IP http secure-ciphersuite... more course?
IP http secure-ciphersuite [3des-ede-cbc-sha] [rc4-128-sha] [rc4-128-md5] [des-cbc-sha]
SSL_RSA_WITH_DES_CBC_SHA
SSL_RSA_WITH_RC4_128_MD5
SSL_RSA_WITH_RC4_128_SHA
SSL_RSA_WITH_3DES_EDE_CBC_SHA
... which is the safest?
The order reference mentions proc loads for each of them, but nothing about who is the most secure.
SSL_RSA_WITH_3DES_EDE_CBC_SHA
Tags: Cisco Security
Similar Questions
-
How to remove McAfee security scran more my boot of the System Configuration.
Hi, my laptop is a Windows vista 32-bit, I have a problem to remove McAfee Security scran more my boot of the System Configuration. In fact, I had used the removal tool to remove the antivirus McAfee sofeware eralier. But when I opened my startup Configuration recently, I noticed that the McAfee security plu scran is still there, I have turn off, but couldn't delete it. Help, please. Thank you.
Gary
Hello
1. are you able to uninstall successful McAfee software?
2. is there an error message or error code while you uninstall McAfee software?Try the following and see if it helps.
Method 1:
How to uninstall McAfee Security Scan Plus? : http://service.mcafee.com/FAQDocument.aspx?lc=1033&id=TS100783
See also: http://promos.mcafee.com/LegacyLp/en-us/affiliates/adobe/landingpages/np681.asp
Method 2:
Uninstall if you have any program name McAfee Security Scan Plus on your computer.
Uninstall or change a program: http://windows.microsoft.com/en-US/windows7/Uninstall-or-change-a-programSee also:
Solve problems with programs that cannot be installed or uninstalled:http://support.microsoft.com/mats/Program_Install_and_Uninstall
Note: Important this section, method, or task contains steps that tell you how to modify the registry. However, serious problems can occur if you modify the registry incorrectly. Therefore, make sure that you proceed with caution. For added protection, back up the registry before you edit it. Then you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click on the number below to view the article in the Microsoft Knowledge Base: http://windows.microsoft.com/en-US/windows-vista/Back-up-the-registry
Method 3:
The System Configuration utility displays the items that start with your computer. These items are usually in one of two areas. The registry or during startup.
If you decide to prevent specific items from start until you can uncheck the in the System Configuration utility. Although this method is very good, it is ultimately preferable to delete them from the source. To access the common locations in the registry of these elements take a look in the following areas:
Note : open the registry editor by clicking the Start button, type regedit into the search box, and then press ENTER. If you are prompted for an administrator password or a confirmation, type the password or provide confirmation.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce
Hkey_current_user\\software\\microsoft\\windows\\currentversion\\run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Runonce
If you have disabled items in the System Configuration utility and want to remove the registry also they lies in one of the following locations:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SharedTools\MSConfig\startupfolder
HKEY_LOCAL_MACHINE startupreg
Note: Important this section, method, or task contains steps that tell you how to modify the registry. However, serious problems can occur if you modify the registry incorrectly. Therefore, make sure that you proceed with caution. For added protection, back up the registry before you edit it. Then you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click on the number below to view the article in the Microsoft Knowledge Base: http://windows.microsoft.com/en-US/windows-vista/Back-up-the-registry
-
Https security how are not on facebook
This Https security is on my emails how to not on facebook
Hello
Security is defined by Facebook.
Check with Facebook help and Support and their Forums.
Facebook - help and Support
http://www.Facebook.com/help.phpFacebook - Facebook Contact and support of Facebook
http://www.Facebook.com/help/?page=835Facebook - Forums
http://getsatisfaction.com/FacebookI hope this helps.
Rob Brown - Microsoft MVP<- profile="" -="" windows="" expert="" -="" consumer="" :="" bicycle="">-><- mark="" twain="" said="" it="">->
-
I installed ie8 security was last updated. Now I'm in a 'loop', he says constantly ready to install, I click on install, then I reboot, then he asks the same question again, ready to install, I click Yes then I have to restart, then when windows starts, he asks me once again. Finally I turned automatic updates, so now I have not this propblem. I want to solve this problem, please help me, Greg.
Help us help you: start by reading this post 'sticky '...
