** Another secure firewall: [https://www.pfsense.org/ pfSense]<br />
* Intrusion Detection Software<br />
* Pen Testing apps<br />
<br />
<br />
* [https://www.techsoupcanada.ca/en/directory/361 TechSoup Canada Catalogue: Server and Network Management]<br />
<br />
<br />
* Claim: The greatest threat in Network Security is NetAdmin or User Error<br />
** [[File:Network Security Dave.jpg|640px]]<br />
** Another e-mail breach caused by human error:<br />
*** [https://www.cbc.ca/news/canada/kitchener-waterloo/university-waterloo-data-email-breach-information-quest-1.5048814 Names, banking information accidentally shared in emails to University of Waterloo students | CBC News]<br />
** Data exfiltration due to user error:<br />
*** [https://www.thestar.com/politics/provincial/2019/01/21/privacy-breach-hits-45000-recipients-of-ontarios-disability-support-program.html Privacy breach hits 45,000 recipients of Ontario’s disability support program | The Star]<br />
** NetAdmin failed to renew expired domain names:<br />
*** [https://arstechnica.com/information-technology/2019/01/godaddy-weakness-let-bomb-threat-scammers-hijack-thousands-of-big-name-domains/ GoDaddy weakness let bomb threat scammers hijack thousands of big-name domains | Ars Technica]<br />
** Vulnerability not acknowledged by vendor:<br />
*** [https://www.cbc.ca/news/canada/new-brunswick/cyber-malware-breach-dark-web-municipal-parking-servier-click2gov-centralsquare-1.5043818 City knew of massive cyber breach days before admitting it | CBC News]<br />
*** <blockquote>On Dec.19, the day following Solomon's exchange with Caissie, the city received notice from CentralSquare Technologies, the Florida company providing the Click2Gov parking server software, that there was no problem with the system. "Resolution: Checked Click2Gov server for evidence of malware/possible breach, no evidence found of breach/malware," says the statement signed only "Customer Support."</blockquote><br />
** Pre-emptive shutdown of mail system to prevent a virus attack that might shut down the mail system.<br />
<br />
==== Meeting Notes ====<br />
Spoke about resources, war stories<br />
<br />
<br />
* Proprietary mail systems<br />
** Errors in implementation, makes mail inaccessible, or sends mail when unwanted.<br />
** Corporate culture prevents people from speaking of security flaws<br />
<br />
<br />
* Bugs in the software<br />
* Errors in procedures<br />
<br />
<br />
===== The Cloud =====<br />
* "If the data was in the cloud it would have been safe"<br />
* What is The Cloud?<br />
** Somebody manages the servers, still subject to human error<br />
** But reduces the human interaction that is needed<br />
** Maybe if '''everything''' is run by robots...<br />
*** But that's not the way Nonprofits operate, engaging people to be more involved<br />
<br />
<br />
* Open Source groups want more interaction, so still room for error<br />
** eg. LibreOffice: Get a professional to manage website? Or keep local group involvement? No to robots<br />
<br />
<br />
* Robots have programmers too<br />
** One more level of abstraction<br />
<br />
<br />
* Problems solved?<br />
** Email spoofing, phishing schemes: Joe Jobs, third-party addressbooks breached<br />
** Could contact the apparent sender, but that person may not be involved in the message at all<br />
<br />
<br />
==== Tour of pfSense ====<br />
<br />
Bob Jonkman logged into his live pfSense installation and stepped through each of the menu items.<br />
<br />
<br />
===== Multiple connections to isolate traffic =====<br />
* While Bob's installation has only two connections (WAN, LAN), it is possible to isolate Internet-facing servers on their own network connection (DMZ) to isolate that traffic from the internal LAN. <br />
* pfSense supports many network connections, useful for separate campus sites<br />
<br />
<br />
Back to: [[Network Security]]<br />
<br />
[[Category:KWNPSA Meeting Notes]]</div>BobJonkman