 |
 |
|
|
|
|
|
I am a life-long learner. I seem to have a need to understand how everything in the world works. I am continually enriching my mind through reading and hands-on experience. My perfect career would be one that challenges me to learn every day. So far in my working career I have been very lucky to work with organizations that are on the cutting-edge of their industries, and provide me with that challenge.
My resume is here: Rick
Wanner Resume
Here are a number of papers I
have
written throughout the years. The majority of these are quick and dirty
documents I threw together to enlighten others. Either because I
was working on something, or because somebody asked me a question. The
remainder are on meaningful topics, or are
just
summaries of other articles. Either way if they are of use to you, you
are
welcome to them. Just remember that I retain all copyright to this
material,
and that if you want to distribute or reprint any of this material you
need my
permission first.
Home Network Security - June 2004
I'll tell you a secret...Your home PC may be contributing to the insecurity of the Internet! Truth is a large portion of the extraneous traffic on the Internet comes from infected PCs on always-on, high-speed links. These PCs are used to generate SPAM, scan other PCs, or sometimes they just sit there and spend all their days trying to find other machines to infect. With minimal effort, and minimal expense, home PCs can be secured so that external infection is highly unlikely. This paper describes the strategy I use to secure home computers for my clients.Securing your Linksys Wireless Router WRT54G - July
2005
The Linksys WRT54G Wireless Access point is a popular consumer grade
802.11g
Wireless Access Point. The security abilities of the WRT54G are much
better than in previous Linksys Wireless products.. This document
describes how to use the integrated security
features to
harden the Linksys router to maximize the security potential of the
device
and
minimize the risk of intrusion.
Securing your Linksys Wireless Router BEFW11S4 -
April 2003
The Linksys BEFW11S4 Wireless Access point is a popular consumer grade
802.11b
Wireless Access Point. The wireless security abilities of the BEFW11S4
are
limited. This document describes how to use these limited security
features to
harden the Linksys router to maximize the security potential of the
device
and
minimize the risk of intrusion. This document is somewhat dated,
but still relevant.
Hardening Windows 2000 Server – August 2003
A hardening document for a Windows 2000 Server to be deployed as an
Internet
facing server. It assumes you want to run a small number of
applications on the
server and run stand-alone (i.e. not part of a domain).
Rule Organization For Stateful Inspection Firewalls
– October
2003
Too often firewall administrators are cast into that role with their
eyes closed
and no real good way to get training or experience except trial by fire. This is a short document put together
for an acquaintance whose company found themselves in exactly this
situation. The document describes some
possibilities for how firewall rules should be organized in a stateful
inspection firewall. The content
is largely an updated version of material from my GCFW practical, and
some work
I did in a previous job, with some verbiage to make it stand-alone.
SANS GREM Practical - May 2005
This is the practical paper I wrote to fulfill one of the requirements for the SANS GIAC Reverse Engineering Malware certificate. The original version of this paper is available at http://www.giac.org/certified_professionals/practicals/grem/0032.php.SANS GSEC Practical - May 2004
This is the
practical
paper I wrote to fulfill one of the requirements
for the SANS GIAC Security Essentials certification. The original
version of this paper is available at http://www.giac.org/certified_professionals/practicals/gsec/3837.php.
SANS GCFW Practical - May 2001
This is the honors practical paper I wrote to fulfill one of the
requirements
for the SANS GIAC Certified Firewall Analyst certification. The
original
version of this paper is available at http://www.giac.org/certified_professionals/practicals/gcfw/0135.php.
The “Value” of Certification – August 2003 (Updated
November
2003)
Originally put together for a Birds of a Feather (BoF) at SAN
Parliament Hill
2003, this is a slide deck containing talking points for a moderated
discussion
on the value of certifications. It
is mostly quotes related to certification gathered from all over
consolidated
into one place. This BoF was done
at SANS Parliament Hill 2003, and SANS CDI East 2003.
SANS is not
only the best source
hands down for Information Security training (I am biased), but their
website
is one of the best sources of Information Security reference material
anywhere. The also offer several
free email based e-zines on various security topics.
A
collection of white papers and
research papers written by SANS students.
Great for beginners to Information Security, but I use it as a
reference
source as well.
In my mind
the worst kind of virus
is the email virus hoax. Please
help to stomp them out.
SC Magazine - http://www.scmagazine.com/
In
mythology Cerberus
(or Cyberus) is the
three-headed hound that guards the gates to the underworld. . Of the
three
heads, one head is a lion, the second a dog, the third a wolf. Cerberus also has lion's claws, a
serpents tail and a mane of snakes. A fiercesome creature indeed.
Cerberus was
eventually captured by Hercules (or Heracles) in his twelfth and final
labour
and taken to the world above. Eventually Cerberus escaped and returned
to the
underworld.
| |||||||||
