Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: VALN hopping

from [Micheal Espinola Jr] Network Security [Permanent Link]
Subject: Re: VALN hopping
Date: Fri, 30 Sep 2005 13:48:07 -0400 
Agreed.  I would not trust logical seperation for a DMZ.

On 9/28/05, Hayes, Ian <Ian.Hayes@wynnlasvegas.com> wrote:

Safeguard against traversing VLANs is getting better, but I still don't
like the idea of having mixed security VLANs on the same switch. There
are still a number of exploits that have a chance of working, such as
CAM table flooding. IMHO, good design physically separates the security
zones- you really can't rely that logical constraints are going to
always work, but then I'm a belt-and-suspenders kind of guy when it
comes to network design. I'm expecting something to fail.

Ian Hayes | Senior Systems Engineer
Wynn Las Vegas
3131 South Las Vegas Blvd, Las Vegas, NV 89109
Ph (702) 770-3252 | Cell (702) 266-6002
Ian.hayes@wynnlasvegas.com


-----Original Message-----
From: josh@tstc.edu [mailto:josh@tstc.edu]
Sent: Wednesday, September 28, 2005 9:59 AM
To: security-basics@securityfocus.com
Subject: VALN hopping

WWe are having a heated discussion about using VLAN's as a type of

DMZ, so

I am asking the experts.  I prsonally like to see physical isolation;
however, our network person doesn't feel there is a threat of VLAN
hopping.  Please let me know your opinions.

Thank you,









--
ME2  <http://www.santeriasys.net/>
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: VALN hopping, David Barroso
Next by Date:  RE: Credit/Debit Card Security, Dan Tesch
Previous by Thread:  Re: VALN hopping, David Barroso
Next by Thread:  RE: VALN hopping, Payton, Zack
Indexes:  [Date] [Thread] [Top] [All Lists]