CHAPTER 25

LOCAL AREA NETWORKS

Gary C. Kessler and N. Todd Pritsky

25.1 INTRODUCTION

25.2 POLICY AND PROCEDURE ISSUES

25.3 PHYSICAL SITE SECURITY

25.4 PHYSICAL LAYER ISSUES

25.4.1 Sniffers and Broadcast LANs

25.4.2 Attacks on the Physical Plant

25.4.3 Modems, Dial-up Servers, and Telephone Lines

25.4.4 Wireless LAN Issues

25.5 NETWORK OPERATING SYSTEM ISSUES

25.5.1 Windows 9x

25.5.2 NT/2000, XP Vista

25.5.3 UNIX

25.5.4 MacOS

25.6 CONCLUSION

25.7 FURTHER READING

25.8 NOTES

25.1 INTRODUCTION.

This chapter discusses generic issues surrounding local area network (LAN) security. Securing the LAN is essential to securing the Internet because LANs are where most of the attackers, victims, clients, servers, firewalls, routers, and other devices reside. Compromised LAN systems on the Internet open other nodes on that local network to attack and put other systems at risk on the Internet as a whole. Many of the general issues mentioned herein are described in more specific terms in other chapters of this Handbook, such as Chapters 15, 22, 23, and 47 in particular.

25.2 POLICY AND PROCEDURE ISSUES.

Twenty years ago, all users had accounts on a shared mainframe or minicomputer. A single system manager was responsible for security, backup, disaster recovery, account management, policies, and all other related issues. Today all users are system managers, and, in many cases, individuals have responsibility for several systems. Since the vulnerability of a single computer can compromise the entire ...