Tuesday, December 6, 2011

DNS Protection Solution

Background 
The Domain Name System (DNS) is a distributed Internet content service, and primarily realizes the mutual resolution between domain names and IP addresses. Most Internet services rely on the DNS. Therefore, if the DNS is faulty, the addressing on the network fails; consequently, services are severely affected.

Several incidents resulting from DNS attacks in 2009 did great harm to networks, especially the Storm DNS event, which led to network access failures among numerous users in the six provinces in east China; additionally, the Baidu DNS event also brought huge economic loss. How to defend against DNS attacks becomes an urgent security issue for users in various industries. Moreover, how to secure DNSs and deliver DNS protection services is also a challenge for carriers. 

Solution Overview 

There are primarily three types of DNS attacks, namely, DNS flood, DNS cache poisoning, and DNS hijacking. 

In DNS flood, massive domain name resolution requests are sent to the target server; but the domain names to be resolved are invalid. Therefore, resolution timeout occurs during this process due to the excessive requests. For DNS cache poisoning, an illegitimate domain name address is sent to the target DNS server. If the server accepts the illegitimate address, the cache is attacked. Worse still, subsequent replies responded to the domain name requests are under the hacker's control; the browsers and mail servers automatically direct to the illegitimate addresses specified by the DNS server. DNS hijacking includes host file modification, SPI chain injection, and BHO plug-in. Although not all these are implemented during DNS processing, users may fail to obtain the correct addresses or content due to these factors. 

Based on years' experience in DNS protection and profound understanding of user demands, Huawei launches a comprehensive DNS protection solution by integrating DDoS defense and UTM features. 

In this solution, the anti-DDoS device defends against DNS flood and DNS cache poisoning through source IP address authentication, attack fingerprint learning, and traffic dynamic baseline. Meanwhile, the UTM device divides the DNS into external area and internal area, which effectively promotes the security and reliability of the DNS server. Moreover, the IPS function of the UTM device detects the vulnerabilities of DNS protocols to defend against intrusion into the DNS.
Solution Features 
Hierarchical defense 

To defend against various DDoS attacks on the DNS, Huawei DNS protection solution adopts hierarchical defense technologies and implement filtering layer by layer, ensuring that all traffic reaching the DNS is normal service traffic. 

High-performance hardware platform

Huawei UTM device adopts carrier-class hardware platform and multi-core processing system, and delivers high-performance functions with sound reliability, including firewall and IPS. These features perfectly satisfy the requirements of the DNS on diversified performance indicators such as network throughput.
Huawei anti-DDoS device provides users with 2G to 80G anti-DDoS performance, realizing efficient and effective DDoS defense in different networking environments for various users.

Easy-to-use management operation system

Huawei DNS protection solution equips users with easy-to-use management operation system, including graphic device and policy configuration interface. In addition, it also provides customized attack and performance reports for users.

Furthermore, Huawei DNS protection solution can serve as a platform for value-added security operation services, which enables differentiated defense policies for DNSs and realizes individualized value-added security services.

Thursday, December 1, 2011

How to create a bootable Windows 7 USB flash drive

The USB flash drive has replaced the floppy disk drive as the best storage medium for transferring files, but it also has its uses as a replacement for CDs and DVDs. USB drives tend to be higher in capacity than disc media, but since they are more expensive, they cannot (yet) really be used as a replacement. There are reasons why you would, however, choose a USB device over a DVD disc, and bootable software is definitely one of them. Not only is it faster to copy data such as setup files from a USB drive, but during usage the access times are also significantly faster. Therefore, installing something like Windows 7 will work that much faster from a USB drive than from a DVD (and of course, is particularly useful for the PCs without an optical drive; this isn't something we should just leave for the pirates to enjoy).
This guide will show you two different ways to create a USB flash drive that works just like a Windows 7 DVD. In order to follow this guide, you'll need a USB flash drive with at least 4GB of free space and a copy of the Windows 7 installation disc.