What information to post in the Windows Update forum
http://answers.Microsoft.com/thread/1467f44b-ee27-4F7D-98d7-f1c4b35b3395~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
For individuals, free support for security updates (only!) is available by calling the 1-866-234-6020 or 1-800-936-5700 to the United States and Canada or by contacting your local Microsoft subsidiary. For more information about how to contact your local Microsoft subsidiary for security-related support questions updates (only!), visit the following Microsoft International Support Web site: http://support.microsoft.com/common/international.aspx?rdpath=4
Visit the Microsoft Solution Center and antivirus security for resources and tools to keep your PC safe and healthy. If you have problems with the installation of the update itself, visit the Microsoft Update Support for resources and tools to keep your PC updated with the latest updates.
(E.g., US & CA) North America customers can also obtain instant access to unlimited no charge by e-mail or chat support for security updates (only!) by visiting the following Microsoft Web site: http://support.microsoft.com/oas/default.aspx?&prid=7552
-
Cannot access https secure sites after installation of Netnanny
Use Firefox for years. Then recently installed "net nanny" software and it has changed the security settings on Firefox.
I can't access all the secure https sites regardless of whether net nanny software is even uninstalled.
The following alert occurs on Firefox running...
"Could not initialize component of application security. The most likely cause is problems with the files in the directory of the profile of your application. Please check that this directory has no restriction of read/write and your hard disk is not full or close to full. It is recommended that you exit the application and correct the problem. If you continue to use this session, you may see incorrect application behavior when you access security features. »Then when you try to access an https site, I get an error as follows:
"Secure connection failed".An error occurred during a connection to support.mozilla.com.
Cannot connect securely because the SSL protocol has been disabled.
(Error code: ssl_error_ssl_disabled) »
Use SSL 3.0 and use TLS 1.0 are both selected in the "Advanced settings"
I also left a post on the forum of Net nanny however clearly don't have an adequate response when they talk about a setting in their software ("allow secure content") which is already activated anyway with the uninstalled software, however it still does not solve the problem. In fact, I had to use IE to post on this forum.
It clearly provided a message when configuring the net nanny that he changed the security settings when Firefox has been executed for the first time for each user.
I wish I had a solution so I can go back to using Firefox as my default browser and do believe a software application and a well known who, should take a non-functional browser but not another.
Start with this support article:
https://support.Mozilla.com/en-us/KB/could%20not%20initialize%20The%20browser%20security%20component -
utility disk drive erase ext first without and then more course with 3 pass?
Hi all -
the situation is I want to reformat an external drive that had data on it. before selecting 3 spend as a security option I selected delete who in fact deleted all the data (the fastest way).
My question is... can I re - erase the disc after that step up and choosing the pass 3 or more secure erase? while I feel sure my data are grated / overwritten?
I had planned to choose this option of security first but took the lead before asking for a more secure erase.
is - still gave this out of sync as I place to erase the disc from the way I wanted? IE 3 pass?
Thanks in advance...
Yes you can - it should get rid of the fragments of data flow
-
Http to https - secure connection (SSL) filter
Hello
I got (following the examples available) successfully created and tested my custom http filter. Everything that he has worked as it should... Nice...
Now - the situation has changed - and I need to do for a secure connection (https) - same domain but on SSL.
Well my filter has been left out of transformation while talking via secure channel... So I tried to change the domain name complete and added port number - for example:
HttpFilterRegistry.registerFilter ("www.mydomain.com:443", "com.mycomp.myfilter");
but that did not help.
The only thing that comes to mind after I tried the above, is to leave my class of Protocol of implementation of HttpsConnection instead of HttpConnection. I have not tried yet...
Someone has done this? Is it still feasible? Any other idea?
Thank you
Peter
Unfortunately, this API is designed to allow only http URL filtering. HTTPS URLS because of the extra security were not intentionally included. My apologies for the delay.
Kind regards
Mike.
-
McAfee Security Scan more! ??
McAfee Security Scan Plus is automatically downloaded and installed via "Adobe Download Manager", when I update the Plugin of Firefox Acrobat! I didn't even ask if I wanted to install it! IT IS TOTALLY LAME ADOBE! I can no longer trust downloads and installations of Adobe. Is no longer a 'reliable Source '!
http://get.Adobe.com/reader/ Just went there, and this time, I noticed the inclusion of McAfee, ALREADY CHECKED and also good box hidden far enough towards the top-right of the download button to be away from the fovea. I think it is fair to assume that Adobe has some expertise in user interface design, in which case this position indicates Adobe of the INTENTION of the user to miss this detail.
