IT Management Daily
Storage Daily
Security Daily
 FREE NEWSLETTERS
search
 

follow us on Twitter


internet.commerce
Be a Commerce Partner

internet.com
IT
Developer
Internet News
Small Business
Personal Technology

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers



Related Articles
Not So SIMple
Intrusion Detection and Honeypots
AO Security Discussion Roundup

Security Products
 FB Limiter (AxiomCoders)
 Keylogger Free Download (Free keylogger download)
 Software Keylogger (Software keyloggers)
 Facebook Password Recovery (XaviWare Software Ltda.)
 BlockAllow (BlockAllow)
 AW GoOn (AtelierWeb Software)
» Enterprise IT Planet » Security » Security Features

Drive Encryption Rewards and Risks

May 11, 2007

Email Print Digg This Add to del.icio.us

AntiOnline Spotlight: Do you encrypt your drives? If you're considering this method of safeguarding your data, make sure you have a complete picture of the protections it offers. Also, lessons in concealing malware; thoughts PHP and MySQL injections; and tools for banishing spyware.

Drive Encryption
treanglin wants to know...

I've seen firsthand how easy it is to grab a password or SAM file from a Linux, OS X or Windows box. I've experienced the dreadful fright that occurs after loosing USB drives with sensitive data on them. It's a shame, I know, but I'm just now figuring that I should go ahead and start encrypting my data. I'm going to start fresh tomorrow (Fedora DVD ISO, downloading right now) and I'm just wondering what you guys use to encrypt your hard drives and USB drives.

Hexed Virus/Malware/Spyware
nihil's contribution:

By "hexed" I take it you are referring to an executable in hexadecimal notation? This does not "conceal" the file from the scanner, nor does it make it totally invisible. It would be the same if the file were encrypted.

The issue would be whether the scanner could recognize the malware for what it was.

For example, I have a collection of malware generation toolkits. AVG does not detect them. I know that it opens them in a temporary file because Avast! goes ballistic when it does so.

PHP and MySQL injections
Godsrock37's question:

So here's the question, how do I protect from MySQL injections. Right now, the only public access to the database is just the form to make an online reservation which links to a submit.php script that simply submits it. The client manages reservations with a Web interface that is not linked to by anything, so you have to know the address, later I’ll put a username and password on it in which case I know I’ll have to protect against SQL injections, but for now, is there any danger of SQL injections?

I'm assuming so. For some reason a few functions don’t work on the hosting company's server (mysql_real_escape_string and free_result so far) and I think it's because it’s an older version of PHP or MySQL. What can/should I do?

Spyware, Privacy...
westin's advice:

If you start searching around, you will find quite a few different security tools. Just make sure you research a tool before downloading it. Look at forums and what not. Some of the "removal tools" are not what they seem.

Stick with Nihil's suggestions, and throw in a couple of others for the sake of thoroughness. If you think you are infected, boot into safe mode [F5 while booting for safe mode, F8 for boot menu] before running the scans. You are more likely to come out with a clean system that way.

Newbie with a question about VoIP security

Active Directory Distribution List Problem

Also, be sure catch up on today's posts. Not a member? Join today!

Email Print Digg This Add to del.icio.us

Security Features Archives



Internet.com
The Network for Technology Professionals

Search:

About Internet.com

Legal Notices, Licensing, Permissions, Privacy Policy.
Advertise | Newsletters | E-mail Offers

Solutions

Whitepapers and eBooks

50 Reasons Developers Will Love Internet Explorer 9
IBM eBook: Getting Started with Adobe Flex
Development Teams Rejoice: IBM Rational Team Concert 3.0 is almost here!
IBM Resources: Get up to speed with IBM WebSphere cloud and virtualization technologies
Let Your Sites Shine: Web Content Can Now Come Forward
PDF: Bridge the Gap Between Development and Operations for Portal and Web Security
PHP for Windows Showcase
PDF: Economics of Computing - The Internal Combustion Mainframe
Resource: PHP for Windows Showcase
 Whitepaper: Five Ways to Fast ROI with Business Rule Management Systems
IBM Cloud Computing Development Center
PDF: IBM Lotus Notes and Lotus Domino Software
Helpful Cloud Computing Resources
PDF: Dispelling the Vapor Around Cloud Computing
Research Brief: How Forward-Thinking Marketing Organizations Deliver Competitive Differentiators
Whitepaper: Accelerate ROI for BPM with Rapid Deployment
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

LIVE IBM Event: Managing Application Development in the Cloud--Thursday December 16 at 11am EDT
IBM Webcast: Accelerate Software Delivery with Social Software
IBM Cloud Computing for Developers Virtual Events
Spend Less Time Rewriting Your Sites to Work Across Browsers
 Webcast: Information & Analytics: The Secret Weapon of Top-Performing Companies
Software License Operations - Cleaning Up the Backoffice
All About Cloud Computing
MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

Microsoft Download: Windows API Code Pack
Download: IBM DB2 Express-C
Download: The Microsoft Web Platform Installer
 New: Internet Explorer 9 Beta -- Download Now!
IBM System x and BladeCenter Virtualization Kit
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Build a More Competitive Business with Technology � Product & Service Innovation
Internet.com Hot List: Get the Inside Scoop on IT and Developer Products
 MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES