Securing Aim Higher College's Digital Infrastructure

744 Words2 Pages
bulb-icon

Recommended: Security+ wireless network

From my perspective, a wise thing to do would be to first do a thorough analysis of the website. Go through and see what the weak points are and try to analyze a solution. Aim Higher College has deployed an open source blog package. This package uses a database backend and allows users to create user IDs, sites, and their own content to post it. Recently, the service has had off-campus users who have posted links that appear to be directed towards university resources, but they are getting redirected toward off-campus malware sites. It seems that the website the college has deployed has become target of a DoS attack or other malware attacks.
To help resolve the issue it is highly critical to implement a trace route to see if all networks are intact and no network has been compromised. Next step would be to install anti-malware, anti-spyware as well as firewalls to help protect against the attacks. Other steps that could be implemented to protect against the attack would be to implement strong and lengthy passwords even consider encrypting the passwords since it correlates to sensitive data. Other safe practices that can be looked into is to have security access control measures where students and faculty have inside exposure of the website or in other words to be able to read/write and outsiders just have limited input.
A developer for Aim Higher College is creating a Web server form for submission of calendar events to the College’s event calendar. First let’s look into the type of the attacks the web server would be vulnerable to. The website server can fall into the wrong hands and face xss attacks where the attacker steals important information of the client and reduces the speed of the network and also sends large volume...

... middle of paper ...

...ements from the database applications.
A scan of Aim Higher College’s primary Web server using a Nikto shows a large number of default configuration files and sample files on many of the older servers. It seems from the scenario that there are possible vulnerabilities or exploits that are present in the files and if loaded and accessed it will cause some harm or damage to the machine and or network. Countermeasures to protect against this scenario would be the implementation of a secured network where it would be tough to access the files. Have a WPA2 wireless network in place so there is no sufficient way to manipulate the files. Also, implement patch management and keep up to date of anti-malware and anti-spyware updates. This helps in the summarization of the possible threats the College can face in certain scenarios and explains in how to protect against them.

Show More
Related

  • Nt1330 Unit 3 Assignment 1

    642 Words  | 2 Pages

    The webserver will be placed in a protected area, called a Demilitarized Zone (DMZ), outside the corporate network. The DMZ will be protected by a hardened firewall server called a Bastion server. The Bastion server’s services are limited and the configuration is changed to make the server

    Read More

  • Denial of Service Attacks

    2204 Words  | 5 Pages

    Sites can never be 100 percent safe if they are connected to the Internet. The ideal system is up to date on patches, has a firewall, is monitored, has all unneeded services disabled, and has up to date antivirus software installed. The ideal site also has an incident response capability and knowledgeable staff. Unfortunately the Internet is a highly interdependent world. There is no silver bullet to stop DoS attacks or vaccine to prevent them, but increasing awareness is the first step to successfully combating the problem.

    Read More

  • Nt1310 Unit 3 Assignment 1 Application Level

    797 Words  | 2 Pages

    An example of a highly important protocol which will be utilized at application level, is HTTP or hypertext transfer protocol. HTTP is the protocol used within web browsers and the entire internet to send and receive specific web page data. HTTP is a controlling protocol, as it determines how documents should be sent, and what the browser should do in response to commands. When accessing a web page, a HTTP command is sent to the pages web server, so that the server may send that specific page’s data to the user. PCO’s Learning Centre will be using the hypertext transfer protocol on a regular basis. In order for students to access web pages, the HTTP must exist to ensure speedy and accurate navigation, especially in a learning

    Read More

  • Security Breach and Subsequent Leak of Confidential Information

    1114 Words  | 3 Pages

    Currently, these files are stored on a secure database at the district’s headquarters but may be and are accessed at computers located at schools throughout the district. In order to access the files, one needs a computer with suitable capabilities, a typical desktop or laptop with internet access is “suitably...

    Read More

  • Aim Higher College: A Case Study

    741 Words  | 2 Pages

    Watch Guard Fireware has a firewall based IPS the can detect and block of attacks in the proxy policies. When enabling Firebox, this will protect the network from any kind of attack especially zero day threats from the outside world. Also, the IT staff should use a signature-based Intrusion prevention system to that is good for maintaining efficiency and performance protection on the network. Using my suggestions will prevent any more threats in the future for these web servers on the college’s

    Read More

  • The Americans with Disability Act

    1005 Words  | 3 Pages

    International Business Machines Corporation. (2010). Web site compliance solutions. Retrieved June 28, 2010 from http://www-01.ibm.com/software/rational/offerings/websecurity/webcompliance.html

    Read More

  • Network Security

    1526 Words  | 4 Pages

    Without proper protection, any part of any network can be susceptible to attacks or unauthorized activity. Routers, switches, and hosts can all be violated by professional hackers, company competitors. In fact, according to several studies, more than half of all network attacks are waged internally. To determine the best ways to protect against attacks, we should understand the many types of attacks that can be instigated and the damage that these attacks can cause to data. The most common types of attacks include Denial of Service (DoS), password, an...