-
McAfee Security Scan more and Trend Micro Security Conflict?
I have Trend Micro security on my windows vista PC Dell. A few months ago, I noticed that I also have McAfee Security Scan Plus wants to periodically scan my PC. I didn't ask to install McAfee security Scan Plus, so I don't know where it comes from. I wonder if it is not authentic, as well as the way in which it on my PC. Do I have to get rid of him, and if yes, how do I do that?
Sometimes the PC manufactures such as Dell will put a free demo of product antivirus PC or laptop that sell them. These anti-virus would expire after the trial and you could buy it or uninstall it.
If you have Trend Micro, you could go into Control Panel, add/remove programs and uninstall McAfee.
-
Terminating the VPN client on 871W
Hello
I tried to install EasyVPN on a cisco 871W by SDM. The goal is to finish the VPN client with authentication with an external RADIUS/advertising (on a local subnet). I implemented the IAS on a win2003 Server advertising and checked the accounts.
SDM was missing the 'crypto map' piece of config. After you add this in the CLI it still didn't work. Thus, EasyVPN is not as easy at is sounds...
Could someone with some knowledge of VPN and IPsec and so forth please look at this config? Maybe it gives me an idea of what I did wrong (which, without a doubt, must be the case).
Thank you
Erik
==
AAA new-model
!
AAA rad_eap radius server group
auth-port 1645 10.128.7.5 Server acct-port 1646
!
AAA rad_mac radius server group
!
AAA rad_acct radius server group
!
AAA rad_admin radius server group
!
AAA server Ganymede group + tac_admin
!
AAA rad_pmip radius server group
!
RADIUS server AAA dummy group
!
AAA authentication login default local
AAA authentication login eap_methods group rad_eap
AAA authentication login mac_methods local
AAA authentication login sdm_vpn_xauth_ml_1 local
AAA authorization exec default local
AAA authorization ipmobile default group rad_pmip
AAA authorization sdm_vpn_group_ml_1 LAN
AAA accounting network acct_methods
action-type market / stop
Group rad_acct
!
!
!
AAA - the id of the joint session
clock timezone MET 1
clock to DST DST PUTS recurring last Sun Mar 02:00 last Sun Oct 02:00
!
Crypto pki trustpoint TP-self-signed-1278336536
enrollment selfsigned
name of the object cn = IOS - Self - signed - certificate - 1278336536
revocation checking no
rsakeypair TP-self-signed-1278336536
!
!
TP-self-signed-1278336536 crypto pki certificate chain
certificate self-signed 01
3082024A 308201B 3 A0030201 02020101 300 D 0609 2A 864886 F70D0101 04050030
2 060355 04031326 494F532D 53656 C 66 2 AND 536967 6E65642D 43657274 31312F30
69666963 31323738 33333635 6174652D 3336301E 170 3039 31303237 32313237
32395A 17 0D 323030 31303130 30303030 305A 3031 06035504 03132649 312F302D
4F532D53 5369676E 656C662D 43 65727469 66696361 74652 31 32373833 65642D
33363533 3630819F 300 D 0609 2A 864886 01050003, 818, 0030, 81890281 F70D0101
81008B 56 5902F5DF FCE1A56E 3A63350E 45956514 1767EF73 FEC6CD16 7E982A82
B0AF8546 ABB3D35A B7C3A7E3 3ACCB34A 8B655C97 F103DBD5 9AAEFEFC 37A 02103
4EFC398B 0C8B6BE5 AD3E568E 6CB69F87 CBCA0785 EAED0A28 726F2F0A B0B0453E
32E6B3B7 861F87FA 222197DD 3410D8A9 35939E9B CBF95F20 B8DA6ADE BF460F5C
BF8F0203 010001A 3 72307030 130101 1 FF040530 030101FF 301D 0603 0F060355
551 1104 16301482 12444341 4E495430 302E6361 6E2D6974 2E657530 1F060355
1 230418 30168014 84C9223E 661B2EB4 5BAB0B0E 1BE3A27A 64B3AEB0 301D 0603
551D0E04 16041484 C9111E66 1B2EB45B AB0B0E1B E3A27A64 B3AEB030 0D06092A
010104 05000381 8693B 599 70EC1F1A D2995276 F3E4AF9D 81002F4A 0D 864886F7
17E3583A 46C749F9 38743E6F F5E60478 5B9B5091 E944C689 7BA6DCA2 94D2FBD3
AFDE4500 A0A3644E 603A852D 55ED7A87 93501D5C 1662DAED 3FFFEC5A F1C38ED4
E0787561 BA5C14A3 6D065FCF 7DBDEBB6 9186C2D9 AA253FBF A9E38BC3 342C3AC9
2BEF6821 E4C50277 493AD5B6 2AFE
quit smoking
dot11 syslog
!
