English Deutsch Français Italiano Español Português 繁體中文 Bahasa Indonesia Tiếng Việt ภาษาไทย
All categories

is it secure? if not tell me why its not secure, and what i can do?

mail/web server is the PDC too if thats makes a diff.

http://i177.photobucket.com/albums/w237/sos1985/NTWK.jpg

thanx!!

2007-03-26 04:08:32 · 3 answers · asked by sos19857 1 in Computers & Internet Computer Networking

3 answers

No. It's not secure. Here's why:
1. If your mail/web server is truly a PDC, then it's an NT-based server. That operating system hasn't been actively supported for quite a while (years) and is extremely vulnerable.
2. Hosting web services and e-mail on your domain controller is a VERY bad idea, unless your using SBS 2003 premium, with ISA fully functional. You're giving way too much access to your domain by exposing the domain controller to internet traffic. Any virus, trojan or hacker is going to hit this server first. Since it controls the entire domain... well... if the server goes, kiss all the rest goodby too.
3. You have your wireless access points inside your firewall, but not within a DMZ. Any weakness in your wireless security (such as using WEP, which can be easily hacked... takes about 30 seconds) exposes your entire internal network.
4. You have your web server (which, by design, is accessible to/from the web) sitting inside the network, but not firewalled between the network and the internet. Anyone who breaches your web server has access to all the computers on your internal network. You need two network cards in your server and a good firewall product (such as ISA) installed. This will give you an additional firewall between the world and your computers, and the capacity to set up a DMZ between the external NIC of the server and your router. Even better, you could have a seperate web/e-mail server in the DMZ.
5. If you're asking this question, then your firewall structure is almost certainly incorrect. Unless it is correctly configured, your "firewall" can be easily breached. Since you don't KNOW it's good, that's almost a guarantee that it isn't.
6. Your network diagram deals with hardware, but not software. Your physical infrastructure and layout are only one part of the scheme. What type of antivirus are you running? Since you're hosting e-mail, are you doing real-time scans? Do you have proper anti-spyware and anti-spam as well? For the price, it's almost insane for a small business not to use an e-mail service such as Postini to pre-filter spam and viruses before they reach your server. What is the file security structure in IIS (your web hosting)? Can anyone get past your web security to the rest of your server's data?

If you really want to do this right, you won't find the answers in a public forum. You need to get specific with a systems engineer who knows what he's doing.

2007-03-26 11:30:56 · answer #1 · answered by antirion 5 · 0 0

i cant tell if its secure or not on basis of wired media it seems 2 be secured but in wireless part it totally depends on the encryption alll those schemes used so tht only the authorized peron gets accessed

the diagrams seems 2 be perfectly fine as of now

2007-03-26 11:17:57 · answer #2 · answered by Rockd 3 · 0 0

appears to be secure according to diagram are the access points secure

2007-03-26 11:15:28 · answer #3 · answered by Jimmy H 3 · 0 0

fedest.com, questions and answers