| |
As your voice network grows, you may have added PC-based peripheral equipment
running Windows, Unix or Linux. These peripheral servers commonly perform
functions such as ACD or skills-based routing, voice logging, call detail
recording, interactive voice response, and much more. These systems are so
critical to the function of your business that the vendor provides strict limits
on the installed software, virus checkers, and service packs. The vendors'
applications may be optimally configured, but is the server secure? Are there
TCP or UDP ports open to everyone on your corporate network or the Internet? Are
there unknown or unnecessary services running such as NETBIOS, SNMP, or HTTP? If
it can be configured through a browser, is it vulnerable to CGI hacks? Do you
check every day? Installing your servers behind a firewall doesn't mean they're
protected. In fact, 80% of network attacks originate from inside the firewall (ComputerWorld,
January, 2002).
CallKnowing's Telecom Intrusion Detection for IP Systems
Reports perform comprehensive
security scans against your servers each day. We not only look for the most
common vulnerabilities, we also attempt to connect to every possible port on the
server. If any port or service "turns on" or "turns off," we let you know. We
alert you about services (i.e. potential Trojan horses) that have started in the
past day, and we also let you know about those that have stopped (i.e. critical
services). You can then resolve the issues before they affect your business.
During the security assessment, we check for all of the following:
- Enumeration of Possible Entry Points
- Rogue services and open TCP and UDP ports
- SNMP holes
- CGI holes
- Rogue or backdoor users
- Trojan horses or backdoor software
- Open shares
- Weak network passwords
- Enumeration of users, services, etc.
- Information and Alerts
- Operating system identification
- Known security issues in software packages
- Well known security issues
- Exploitation of NETBIOS
- MS SQL auditing
|