IP source-route
!
!
DHCP excluded-address IP 10.128.1.250 10.128.1.254
DHCP excluded-address IP 10.128.150.250 10.128.150.254
DHCP excluded-address IP 10.128.7.0 10.128.7.100
DHCP excluded-address IP 10.128.7.250 10.128.7.254
!
pool IP dhcp VLAN30-COMMENTS
import all
Network 10.128.1.0 255.255.255.0
router by default - 10.128.1.254
10.128.7.5 DNS server
-10.128.7.5 NetBIOS name server
aaa.com domain name
4 rental
!
IP dhcp VLAN20-STAFF pool
import all
Network 10.128.150.0 255.255.255.0
router by default - 10.128.150.254
10.128.7.5 DNS server
-10.128.7.5 NetBIOS name server
aaa.com domain name
4 rental
!
IP dhcp SERVERS VLAN10 pool
import all
Network 10.128.7.0 255.255.255.0
router by default - 10.128.7.254
10.128.7.5 DNS server
-10.128.7.5 NetBIOS name server
aaa.com domain name
4 rental
!
!
IP cef
no ip domain search
IP domain name aaa.com
inspect the tcp IP MYFW name
inspect the IP udp MYFW name
No ipv6 cef
!
Authenticated MultiLink bundle-name Panel
!
VPDN enable
!
!
!
username privilege 15 secret 5 xxxx xxxx
!
!
crypto ISAKMP policy 1
BA 3des
preshared authentication
Group 2
!
ISAKMP crypto client configuration group vpn
key xxxx
pool SDM_POOL_1
netmask 255.255.255.0
!
!
Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
!
crypto dynamic-map SDM_DYNMAP_1 1
market arriere-route
!
!
card crypto SDM_CMAP_1 client authentication list sdm_vpn_xauth_ml_1
map SDM_CMAP_1 isakmp authorization list sdm_vpn_group_ml_1 crypto
client configuration address map SDM_CMAP_1 crypto answer
map SDM_CMAP_1 65535-isakmp dynamic SDM_DYNMAP_1 ipsec crypto
!
Crypto ctcp port 10000
Archives
The config log
hidekeys
!
!
!
Bridge IRB
!
!
interface Loopback0
10.128.201.1 the IP 255.255.255.255
map SDM_CMAP_1 crypto
!
interface FastEthernet0
switchport access vlan 10
!
interface FastEthernet1
switchport access vlan 20
!
interface FastEthernet2
switchport access vlan 10
!
interface FastEthernet3
switchport access vlan 30
!
interface FastEthernet4
no ip address
Speed 100
full-duplex
PPPoE enable global group
PPPoE-client dial-pool-number 1
No cdp enable
!
interface Dot11Radio0
no ip address
Shutdown
No dot11 extensions aironet
!
interface Vlan1
address IP AAA. BBB. CCC.177 255.255.255.240
no ip redirection
no ip proxy-arp
NAT outside IP
no ip virtual-reassembly
No autostate
Hold-queue 100 on
!
interface Vlan10
SERVER description
no ip address
IP nat inside
no ip virtual-reassembly
No autostate
Bridge-group 10
Bridge-group of 10 disabled spanning
!
interface Vlan20
Description of the STAFF
no ip address
IP nat inside
no ip virtual-reassembly
No autostate
Bridge-group 20
Bridge-group 20 covering people with reduced mobility
!
