Main Office Content Security

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons

Although basic network security issues have changed very little over the past decade, the  network security landscape has changed dramatically.  Today?s IT professionals still have the  primary responsibility of protecting the confidentiality of corporate information, preventing  unauthorized access, and defending the network against attacks, they also face new and  increasingly tough challenges as they operate in today?s complex and dynamic network  security environment.

Ubiquitous Internet access: Internet access from a myriad of devices has made every home,  office, and business partner a potential entry point for an attack.  This ubiquitous access  leaves the corporate network open to sophisticated attacks that can be launched by deliberate  attackers or unknowingly by remote users logging onto the corporate network and allowing an  attack to ?piggy-back? on their communications session.  The trend of working at home and  using a work PC for personal use increases the possibility of dangerous and annoying attacks  such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network  level.  A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by  an external source.

Internal attacks: While stopping  external attacks remain a constant  challenge, equally troubling and  difficult to defend against are the  attacks that are perpetrated from  inside the network by employees who  have access and ultimately complete  control over the network's resources.  Internal attacks can range from  unauthorized server or resource  access to a disgruntled employee  destroying or stealing proprietary  information.

Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA  are merely a few of the many different  regulations  with which  corporations are now being asked to comply.  In each one, security is either referred to as a key item such  as protecting corporate data, or is called out specifically as in the case of encrypting all patient  files. Either way, compliance requirements are making life for a security administrator a bit  more complicated.

Changing levels of trust: An ever widening range of network access is being granted to  employees and non-employees, making the network increasingly vulnerable.  Remote  employees, business partners, customers, and suppliers may have different levels of  access to corporate resources, and appropriate measures must be taken to protect the  corporate network at all of these levels.  While the applications that remote users have  access to through the DMZ increases, companies are simultaneously trying to reduce  costs by minimizing the application instances between internal and external users, and  this makes it necessary for security policies to accommodate application use by both groups.

The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:

Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.

Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.

Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.

Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.

Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.

Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently downloading Spyware and other malicious applications from known sites.

Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult, CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip

WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)

MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf

DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*

WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86

Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)

Help file extensions: hlp

Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi

URL database: > 5 million ? growing daily

Pages covered within database: > .9 Billion

New pages added: 50,000 list changes every day

Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons