Computerworld - Lately I've been having a problem getting Tripwire and our enterprise backup software to work together.
I recently purchased the file-integrity-checking software from Portland, Ore.-based Tripwire Inc. to serve as an additional security layer after recent mergers wreaked havoc with my company's intrusion-detection system infrastructure. The problem involved the backup software's manipulation of file attributes, which in turn led Tripwire to generate false alerts. We tweaked the policy files as a work-around.
That problem resolved, I still had to roll out the Tripwire agents to all of our servers. To aid in the distribution of those Tripwire agents, I created a Web site with installation software and instructions. For each distribution, I created either a shell script or batch file that automates the installation process on our Unix and Windows NT servers.
Now when we direct systems administrators to install these applications on a system, we can point them to the Web site. They then download, extract and run the script or batch file, and the software installs itself automatically. After the install is completed, the administrator contacts the SecurID or Tripwire administrator, who adds the resource to the appropriate application management console.
Meanwhile, my efforts to build an enterprise wireless LAN - and eliminate unauthorized WLAN installations companywide - seems to take a new twist every day. I'm still evaluating products, but my shortlist includes Cisco Systems Inc.'s Aironet hardware and San Mateo, Calif.-based AirWave Wireless Inc.'s AirWave Management Platform software.
Unfortunately, the Cisco access points (AP) don't support rogue AP detection, and the salesperson says that won't happen until next year. Considering the problems I've been having with users installing unauthorized, insecure APs, rogue AP detection is high on my list of desired features. In fact, I won't agree to deploy a WLAN infrastructure without it.
If we do choose Cisco, it will be because of the company's market position. It's financially stable, our company already has a relationship with it, and we know we can count on Cisco for support. In contrast, the other companies we've looked at are all small and management has been reluctant to purchase equipment from them.
Until we have a WLAN system with rogue AP detection capabilities, I'm still stuck finding a way to locate those illegal APs I've detected in our buildings. These APs are configured with wide-open security settings, providing open on-ramps to our LAN infrastructure.
I detected them by equipping my Compaq iPaq with an AirMagnet Handheld PC Card and detection software from Mountain View, Calif.-based AirMagnet Inc. I
Free Insider GuideCopyright © 1994 - 2012 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.
