Zwe Hlaing Bwa

စိတ္ကူးတည့္ရာေရးထားေသာ ဘေလာ့ခ္

DumpSec

Posted by Zwe on December 12, 2012


Somarsoft DumpSec is a easy-to-use, smart and reliable security auditing program to dump file system and other types of permissions, audit settings, user/group info, etc. in a concise, readable listbox format, so that “holes” in system security are readily apparent.

It dumps the permissions (DACLs) and audit settings (SACLs) for the file system, registry, printers and shares in a concise, readable listbox format, so that holes in system security are readily apparent.

DumpSec also dumps user, group and replication information. DumpSec is a must-have product for Windows NT systems administrators and computer security auditors.

Windows NT contains the mechanisms for providing strong system security, using permissions to control access to files, registry keys, printers, shares and other securable items and auditing to log successful and failed access attempts.

However, it can be very difficult to determine if permissions and audit settings have been set correctly, since there are so many files and registry keys on the typical system.
The situation is analogous to having a building with unbreakable locks on each of 10,000 doors. The problem is not with the locks themselves, but rather with one person walking around on a regular basis and checking that none of the 10,000 doors is unlocked.

DumpSec’s powerful reporting-by-exceptions feature makes it easy to verify that permissions are set properly, by by grouping files and directories with equivalent permissions, so the permissions report is short enough to be easily reviewed by a human.

If all files in a directory have equivalent permissions, there will be only a single report entry, showing “*.*” to indicate all files. If all subdirectories in a directory have equivalent permissions, the only the parent directory is shown. And so on, recursively.

Somarsoft DumpSec is specifically designed for information security auditors and network administrators. However, it simple enough that it can be used by end-users, after brief training by the network administrator.

For example, the manager of the Sales department can be instructed to periodically run Somarsoft DumpSec against a directory on a file server, containing sales spreadsheets and other files with confidential information, to ensure permissions on these files are set properly.

The download package also contains the program Hyena, which you may check not to install when you install DumpSec.

Hyena brings together all of the administrative tools from Windows NT such as User Manager, Server Manager, and File Manager/Explorer, and many of the MMC components from Windows 2000/2003 into a single, easy-to-use, centralized program. Hyena arranges all system objects, such as users, servers, and groups, in a hierarchical tree for easy and logical system administration.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: