DOCSLIB.ORG

Falcongaze Securetower Administrator Guide

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Falcongaze Securetower Administrator Guide Falcongaze SecureTower. Administrator Guide Table of Contents 1 What's New.................................................................................................................8 2 Program Overview.................................................................................................................9 3 Tips for Guide.................................................................................................................10 4 Tips & Tricks.................................................................................................................11 for the console 5 Preparing to.................................................................................................................14 start: Connecting to the server 6 Monitoring.................................................................................................................16 system status 6.1 Starting and...............................................................................................................17 stopping services 6.1.1 Service startup parameters.............................................................................................. 18 ..................................................................................................................................... 6.1.1.1 Service startup modes 19 ..................................................................................................................................... 6.1.1.2 Selecting a user account to start up 21 6.2 Setting up connection...............................................................................................................21 ports for services 7 Setting up events.................................................................................................................25 and notifications 7.1 View server ...............................................................................................................25component events 7.2 Server settings...............................................................................................................28 8 Configuring.................................................................................................................32 Central Server 8.1 Storing the intercepted...............................................................................................................32 data 8.1.1 Configuring data storages.............................................................................................. 33 ..................................................................................................................................... 8.1.1.1 Configuring connection to PostgreSQL database 34 ..................................................................................................................................... 8.1.1.2 Configuring connection to SQLite database 38 ..................................................................................................................................... 8.1.1.3 Configuring connection to MySQL database 42 8.1.1.4 Configuring connection to Microsoft SQL Server database ..................................................................................................................................... 46 ..................................................................................................................................... 8.1.1.5 Configuring connection to Oracle database 52 ..................................................................................................................................... 8.1.1.6 Managing databases 56 8.1.2 Configuring database.............................................................................................. groups and rotation 58 2 ..................................................................................................................................... 8.1.2.1 Creating a rotation group 61 ..................................................................................................................................... 8.1.2.2 Managing databases in a group 64 ..................................................................................................................................... 8.1.2.3 Managing a rotation group 65 8.1.3 Data replication .............................................................................................. 66 8.1.4 Configuring saving.............................................................................................. rules 69 8.1.5 Server advanced options.............................................................................................. 71 8.2 Configuring server...............................................................................................................73 authorization 8.2.1 Manual registration.............................................................................................. 75 8.3 Configuring license...............................................................................................................76 properties 8.3.1 License parameters.............................................................................................. 76 8.3.2 Downloading license.............................................................................................. 79 8.4 Configuring search...............................................................................................................80 thesauruses 8.4.1 Creating user-defined.............................................................................................. thesaurus 80 8.4.2 Predefined thesaurus.............................................................................................. 82 8.5 Configuring Digital...............................................................................................................82 Fingerprints 8.5.1 Digital fingerprints.............................................................................................. of files and folders 85 8.5.2 Digital fingerprints.............................................................................................. of CSV files 88 8.5.3 Digital fingerprints.............................................................................................. of databases 91 8.6 Configuring file...............................................................................................................94 hashes 8.6.1 File hashes .............................................................................................. 98 8.6.2 Folder hashes .............................................................................................. 