|
|
|
|
|
|
How secure is your server?
Companies go beyond the call of duty to protect their physical property. Unfortunately, the concept of protecting one’s web presence is still in its infancy, even though the threats are real. If your site is for informational use only, the damage could be very subtle, but it may still be widespread. The site can be defaced by a “cracker” and key information can be changed. If you have a portal where you share user information, or an e-commerce site where you conduct credit card transactions, the damage can be substantial. We will help create a comprehensive security policy that will include an exhaustive audit of your current infrastructure, followed by the elimination of security holes, or a recommendation and implementation of a more secure system.
What Do I have to worry about?
There are basically three overlapping types of risk:
Bugs or misconfiguration problems in the Web server that allow unauthorized remote users to:
- Steal confidential documents.
- Execute commands on the server host machine, allowing them to modify the system.
- Gain information about the Web server's host machine that will allow them to break into the system.
- Launch denial-of-service attacks, rendering the machine temporarily unusable.
Browser-side risks, including:
- Active content that crashes the browser, damages the user’s system, breaches the user's privacy, or merely creates an annoyance.
- The misuse of personal information knowingly or unknowingly provided by the end-user.
Interception of network data sent from browser to server or vice versa via network eavesdropping.
- Eavesdroppers can operate from any point on the pathway between browser and server including:
- The network on the browser's side of the connection.
- The network on the server's side of the connection (including intranets).
- The end-user’s Internet Service Provider (ISP).
- The server’s ISP.
- Either ISPs’ regional access provider.
To schedule a security audit call:
203.838.4388
|
|
|