Vlan30 interface
Description COMMENTS
no ip address
IP nat inside
no ip virtual-reassembly
No autostate
Bridge-group 30
Bridge-group 30 covering people with reduced mobility
!
interface Dialer1
MTU 1492
IP unnumbered Vlan1
no ip redirection
no ip proxy-arp
NAT outside IP
inspect the MYFW over IP
IP virtual-reassembly
encapsulation ppp
Dialer pool 1
Dialer-Group 1
PPP authentication pap callin
PPP pap sent-name of user password 7 xxxx xxxxx
!
interface BVI10
Description the server network bridge
IP 10.128.7.254 255.255.255.0
IP nat inside
IP virtual-reassembly
!
interface BVI20
Description personal network bridge
IP 10.128.150.254 255.255.255.0
IP nat inside
IP virtual-reassembly
!
interface BVI30
Bridge network invited description
IP 10.128.1.254 255.255.255.0
IP access-group Guest-ACL in
IP nat inside
IP virtual-reassembly
!
pool of local SDM_POOL_1 192.168.2.1 IP 192.168.2.100
IP forward-Protocol ND
IP route 0.0.0.0 0.0.0.0 Dialer1
IP http server
access-class 2 IP http
local IP http authentication
IP http secure server
IP http secure ciphersuite 3des-ede-cbc-sha
IP http secure-client-auth
IP http timeout policy slowed down 60 life 86400 request 10000
!
!
overload of IP nat inside source list 101 interface Vlan1
IP nat inside source static tcp 10.128.7.1 25 AAA. BBB. Expandable 25 CCC.178
IP nat inside source static tcp 10.128.7.1 80 AAA. BBB. CCC.178 extensible 80
IP nat inside source static tcp 10.128.7.1 443 AAA. BBB. CCC.178 extensible 443
IP nat inside source static tcp 10.128.7.1 8333 AAA. BBB. CCC.178 extensible 8333
IP nat inside source static tcp 10.128.7.2 25 AAA. BBB. Expandable 25 CCC.179
IP nat inside source static tcp 10.128.7.2 80 AAA. BBB. CCC.179 extensible 80
IP nat inside source static tcp 10.128.7.2 443 AAA. BBB. CCC.179 extensible 443
IP nat inside source static tcp 10.128.7.2 8333 AAA. BBB. CCC.179 extensible 8333
IP nat inside source static tcp 10.128.7.3 25 AAA. BBB. Expandable 25 CCC.180
IP nat inside source static tcp 10.128.7.3 80 AAA. BBB. CCC.180 extensible 80
IP nat inside source static tcp 10.128.7.3 443 AAA. BBB. CCC.180 extensible 443
IP nat inside source static tcp 10.128.7.3 8333 AAA. BBB. CCC.180 extensible 8333
IP nat inside source static tcp 10.128.7.4 25 AAA. BBB. Expandable 25 CCC.181
IP nat inside source static tcp 10.128.7.4 80 AAA. BBB. CCC.181 extensible 80
IP nat inside source static tcp 10.128.7.4 443 AAA. BBB. CCC.181 extensible 443
IP nat inside source static tcp 10.128.7.4 8333 AAA. BBB. CCC.181 extensible 8333
IP nat inside source static tcp 10.128.7.5 25 AAA. BBB. Expandable 25 CCC.182
IP nat inside source static tcp 10.128.7.5 80 AAA. BBB. CCC.182 extensible 80
IP nat inside source static tcp 10.128.7.5 443 AAA. BBB. CCC.182 extensible 443
IP nat inside source static tcp 10.128.7.5 8333 AAA. BBB. CCC.182 extensible 8333
IP nat inside source static tcp 10.128.7.6 25 AAA. BBB. Expandable 25 CCC.183
IP nat inside source static tcp 10.128.7.6 80 AAA. BBB. CCC.183 extensible 80
IP nat inside source static tcp 10.128.7.6 443 AAA. BBB. CCC.183 extensible 443
IP nat inside source static tcp 10.128.7.6 8333 AAA. BBB. CCC.183 extensible 8333
IP nat inside source static tcp 10.128.7.7 25 AAA. BBB. Expandable 25 CCC.184
IP nat inside source static tcp 10.128.7.7 80 AAA. BBB. CCC.184 extensible 80
IP nat inside source static tcp 10.128.7.7 443 AAA. BBB. CCC.184 extensible 443