99 8.6.3 Hashes added from.............................................................................................. files 100 8.7 Recognition...............................................................................................................100 8.8 Managing search...............................................................................................................104 requests 9 Setting up.................................................................................................................105 user identification service 9.1 User management...............................................................................................................105 9.1.1 Creating a user card.............................................................................................. 107 ..................................................................................................................................... 9.1.1.1 General user information 109 ..................................................................................................................................... 9.1.1.2 User Network identification 110 ..................................................................................................................................... 9.1.1.3 IP address usage history 112 ..................................................................................................................................... 9.1.1.4 User contact identification 114 ..................................................................................................................................... 9.1.1.5 User groups 114 9.1.2 Importing users from.............................................................................................. Active Directory 116 9.1.3 Modifying a user ..............................................................................................card 117 9.1.4 Deleting a user card.............................................................................................. 118 9.2 Managing user...............................................................................................................119 groups and access rights 9.2.1 Creating a user group.............................................................................................. 119 3 Falcongaze SecureTower. Administrator Guide 9.2.2 Modifying a user ..............................................................................................group 126 9.2.3 Deleting a user group.............................................................................................. 126 9.3 Setting user...............................................................................................................127 authentication mode 9.4 Active Directory...............................................................................................................129
Load more

Recommended publications
  • Cisco SCA BB Protocol Reference Guide
    Cisco Service Control Application for Broadband Protocol Reference Guide Protocol Pack #60 August 02, 2018 Cisco Systems, Inc. www.cisco.com Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco website at www.cisco.com/go/offices. THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS. THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California. NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE. IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
    [Show full text]
  • Skype Voip Service- Architecture and Comparison Hao Wang Institute of Communication Networks and Computer Engineering University of Stuttgart Mentor: Dr.-Ing
    INFOTECH Seminar Advanced Communication Services (ACS), 2005 Skype VoIP service- architecture and comparison Hao Wang Institute of Communication Networks and Computer Engineering University of Stuttgart Mentor: Dr.-Ing. S. Rupp ABSTRACT Skype is a peer-to-peer (P2P) overlay network for VoIP and other applications, developed by KaZaa in 2003. Skype can traverse NAT and firewall more efficiently than traditional VoIP networks and it offers better voice quality. To find and locate users, Skype uses “supernodes” that are running on peer machines. In contrast, traditional systems use fixed central servers. Also Skype uses encrypted media channel to protect the dada. The main contribution of this article is illustrating the architecture and components of Skype networks and basically analyzing key Skype functions such as login, NAT and firewall traversal. Furthermore, it contains comparisons of Skype networks with VoIP networks regarding different scenarios. On that basis it reveals some reasons why Skype has much better performance than previous VoIP products. Keywords Voice over IP (VoIP), Skype, Peer-to-peer (p2p), Super Node (SN) 1. Introduction It is expected that real-time person-to-person communication, like IP telephony (VoIP), instant messaging, voice, video and data collaboration will be the next big wave of Internet usage. VoIP refers to technology that enables routing of voice conversations over the Internet or any other IP network. Another technology is peer-to-peer, which is used for sharing content like audio, video, data or anything in digital format. Skype is a combination of these two technologies. It has much better performance by making use of advantages of both technologies.
    [Show full text]
  • Devicelock® DLP 8.3 User Manual
    DeviceLock® DLP 8.3 User Manual © 1996-2020 DeviceLock, Inc. All Rights Reserved. Information in this document is subject to change without notice. No part of this document may be reproduced or transmitted in any form or by any means for any purpose other than the purchaser’s personal use without the prior written permission of DeviceLock, Inc. Trademarks DeviceLock and the DeviceLock logo are registered trademarks of DeviceLock, Inc. All other product names, service marks, and trademarks mentioned herein are trademarks of their respective owners. DeviceLock DLP - User Manual Software version: 8.3 Updated: March 2020 Contents About This Manual . .8 Conventions . 8 DeviceLock Overview . .9 General Information . 9 Managed Access Control . 13 DeviceLock Service for Mac . 17 DeviceLock Content Security Server . 18 How Search Server Works . 18 ContentLock and NetworkLock . 20 ContentLock and NetworkLock Licensing . 24 Basic Security Rules . 25 Installing DeviceLock . .26 System Requirements . 26 Deploying DeviceLock Service for Windows . 30 Interactive Installation . 30 Unattended Installation . 35 Installation via Microsoft Systems Management Server . 36 Installation via DeviceLock Management Console . 36 Installation via DeviceLock Enterprise Manager . 37 Installation via Group Policy . 38 Installation via DeviceLock Enterprise Server . 44 Deploying DeviceLock Service for Mac . 45 Interactive Installation . 45 Command Line Utility . 47 Unattended Installation . 48 Installing Management Consoles . 49 Installing DeviceLock Enterprise Server . 52 Installation Steps . 52 Installing and Accessing DeviceLock WebConsole . 65 Prepare for Installation . 65 Install the DeviceLock WebConsole . 66 Access the DeviceLock WebConsole . 67 Installing DeviceLock Content Security Server . 68 Prepare to Install . 68 Start Installation . 70 Perform Configuration and Complete Installation . 71 DeviceLock Consoles and Tools .
