Security Resources

Below is a list of links that provide useful information for creating and maintaining a secure environment for your computer and network

Link: Description:
http://www.oit.ucsb.edu/security/default.asp The Office of Information Technology’s Security Services deals with computer intrusion, harassing or unwanted email, viruses, denial of service attacks and potential vulnerabilities in University of California, Santa Barbara’s computers or networks.  They also provide updated information on recent viruses, information on how to recover from an attack, and the latest News, Advisories, and Alerts.
http://www.sophos.com/virusinfo/ Sophos is committed to raising the awareness of both general virus and anti-virus issues. They provide a comprehensive range of material and information about new viruses, hoaxes and white papers. They also have an option to sign up for monthly updates on new and revised virus threats, as well as providing information on their website and via email about current issues in security.
http://www.linuxsecurity.com/docs/colsfaq.html#2.1 Provides 5 steps, in order of importance, to protecting your linux machine from hackers quickly and easily.
http://en.tldp.org/HOWTO/Security-HOWTO/ This page is a general overview of the security issues that face Linux System Administrators.  It contains general security info and examples on how to protect yourself from intruders.
http://theory.lcs.mit.edu/~rivest/crypto-security.html A page containing numerous links to other sites dealing with cryptography and security.
http://www.cert.org/ The CERT® Coordination Center (CERT/CC) is a center of Internet security expertise. Their information ranges from protecting your system against potential problems to reacting to current problems to predicting future problems. Their work involves handling computer security incidents and vulnerabilities, publishing security alerts, researching long-term changes in networked systems, and developing information and training to help you improve security at your site.
http://www.sans.org/ SANS is a trusted leader in information security research, certification and education. The SANS (SysAdmin, Audit, Network, Security) Institute has a lot of useful information regarding almost any security issue.
http://www.fedcirc.gov/ The Federal Computer Incident Response Center (FedCIRC) is the federal civilian government's trusted focal point for computer security incident reporting, providing assistance with incident prevention and response.
http://www.microsoft.com/technet/security/tools/Tools/mbsahome.asp MBSA (from Microsoft) is a standalone application that scans Windows NT 4.0, Windows 2000, and Windows XP systems for common security misconfigurations. MBSA includes scanning local and remote machines, as well as both Windows servers and workstations.
https://grc.com/x/ne.dll?bh0bkyd2 Shields UP - A GRC Internet Security Detection System that scans on request the user's computer, including the Windows file sharing and reports
vulnerabilities.
www.cisecurity.org The Center for Internet Security, a comprehensive site with many tools and techniques, is a not-for-profit cooperative enterprise that helps organizations reduce the risk of business and e-commerce disruptions resulting from inadequate security configurations.
http://www.netfilter.org/ The netfilter/iptables project is the Linux 2.4.x / 2.5.x firewalling subsystem. It delivers you the functionality of packet filtering (stateless or stateful), all different kinds of NAT (Network Address Translation) and packet mangling.  (For Linux system Kernel 2.4.x or above)
http://www.zonelabs.com/ Creators of ZoneAlarm, a free program that provides a basic Internet security solution. The award-winning personal firewall blocks dangerous Internet threats, guarding your PC from many of the tactics used by hackers and data thieves.