Network_Security Archive

I did some work recently assessing how Microsft’s Hypervisor (Hyper-V) addresses (or doesn’t address) some common network security based threats in a multi-tenant public cloud environment. I then set out to test whether there are controls in place to mitigate those threats. I would have liked to compare different Hypervisors and their capabilities, but I have yet to do that comparison. If you’re interested in testing independently, there are several good tools out there including nmap, yersinia, hping and scapy. Those four tools will allow you to test every scenario in this document. Some detail on the test case is provided in each section. First, some basic definitions that I use in this post: TOR switch: Top of rack switch Switch: Generally references the network [&hellip

Read More...

In previous posts I’ve written about how to install Hadoop on Ubuntu in under 20 minutes, how to configure NetFlow export into Hadoop and how to add multiple nodes to your Hadoop cluster. In this post, I’ll outline how to start querying Netflow data via Hive so it can be analyzed in Excel. The expectation is that you’ve followed the previous posts in this series so that your current Hadoop installation is in a predictable state. Here are the foundational things you need to know to accomplish this task: I highly suggest shutting down your netflow collector in advance. There are parts of this procedure that may be complicated by introducing new files while the metastore is in the middle of transition Hive’s metadata store [&hellip

Read More...

List of things that don’t support Flowspec: 1) Quagga does not support flowspec 2) Juniper SRX does not support flowspec 3) ExaBGP supports flowspec but is not a listening service – it establishes connections only (note as of 1/13/2014 ExaBGP does support listening services but I have not yet tested it) 4) Cisco does not support flowspec So – if you want to play with FlowSpec — it looks like a high end Juniper router and ExaBGP are two good choices. Maybe an olive vm would also work? #fail

Read More...

Comcast enabled IPv6 across Washington State during the week of September 20, 2013, so I figured I better try and get it working at home. It took me a good 8 hours of trial and error to get it going – as documentation is a bit sparse and the number of people that have got it working (and post about it)  is also only a few. But, as of 9/29/13, I’m able to access the general IPv6 Internet! I worked at Comcast and worked on IPv6 there, so I had some insight on major deployment decisions and also technical contacts. For example, knowing that Comcast supports DHCPv6 and not SLAAC is important when configuring your gateway. I’ll attach my configurations, but here are a few [&hellip

Read More...


Warning: file_get_contents(/opt/httpd/sites/rickmayberry.com/gpslogger.txt): failed to open stream: No such file or directory in /var/sites/rickmayberry.com/wp-content/plugins/google-maps-widget/google-maps-widget.php on line 150