    [Show full text]
  • Insight Into the Gtalk Protocol
    1 Insight into the Gtalk Protocol Riyad Alshammari and A. Nur Zincir-Heywood Dalhousie University, Faculty of Computer Science Halifax NS B3H 1W5, Canada (riyad,zincir)@cs.dal.ca Abstract Google talk (Gtalk) is an instant messeger and voice over IP client developed by Google in 2005. Gtalk can work across firewalls and has very good voice quality. It encrypts calls end-to-end, and stores user information in a centralized fashion. This paper analyzes fundamental Gtalk functions such as login, firewall traversal, and call establishment under different network scenarios. The analysis is performed by both active and passive measurement techniques to understand the Gtalk network traffic. Based on our analysis, we devised algorithms for login and call establishment processes as well as data flow models. I. INTRODUCTION Voice over IP (VoIP) is becoming a major communication service for enterprises and individuals since the cost of VoIP calls is low and the voice quality is getting better. To date, there are many VoIP products that are able to provide high call quality such as Skype [1], Google Talk (Gtalk) [2], Microsoft Messenger (MSN) [3], and Yahoo! Messenger (YMSG) [4]. However, few information has been documented about protocol design used by these VoIP clients since the protocols are not standardized, many of them are proprietary, and the creators of these softwares want to keep their information confidential and protect their protocol design form competitors. In this paper, we have generated and captured network traffic in order to determine the broad characteristics of one of the most recent and fast growing VoIP applications, Google Talk.
    [Show full text]
  • Accessibilité & Adaptabilité Des Ressources Numériques Pour L'école
    Accessibilité & Adaptabilité des Ressources Numériques pour l’École 1 - FORMATS, NORMES, STANDARDS, LANGAGES Version 1 Date : novembre 2015 A2RNE : Accessibilité et Adaptabilité des Ressources Numériques pour l’École Version 1 Formats Normes Standards Langages Novembre 2015 1 - FORMATS, NORMES, STANDARDS, LANGAGES ............................................................................................. 1 1. INTRODUCTION ................................................................................................................................ 4 1.1. Contexte ............................................................................................................................ 4 1.2. Objectif du document ............................................................................................................ 4 1.3. Organisation du document ...................................................................................................... 4 2. STANDARDS INTERNATIONAUX ............................................................................................................. 6 2.1. W3C et WAI ........................................................................................................................ 6 WCAG 1.0 ........................................................................................................................... 6 WCAG 2.0 ........................................................................................................................... 6 ARIA ..................................................................................................................................
    [Show full text]
  • Sailpoint Direct Connectors Administration and Configuration Guide for Version 7.3
    SailPoint Direct Connectors Version 7.3 Administration and Configuration Guide Copyright © 2018 SailPoint Technologies, Inc., All Rights Reserved. SailPoint Technologies, Inc. makes no warranty of any kind with regard to this manual, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. SailPoint Technologies shall not be liable for errors contained herein or direct, indirect, special, incidental or consequential damages in connection with the furnishing, performance, or use of this material. Restricted Rights Legend. All rights are reserved. No part of this document may be published, distributed, reproduced, publicly displayed, used to create derivative works, or translated to another language, without the prior written consent of SailPoint Technologies. The information contained in this document is subject to change without notice. Use, duplication or disclosure by the U.S. Government is subject to restrictions as set forth in subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 for DOD agencies, and subparagraphs (c) (1) and (c) (2) of the Commercial Computer Software Restricted Rights clause at FAR 52.227-19 for other agencies. Regulatory/Export Compliance. The export and re-export of this software is controlled for export purposes by the U.S. Government. By accepting this software and/or documentation, licensee agrees to comply with all U.S. and foreign export laws and regulations as they relate to software and related documentation. Licensee will not export or re-export outside the United States software or documentation, whether directly or indirectly, to any Prohibited Party and will not cause, approve or otherwise intentionally facilitate others in so doing.