IP nat inside source static tcp 10.128.7.7 8333 AAA. BBB. CCC.184 extensible 8333
IP nat inside source static tcp 10.128.7.8 25 AAA. BBB. Expandable 25 CCC.185
IP nat inside source static tcp 10.128.7.8 80 AAA. BBB. CCC.185 extensible 80
IP nat inside source static tcp 10.128.7.8 443 AAA. BBB. CCC.185 extensible 443
IP nat inside source static tcp 10.128.7.8 8333 AAA. BBB. CCC.185 extensible 8333
IP nat inside source static tcp 10.128.7.9 25 AAA. BBB. Expandable 25 CCC.186
IP nat inside source static tcp 10.128.7.9 80 AAA. BBB. CCC.186 extensible 80
IP nat inside source static tcp 10.128.7.9 443 AAA. BBB. CCC.186 extensible 443
IP nat inside source static tcp 10.128.7.9 8333 AAA. BBB. CCC.186 extensible 8333
IP nat inside source static tcp 10.128.7.10 25 AAA. BBB. Expandable 25 CCC.187
IP nat inside source static tcp 10.128.7.10 80 AAA. BBB. CCC.187 extensible 80
IP nat inside source static tcp 10.128.7.10 443 AAA. BBB. CCC.187 extensible 443
IP nat inside source static tcp 10.128.7.10 8333 AAA. BBB. CCC.187 extensible 8333
IP nat inside source static tcp 10.128.7.11 25 AAA. BBB. Expandable 25 CCC.188
IP nat inside source static tcp 10.128.7.11 80 AAA. BBB. CCC.188 extensible 80
IP nat inside source static tcp 10.128.7.11 443 AAA. BBB. CCC.188 extensible 443
IP nat inside source static tcp 10.128.7.11 8333 AAA. BBB. CCC.188 extensible 8333
IP nat inside source static tcp 10.128.7.12 25 AAA. BBB. Expandable 25 CCC.189
IP nat inside source static tcp 10.128.7.12 80 AAA. BBB. CCC.189 extensible 80
IP nat inside source static tcp 10.128.7.12 443 AAA. BBB. CCC.189 extensible 443
IP nat inside source static tcp 10.128.7.12 8333 AAA. BBB. CCC.189 extensible 8333
!
Guest-ACL extended IP access list
deny ip any 10.128.7.0 0.0.0.255
deny ip any 10.128.150.0 0.0.0.255
allow an ip
IP Internet traffic inbound-ACL extended access list
allow udp any eq bootps any eq bootpc
permit any any icmp echo
permit any any icmp echo response
permit icmp any any traceroute
allow a gre
allow an esp
!
access-list 1 permit 10.128.7.0 0.0.0.255
access-list 1 permit 10.128.150.0 0.0.0.255
access-list 1 permit 10.128.1.0 0.0.0.255
access-list 2 allow 10.0.0.0 0.255.255.255
access-list 2 refuse any
access-list 101 permit ip 10.128.7.0 0.0.0.255 any
access-list 101 permit ip 10.128.150.0 0.0.0.255 any
access-list 101 permit ip 10.128.1.0 0.0.0.255 any
Dialer-list 1 ip Protocol 1
!
!
!
!
format of server RADIUS attribute 32 include-in-access-req hour
RADIUS-server host 10.128.7.5 auth-port 1645 acct-port 1646 borders 7 xxxxx
RADIUS vsa server send accounting
!
control plan
!
IP route 10 bridge
IP road bridge 20
IP road bridge 30
Banner motd ^.
Unauthorized access prohibited. *
All access attempts are logged! ***************^
!
Line con 0
password 7 xxxx
no activation of the modem
line to 0
line vty 0 4
access-class 2
privilege level 15
transport input telnet ssh
!
max-task-time 5000 Planner
AAA.BBB.CCC.ddd NTP server
endErik,
The address pool you are talking about is to assign to the customer or the public router interface? If you want to set up your vpn client software point a full domain name instead of an IP address that you can do it too long you can ensure the use of the name is resolved by a DNS SERVER.
The range of addresses that you can be asigned to your Dialer interface will depend on your ISP.
