|
CPTTM
Network Admin newsletter issue #27, Kent Tong, Editor
in Chief
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
This
CPTTM NetAdmin newsletter is to bring useful news to
you, Network Administrators in
Macau, for references without obligations, so that you can do your jobs
easier and better! Hope you like it. if you'd like to unsubscribe or
recommend your friends to subscribe, just email me at kent@cpttm.org.mo. Old issues are available here.
Also printable version for this newsletter.
If you
have an application that looks up products using product names, using a
SQL like " Of
course, this is a simple fix. In practice, you need to
follow
a proven methodology, e.g., how to identify the queries
generating the most total load in a certain period (i.e., most
frequently used and each taking up a lot of time).
There
are also useful tools to help you in the process. To learn all these
issues, please join our upcoming Oracle
10g SQL Tuning Workshop (Official course), delivered by
Oracle instructor from HK. If you plan to take the OCP certification, you
must take an
official Oracle course such as this one.
It was
rated as the number two intrusion detection system (IDS), following Snort which is a
popular network-based IDS that inspects network traffic instead of host
logs and files. It means that OSSEC is
considered the best host-based IDS around.
You and
your colleagues may login as the administrator to perform
administrative work. So you all
know the same password. This is really a poor practice. Why? If one of
you leaves the company, for security you will have to change the
password. If you have 30 such administrator accounts (e.g.,
OS, routers, DBMS, ...), then you'll have a lot of work to do
and a lot of new passwords to memorize! A much better way is to use a program
called "sudo" (available for Linux
and Windows).
It works like this: You disable the administrator account and each of
you will use a separate ordinary user account. No one knows
the administrator password. You configure sudo to recognize these
ordinary user accounts. When any of you needs to perform administrative
work, you can ask sudo to launch a command prompt or an EXE as the
administrator (e.g., " How is sudo different from the runas command in
Windows? With runas, you have to enter the administrator account
password. With sudo, you only enter your ordinary user account password. In addition, you can configure sudo to only allow
a user to execute a specific command as root. This is useful to
delegate simple tasks to junior administrators or power users. For
example, at Cyber-Lab, we configure it to allow our part-time
technicans to restart our DHCP server using " The Cisco Networking Academy Program is moving toward the associate level CCNA Security certification (router IOS security). The stuff regarding PIX and ASA will remain in the professional level CCSP certification.
As a regional academy in Macau, we will be focusing our training
on the CCNA security certification too in 2009. If you'd like to
learn PIX and ASA, here is your last chance: Cisco
Networking Academy Program (Fundamentals of Network Security) to be started on Nov 20. Please hurry. In addition, there are some interesting IT courses for your kids:
FeedbacksAny questions, ideas or experiences to share? Contact me at 88980601 or kent@cpttm.org.mo. We also have 3 more newsletters: CIO newsletter, Software developer newsletter and E-flow newsletter. Until next time, Kent Tong |