    [Show full text]
  • Дата: 02.04.2021 Група: 13 Предмет: Обробка Інформації
    Дата: 02.04.2021 Група: 13 Предмет: Обробка інформації УРОК 112-113 ТЕМА: «Робота з pdf- документами» МЕТА: - Вивчити поняття pdf формату - Опанувати основні відомості про безкоштовні програми для обробки pdf формату - Розвити навички роботи з інструментами обробки pdf документів - Виховати інформаційно-освічену особу, цікавість до обраної професії, дисципліну та уважність Вивчення нового матеріалу: 1. Загальні поняття PDF (Portable Document Format) – універсальний формат електронних документів, якій дозволяє відображати документ у будь якій операційній системі, будь-якій програмі, на будь якому пристрої у тому ж вигляді у якому він був створений. Формат був розроблений компанією Adobe® Systems з використанням мови PostScript. На сьогоднішній день фактично став міжнародним форматом для обміну інформацією. У 2008 році Adobe передала специфікацію та права на розробку формату PDF Міжнародній організації по стандартам (ISO), завдяки чому PDF став відкритим форматом, доступним будь-якім розробникам і тому будь який формат файлу можна перевести у формат PDF. плюси: - стандартизованность і популярність: відкривається на будь-яких пристроях з будь- якими операційними системами рівно в тому вигляді, в якому був створений; - засіб перегляду формату, Adobe Acrobat Reader, часто встановлено на комп'ютер, якщо пристрій поставлялося з операційною системою. Якщо ж ні - він доступний для скачування з сайту розробника Adobe Systems і це абсолютно безкоштовно; - займає мало місця на жорсткому диску, тому що підтримує безліч алгоритмів компресії; - безпека: користувач може налаштувати параметри безпеки для свого файлу, наприклад, заборона друку, заборона редагування, використання електронного підпису для визначення автентичності документа і т.д. мінуси: - редактор PDF файлів – може бути платний; - редагувати pdf файли в спеціалізованих програмах, складніше, ніж будь-які інші графічні файли; - складно працювати з текстом, він сприймається як картинка.
    [Show full text]
  • An Analysis of the Skype P2P Internet Telephony Protocol
    An Analysis of the Skype P2P Internet Telephony Protocol 王永豪 B91902114 杜明可 B91902104 吳治明 B91902110 Outline z Intro z The Skype Network z Key Components z Experiment setup explained z Experiment performed and results z Startup z Login z User search z Call Establishment and teardown z Logout z Media Transfer z Conferencing z Other Skype facts z Conclusion Introduction z Previous solutions are cost saving however falls short on quality. z Call-completion rate are low due to NATs and Firewalls. z Bloated interface makes usage a hassle. Requires technical expertise. The Skype Network (as it used to be) z Central Login Server z Super Nodes z Ordinary Nodes The Skype Network (as it used to be) z NAT and Firewall traversal z STUN and TURN z No global traversal server z Function distributed among nodes z A 3G P2P network z Global Index Technology z Multi-tiered network where supernodes communicate in such a way that every node in the network has full knowledge of all available users and resources with minimal latency z 72 hour guaranteed user find z TCP for signaling z UDP & TCP for media traffic The way it looks now Key Components (as they used to be) z Ports z A Skype Client (SC) opens TCP and UDP listening ports as configured in the client itself z SC also listens on ports 80(HTTP) and 443(HTTPS) z No default listening port z Host Cache (HC) z Skype is an overlay network z Thus the HC contains IP address and port# of super nodes.
    [Show full text]
  • Skypemorph: Protocol Obfuscation for Tor Bridges
    SkypeMorph: Protocol Obfuscation for Tor Bridges Hooman Mohajeri Moghaddam Baiyu Li Mohammad Derakhshani Ian Goldberg Cheriton School of Computer Science University of Waterloo Waterloo, ON, Canada {hmohajer,b5li,mderakhs,iang}@cs.uwaterloo.ca ABSTRACT The Tor network is designed to provide users with low- latency anonymous communications. Tor clients build cir- cuits with publicly listed relays to anonymously reach their destinations. However, since the relays are publicly listed, they can be easily blocked by censoring adversaries. Con- sequently, the Tor project envisioned the possibility of un- listed entry points to the Tor network, commonly known as bridges. We address the issue of preventing censors from detecting the bridges by observing the communications be- tween them and nodes in their network. We propose a model in which the client obfuscates its mes- sages to the bridge in a widely used protocol over the Inter- net. We investigate using Skype video calls as our target protocol and our goal is to make it difficult for the censor- Figure 1: This graph from metrics.torproject.org shows the ing adversary to distinguish between the obfuscated bridge number of users directly connecting to the Tor network from connections and actual Skype calls using statistical compar- China, from mid-2009 to the present. It shows that, after isons. 2010, the Tor network has been almost completely blocked We have implemented our model as a proof-of-concept from clients in China who do not use bridges. [41] pluggable transport for Tor, which is available under an open-source licence. Using this implementation we observed the obfuscated bridge communications and compared it with attempts to block access to Tor by regional and state-level those of Skype calls and presented the results.