-Butterfly
-
Passing of secure https page to page unsecured on the same site
Navigation to a page https secure page non-secure http always has you in a secure then url to navigate within the same site, when the user clicks to leave the secure page to go to a non-secure page from the address bar still has in a secure https url. Is it possible to encode the net asset value to not let that happen? Tried to add a full url for the non secure pages and that worked, but then my Active States of the nav doesn't work. Ideas or scripts that can help here? Thank you!
There is a script for it! Here is a link to it...
@webmosphere
www.webmosphere.co.UK
-
I have a table I need to secure/encrypt the data in a field (salary). The DB is 10G XE, so my options are limited to exactly what we create around this free version.
Ideally, I would like to hand off APEX development and maintenance of a person who should not see this detail, but who will need access to all of the DB using SQL Developer as well as the GUI of the APEX... in their functions as an administrator/developer.
At present, retail is protected to within the application of the Apex by groups of Apex and authorization scheme - while those of the correct group can display once connected field. There are currently no DB ID or install groups created outside those that come with the DB or that are created at the Apex.
Any direction you can provide to protect this area from prying eyes by Apex or through SQL Developer (as) external tools of Mgmt of DB?
Thank you
RichHello
The better you'll be able to do in this scenario is the use of DBMS_CRYPTO (http://download.oracle.com/docs/cd/B19306_01/appdev.102/b14258/d_crypto.htm) package to encrypt the field before storing it using a key (with salt) and decrypt on the fly when you need to display etc. Use a packed routine to perform the encryption/decryption process and make sure that you wrap the package so that the source code (i.e. the key/salt you used) cannot be easily identified.
Of course... If the people you give the DB have DBA privileges, then it becomes quite easy to overcome this (infact almost trivial) coverage, so you can protect you only so far.
Some of the other editions/functions etc do this kind of protection much more easy/more course (but that's why you pay for these options...).
Hope this helps,
John.
--------------------------------------------
Blog: http://jes.blogs.shellprompt.net
Work: http://www.apex-evangelists.com
Author of Pro Application Express: http://tinyurl.com/3gu7cd
AWARDS: Don't forget to mark correct or useful posts on the forum, not only for my answers, but for everyone! -
I have a virus called TROJAN horse: JS / FRAMEREF DETECTED BY MICROSOFT SEVCURITY ESSENTIALS. He resurfaced at every hour and MICROSOFT SECURITY ESSENTIAL FLAGS THERE AND ASK ASK A REBOOT OF MY SYSTEM. MICROSOFT ESSENTIALS LIST IT AS FILE: C:\Documents and NetworkService Settings\Temporary Internet Files\content. IE5\v8zk6vsy\dsvftg[1].htmMy security definitions are all to date, but the Microsoft safety scanner, and Microsoft Security essentials can not remove. It is not a Web site, because the alert comes back even if Internet explore is not selected.Help, please. This is what they call a number of root?Thank youJames Squirewell
Suggest that you first spread malware as the cause of the problem by following these steps:
I. - delete your temporary files
Click Start > all programs > Accessories > System Tools > Disk Cleanup
ResetII. - have your system scanned as a result of security/antivirus installed.
III. - run this tool from Kaspersky: how to remove malware belonging to the family of Rootkit. Win32.TDSS
http://support.Kaspersky.com/viruses/solutions?QID=208280684>
IV.- run Power Eraser
http://security.Symantec.com/nbrt/NPE.aspx?lcid=1033>
V.- Stinger
http://www.McAfee.com/us/downloads/free-tools/how-to-use-Stinger.aspx>
VI. the free AppRemove r
In this sense, there is a great 3rd third party tool which removes a large number of anti-malware applications - you can choose to remove the installed version, or has no traces in the registry of the facilities.
It is a tool of good reputation - it will ask you what you want to do before you make changes to your system. Well worth a try if you believe that traces of a previous tool anti-malware are still present on your system.
