TMS zl Module Planning and Implementation Guide 2009-08
Table Of Contents
- Contents
- Glossary of Acronyms and Abbreviations
- 1.0 Purpose
- 2.0 Intended Audience
- 3.0 Objectives
- 4.0 Prerequisites
- 5.0 Skills
- 6.0 The HP ProCurve Threat Management Services zl Module
- 7.0 Common TMS Security Control Points
- 8.0 Deployment Considerations
- 9.0 Installation and Preparation of the TMS zl Module
- 10.0 Configuration of the TMS zl Module
- 11.0 Using multiple HP ProCurve Threat Management Services zl Modules
- Appendix A – Additional References
- Appendix B – Sample Company Information Assets Spreadsheet
- Sample “Information Assets” tab (See Embedded “Company Information Assets” Microsoft Excel 2003 spreadsheet)
- “Server Network Details” tab (See Embedded “Company Information Assets” Microsoft Excel 2003 spreadsheet)
- “TMS Zones” tab (See Embedded “Company Information Assets” Microsoft Excel 2003 spreadsheet)
- “Firewall Rules” tab (See Embedded “Company Information Assets” Microsoft Excel 2003 spreadsheet)
- /Sample “Company Information Assets” Microsoft Excel 2003 spreadsheet
- Appendix C – Information Gathering Tools
- Appendix D - Updating Switch Software
- Appendix E – Emergency Recovery Process
Page 18
Directory Traversal Attempt, Windows FTP Guest
Account, etc.
HTTP-specific: PHPNuke Forum SQL Insertion,
Access to Alexa Spyware Site, BEA WebLogic URL
JSP Source Code Disclosure, ColdFusion File
Disclosure, etc.
SQL-specific: IIS BattleAxe Forum SQL Injection,
Oracle 9iAS Portal Demo SQL Injection, All-In-One
Control Panel SQL Injection, etc.
SNMP-specific: SNMP Get Guessable Community,
Network Interface Enumeration, LANMan Services /
Shares / Users Enumeration, Host Process Enumeration,
ARP Table Enumeration, TCP Connections
Enumeration, UDP Listeners Enumeration, etc.
Generic SMTP: Command line < 512 bytes, Checking
recursive boundary depth, Header length < configured
maximum limit
Generic FTP: Command line < 512 bytes
Generic HTTP: Check for URL decoding in URL
request, directory traversal beyond root directory, NULL
method, evasion techniques, user-configurable length of
URL request, user-configurable MIME header size,
user-configurable number of MIME headers, user-
configurable MIME header line length
Generic SNMP: Malformed SNMP message with
wrong ASN.1 types, Check for ASN.1 lengths that
exceed packet length