LAN Security

LAN SECURITY
BY
SYED UBAID ALI JAFRI
Information Security Expert
CEO
UJ Consultant & Solution Provider
http://www.ujconsultant.com

CONSIDERATIONS
•INTRODUCTION TO LAN
•WHAT TO KNOW ABOUT LAN
•WHY SECURITY?
•THREATS
•COUNTERMEASURMENT
•MINIMIZING RISK
•EVALUATE PERFORMANCE

INTRODUCTION TO LAN
Any network that is connected on a same subnets lies
under the category of LAN
LAN Share resources of computer which includes:
1) File Sharing
2) Voice chatting
3) Message Sending
4) Desktop Sharing

WHAT TO KNOW ABOUT LAN
•Information about host
•Devices that are connected on the subnet
•IP Address of the system
•Remote Services
•Events Logs

Information about host

Devices that are connected on the subnet

IP Address of the system

Remote Services

WHY SECURITY
Any medium whether it is wired or wireless must have
some strong security consideration.
Using LAN, security can be helpful for the user who
have a large network connected on a LAN, they must
go through the process of analysis that interacts with
LAN

THREATS
Following are the list of threats that a
LAN Network faces:
•MAN IN THE MIDDLE ATTACK
•SMURF ATTACK
•IP SPOOFING
•DENIAL OF SERVICES
•ARP POISONING

THREATS
MAN IN THE MIDDLE ATTACK:
The man-in-the middle attack intercepts a communication
between two systems.

THREATS
SMURF ATTACK
The Smurf attack is a way of generating significant computer
network traffic on a victim network.

THREATS
IP SPOOFING
IP address spoofing or IP spoofing refers to the creation of
Internet Protocol (IP) packets with a forged source IP address,
called spoofing.

THREATS
DENIAL OF SERVICES
A denial-of-service attack (DoS attack) or distributed
denial-of-service attack (DDoS attack) is an attempt to make
a computer or network resource unavailable to its intended users

THREATS
ARP POISONING
ARP spoofing may allow an attacker to intercept data frames
on a LAN, modify the traffic, or stop the traffic altogether

COUNTERMEASUREMENTS
•Denying Unusable services
•Checking people currently connect with this network
•Closing Default operators of windows
•Saving external resources
•Making Log files
•Updated Virus Definitions

COUNTERMEASUREMENTS
Denying Unusable services
RUN>Services.msc
Close these services
Automatic Updates
Live Update
Telnet

COUNTERMEASUREMENTS
Checking people currently connect with this network

COUNTERMEASUREMENTS
Closing Default operators of windows

COUNTERMEASUREMENTS
HKLMSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
Operating system Default setting
Windows 7 0x91
Windows Server 2008 0x91
Windows Vista 0x91
Windows Server 2003 0x95
Windows XP 0x91
Windows 2000 0x95
Windows 95/98 0x95

COUNTERMEASUREMENTS
Making Log files
RUN > eventvwr

MINIMIZING RISK
•Making Remote Connectivity disabled
•Services Like Telnet, SSH, VNC should be stopped
forcefully
•Changing Values from Registry
•Releasing and Renewing IP Addresses

MINIMIZING RISK
•Services Like Telnet, SSH, VNC should be stopped
forcefully
•Net stop telnet
•Net start telnet

MINIMIZING RISK
•Releasing and Renewing IP Addresses:
•Ipconfig /release
•Ipconfig /renew

EVALUATE PERFORMANCE
By Default Windows Xp, 7 , Vista enble the services that are not
used under he scope of a home user
Operating system performance can be cutomized from
1) Windows Services.
2) Windows Registry
3) Windows Effects
4) Monitoring Services

LAN Security

More Related Content

What's hot

Viewers also liked

Similar to LAN Security

More from Syed Ubaid Ali Jafri

Recently uploaded

LAN Security