VII. - download, install, update and run both of these tools to a-squared free scans:
MalwareBytes anti-malware (MBAM)
http://www.Malwarebytes.org/products/malwarebytes_free>
SUPERAntiSpyware (SAS)
http://SUPERAntiSpyware.com/superantispywarefreevspro.html>
VIII. - run the Windows XP and Windows Server 2003 System File Checker (Sfc.exe) tool:
http://support.Microsoft.com/kb/310747>
IX. - run SFC/scannow Windows 7 & Vista
File system (CFS) Auditor verifies that all files of Windows 7 are where they should be, and they are not corrupt.
http://pcsupport.about.com/od/toolsofthetrade/HT/SFC-SCANNOW.htm>
`~`
If no malware has been detected, there's a Fixit on this page that will reset Windows components to update:
Read the article KB971058 via Internet Explorer-(only( )
How to reset Windows Update http://support.microsoft.com/kb/971058components >Suggest you download and Save it. Then, close all the open programs and web browsers.
Run Microsoft Fixit 50202.msi and choose its default mode.
After that he finished the race, see if the return code is displayed again when looking for updates.If not, then run the Fixit once more and choose his Aggressive mode.
Restart once it is finished and see if the return code always appears when the updates.IF malware is detected, then please post if it has been removed and that the specific name of what has been detected.
UTC/GMT is 00:37 Saturday, April 7, 2012
-
KB2676562 continues to download security updates when closing times
I downloaded KB2676562 updating security of more than 50 times! It seems that I can't turn off the machine without it download once again. What gives?
Hello
Did you change your computer?
You receive an error message?
Method 1:
I would say as you to see if the security update is installed on your computer.
See the Windows updates are installed
http://windows.microsoft.com/en-US/windows7/See-which-Windows-updates-are-installed.
Method 2:
If the update is repeatedly offers to install, I suggest you to see link and check.
Windows Update or Microsoft Update repeatedly offers the same update
http://support.Microsoft.com/kb/910339
Method 3:
I also suggest you to run the fixit tool and check.
The problem with Microsoft Windows Update is not working
http://support.Microsoft.com/mats/windows_update/
Method 4:
If the update is not installed, I suggest you perform the clean boot and check.
Clean boot state helps determine if third-party applications or startup items are causing the problem. If so, you need to maybe contact the manufacturer of the program for updates or uninstall and reinstall the program.
How to troubleshoot a problem by performing a clean boot in Windows Vista or in Windows 7
http://support.Microsoft.com/kb/929135
Note: After troubleshooting, make sure the computer to start as usual as mentioned in step 7 in the above article.
See also:
You cannot install some programs or updates
-
It's the waaaay too long, I know. My new passport obtained in a "wipe lockdown & security ', even if I had the correct access codes. Now the problem: can not get out of the phase of wipe... Security for more than 4 days straight now. He's stuck @99%! If I returned, potentially in terms of my personal data / information? All 100% of what existed in the past... or just the 1% that still? Help!
Do not return immediately.
Download and install BlackBerry connection on a PC, plug it in, wait for it to connect, and then click on restore, and then click on reload software or restore the factory settings. This will most likely fix the problem because it will remove the current operating system files and load the new in.
Here is a link to download the BlackBerry link.
https://swdownloads.BlackBerry.com/downloads/contactFormPreload.do?code=A8BAA56554F96369AB93E4F3BB06...
Maybe you are looking for
-
When you send the Web page link, the link is not active
When I want to send the link to a Web page I visit, I choose my yahoo email account and the webpage link is inserted in the email box, but it is not an active link and cannot be clicked for this person to go. They could, however, copy and paste the a
-
NB100 - I am unable to remove the old RAM
My first post, everyone please be nice I'm changing the ram on my nb100. I can't remove the old RAM.I changed the ram on the portable precedents without problem! Tilt ram, remove, replace!I am unable to tilt the ram to delete. Grateful for any help,
-
Satellite X 200-219: 3 screens in the display options
My x 200-219 has been less than a year when he started playing up.He went to the authorized repair center of Toshiba warranty, unfortunately, these guys wasn't able to fix it if she had to go back to Toshiba direct. The problem I had was with the gra
-
Replacement for HP Pavilion Elite e9250t HARD drive
I get an error message saying "A disk in a RAID 0 volume is a failure". I plan to replace both drives, currently, to 500 discs with a capacity higher than as 2 TB each. The Pavilion Elite e9250t supports 2 TB disks? And can I install them with RAID,
-
16 or 32 bit C 'time' runtime library output differs
Hello developers, I have a legacy 16-bit application written in C that displays the time system in UTC format (time Unix). Here is the code snippet: time_t t ; printf("%ld\n", time(&t)) ; There is a difference between the time displayed in seconds