16.4 Summary

   

Monitoring is a critical component of any enterprise network. Extensive monitoring of a network helps to ensure the performance and availability of all network devices. Monitoring can also alert administrators to possible attacks before they escalate out of control. The quicker an attack can be stopped , the less damage can be done.

Monitoring can be used by attackers to map out a network and launch attacks on that network. Proper security measures are critical for a network's monitoring infrastructure. This means not only securing the server, but also securing the protocols being used for monitoring.

One of the biggest monitoring security holes is SNMP. Because SNMP data is transmitted in clear text, it is easy for an attacker to sniff out SNMP information and use it to launch network attacks. The newest version of SNMP, SNMPv3, contains several security measures that should be implemented whenever possible. These security measures include authentication, data encryption, and access control.

   


The Practice of Network Security. Deployment Strategies for Production Environments
The Practice of Network Security: Deployment Strategies for Production Environments
ISBN: 0130462233
EAN: 2147483647
Year: 2002
Pages: 131
Authors: Allan Liska

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net