    [Show full text]
  • Falcongaze Securetower User Guide
    Falcongaze SecureTower. User Guide Table of Contents 1 What's............................................................................................................................7 New 2 Program............................................................................................................................8 overview 3 Tips for............................................................................................................................9 Guide 4 Getting............................................................................................................................10 started. Connecting to the server 5 Console............................................................................................................................13 options 5.1 Tips &.........................................................................................................................20 Tricks in the console 6 Information............................................................................................................................24 search 6.1 Full-text.........................................................................................................................26 search 6.2 Search.........................................................................................................................29 by data type 6.3 General.........................................................................................................................30 search parameters 6.4 Additional.........................................................................................................................31
    [Show full text]
  • Os Protocolos De Todo Dia
    Estudo de Caso Os protocolos de todo dia Prof. Daniel Fernando Pigatto Qual é a arquitetura de aplicação do WhatsApp? ❏ Cliente-servidor ❏ Ponto-a-ponto ❏ Híbrida Qual é a arquitetura de aplicação do WhatsApp? ❏ Cliente-servidor ❏ Ponto-a-ponto ❏ Híbrida WhatsApp ➔ Arquitetura de aplicação: Modelo cliente-servidor ➔ Protocolo de aplicação: XMPP (Extensible Messaging and Presence Protocol), que é baseado em XML e era antigamente conhecido como Jabber ➔ Protocolo de transporte: TCP ➔ Segurança: fim a fim com Signal Protocol Qual é a arquitetura de aplicação do Skype? ❏ Cliente-servidor ❏ Ponto-a-ponto ❏ Híbrida Qual é a arquitetura de aplicação do Skype? ❏ Cliente-servidor (2018) ❏ Ponto-a-ponto (até o início de 2018) ❏ Híbrida Skype ➔ Arquitetura de aplicação: Modelo cliente-servidor ◆ Até o início de 2018 era P2P (fonte) ➔ Protocolo de aplicação: Skype Protocol (proprietário) ➔ Protocolo de transporte: TCP e UDP (para voz) ➔ Segurança: RC4 para sinalização e AES para dados de voz (fonte) Qual é a arquitetura de aplicação do Youtube? ❏ Cliente-servidor ❏ Ponto-a-ponto ❏ Híbrida Qual é a arquitetura de aplicação do Youtube? ❏ Cliente-servidor ❏ Ponto-a-ponto ❏ Híbrida Youtube ➔ Arquitetura de aplicação: Modelo cliente-servidor ◆ Funciona de maneira similar à Netflix ➔ Protocolo de aplicação: o site usa HTTP e a transmissão de vídeo RTSP (Real Time Streaming Protocol) ➔ Protocolo de transporte: TCP (fonte) ◆ Pelas mesmas razões que a Netflix ➔ Segurança: HTTPS (fonte) Qual é a arquitetura de aplicação do BitTorrent? ❏ Cliente-servidor ❏ Ponto-a-ponto
    [Show full text]
  • Computer Networks VOIP
    Computer Networks VOIP Preshetha Kanagaiah VoIP ● Voice over Internet Protocol, aka Internet telephony is a technology that allows a user to use the internet as a medium of transmission of voice communication to make and receive phone calls instead of using the traditional PSTN (public switched telephone network lines). ● Converts the voice from an analog signal to a digital signal over the internet using codecs, digital information is packetized, transmission occurs as IP packets. ● Communication platforms that use VoIP: ○ Skype, Vonage, Viber, Google Hangouts, Whatsapp (end-to-end encryption) Traditional PSTN vs. VoIP PSTN (POTS): Network: - Circuit switching - Packet switching - Dedicated path b/w sender & receiver - No dedicated path b/w sender & receiver - Reserved bandwidth in advance - Bandwidth is adjusted based on necessity - Cost based on distance and time - Cost is NOT based on distance and time - Very Costly for additional features such as - Additional features are covered under the VM, Caller ID, call waiting, call forwarding, service (VM, CID, call waiting, forwarding, conferencing, additional lines conferencing) - Better voice quality - Transmit data, video, and voice - Local and international communication - can be converged with PSTN VoIP Signaling Protocols ❏ SIP (Session Initiation Protocol) : ❏ open standard, application layer protocol ❏ Similar to HTTP- adopts client/server architecture ❏ Based on text-based messages for requests/responses ❏ INVITE request, ACK, BYE terminates connection, (others include: CANCEL, OPTIONS,
    [Show full text]