    Read More

  • Distributed Denial of Service Attacks

    627 Words  | 2 Pages

    Within the last decade, the internet has proven to be the most efficient way to complete tasks in today’s society. Every major business in today’s society relies on the internet to conduct business. Though the internet is a useful tool, our reliability on it opens up the door for cyber-attacks that can be detrimental to business as a whole. One example of a cyber-attacks that have recently started becoming more prevalent are DDoS attacks. Recently, DDoS attacks have been a rising issue for businesses owners who run their own servers, such as video game companies and other high profile web servers, including banks and other credit card payment gateways.

    Read More

  • Protecting Against Malware Essay

    2372 Words  | 5 Pages

    In this globalized arena, with the proliferating computer users as well as computer networks, risks associated like Malware attacks are also multiplying. As the proverb

    Read More

  • Malware Essay

    1762 Words  | 4 Pages

    ...ntial information from a user. Luckily, there are reliable ways of defending against them. The most reliable way is to install strong security software that has the capacity to defend against the multifaceted forms of threats. Avoiding P2P file sharing sites and scanning email attachments before downloading them are also a surefire way of protecting a computer against malware threats. Basic acts like using an updated browser and allowing Windows updates to install and update themselves are also necessary to keep a machine safe. Furthermore, checking validity of individual website addresses and installing authenticated software can also help a computer user remain safe from potential data theft and possible damage of useful programs. It may also pay good dividends to backup files. In case of a lethal malware attack, backed-up files can always be recovered easily.

    Read More

  • CyberCrime: Preventing the Horrific Crimes on the Internet

    1424 Words  | 3 Pages

    In today's society, many aspects of crime committed on a regular basis. Civilians take advantage of people all the time using online resources such as a fraudulent website requiring credit card information to get a free monthly trial. Other examples of cyber crimes are online chatting website, full of predators or websites needing a downloadable program that contains a hacking virus. Sadly, there are many cases of cyber crime all over the internet. The acts of cyber crimes are considered violent acts like any other. Every day citizens are constantly losing money and being victimized due to these fraudulent activities. Cyber crime, including fraud, identity theft, stalking, and hacking, is a growing problem which can be prevented by taking the proper precautions.

    Read More

  • Cybercrime And Social Media Essay

    996 Words  | 2 Pages

    Cybercrime and social media are two major global problems that impact society. Today, are more accessible to computers and the Internet than in years prior. Nonetheless, perpetrators attack social media with illegal activity to facilitate their crime. There are different strategies or practices by various countries to combat cybercrime. However, identity theft, cyberbullying and phishing are three major type of cybercrimes which are impacting social networking websites.

    Read More

  • The Function of Blogs

    1811 Words  | 4 Pages

    There are so many things one could do with the relatively new medium of blogs. They can be almost anything a person wants: a journal, a compilement of links, a scrapbook of information, or even a discussion board. The only definition I've seen that can encompass it is that they are postings in reverse chronological order. Blogs are the newest Internet craze, but do they serve a purpose? Early on, experienced web users, who knew web-programming language, kept blogs to keep track of their mind’s wanderings. They were like a "Captains log on the quest of discovery" (Brown). For the average Internet surfer, they weeded out sites worth viewing from the rest.

    Read More

  • Effects Of Cybercrime And Social Media

    984 Words  | 2 Pages

    Cybercrime and social media are global problems which are impacting society. Today, people have more access to computers and internet than before, therefore, attacking social medias with criminal activities is a modern way for criminals. There are different strategies or practices by different countries to combat with cybercrime. However, identity theft, cyberbullying and phishing are three type of cybercrimes which are impacting social networking websites in many different ways.

    Read More

  • The Internet In Classrooms

    1925 Words  | 4 Pages

    Many schools have made the decision to go high-tech and create their own web pages via the World Wide Web. This allows them to advertise themselves to the virtual community. There has, also, been a change in how the Internet is being accessed by the various school systems. Dial-up Internet access has often been replaced by the high speed or cable Internet.

    Read More

More about Securing Aim Higher College's Digital Infrastructure

Open Document