Windows 7 USB DVD Download Tool

You are normally given this tool when you purchase from the online Microsoft Store.windows_7_usb_1.png
The easiest way to turn a USB flash drive into a bootable Windows 7 installer is by using the tool Microsoft offers, cunningly named the Windows 7 USB/DVD Download Tool. To get started, download the installer [exe] from Microsoft.com and follow the basic steps to put it onto your computer; you can put it on the computer you plan to install Windows 7 on or another one, it doesn't matter.
windows_7_usb_2.png
Once it is installed, it should create an icon on your desktop, so double-click that to open. If you can't find it, use the search function in the Start Menu with a keyword like "USB." Launching it should give you the above screen, and step one is to find the Windows 7 .ISO file. The tool only accepts .ISO images, so we recommend that you convert yours if it's in a different DVD image format.
windows_7_usb_3.png
Step two is straightforward: simply choose USB device.
windows_7_usb_4.png
In step three, all you have to do is make sure that you are choosing the correct USB device. If you have other data on the device, move it to your hard drive, another USB device, or somewhere else before proceeding.
windows_7_usb_5.png
The tool will prompt you if it detects data on the device. Once your data is backed up elsewhere, click Erase USB Device.
windows_7_usb_6.png
You will get another prompt warning you that all the data will be wiped. Click Yes to continue.
windows_7_usb_7.png
The format will be very quick, while the copying of the files will take a little bit more time (about 10 to 15 minutes).
windows_7_usb_8.png
Once the process is complete, you should get the above confirmation message. At this point you can close the tool and use the USB drive to install Windows 7. Remember that you'll have to choose to boot off the USB drive. Before doing so, you may want to open up the USB drive and double click on setup.exe to see if everything looks okay. If you want to be able to do this manually, see the next section, and if you want to be able to install any edition of Windows 7, skip to the section after that.

Manual Creation

windows_7_usb_10.png
Maybe you don't like that Microsoft violated the GPL with the first version of the above tool (the company has since GPLed the code), or you're old-school and just love using the command prompt. Regardless of what your reasons are for creating a bootable Windows 7 USB drive manually, we have the scoop on how to do it. First, open the command prompt (if you use UAC make sure to right click it and choose "Run as administrator"), type "diskpart" without the quotes, and hit enter. You can also get here by simply typing "diskpart" without the quotes into the Start Menu and hitting enter.
windows_7_usb_11.png
Now type "list disk" without the quotes and hit enter. Take a look at the Size column and figure out which disk number your USB drive is. Ours is number 1, so we're going to type "select disk 1" without the quotes and hit enter. Now we're going to wipe it by typing "clean" without the quotes and hitting enter (make sure to do a backup of the contents if you haven't already).
windows_7_usb_12.png
At this point we want to prepare the USB drive for the files and make sure it is bootable. Type "create partition primary" without the quotes and hit enter. Then type "select partition 1" without the quotes and hit enter. Next type "active" without the quotes and hit enter. Finally, type "format fs=fat32" without quotes and hit enter (if you choose to use ntfs, you'll later have to run the "Bootsect.exe /nt60 G:" command to put boot manager compatible files onto your USB flash drive to make it a bootable device). This one will take a while, so go grab a snack, we'll wait. When that's done, type "assign" without the quotes and hit enter (this will assign a new drive letter to the USB flash drive).
windows_7_usb_13.png
An AutoPlay window like the one above will appear. Remember the drive letter (in our case it is H:\), close the window, type "exit" without the quotes and hit enter. If you are working with an .ISO image, the best way to do this last part is to mount the file with a program like Virtual Clone Drive. Alternatively, you can extract the files from the .ISO image and simply copy them to the USB drive, but since we've been using the command prompt up to this point, we'll show you how to do the last step with it as well.
windows_7_usb_14.png
If you don't have the command prompt open, open it with administrative privileges, type "xcopy f:*.* /s/e/f hg:" without the quotes and hit enter. Note that you will likely have to replace "f:" with the drive letter for your Windows 7 DVD and "g:" with the drive letter for your USB flash drive. Don't worry if install.wim takes a while to copy: it's easily the biggest file on the disc.

Bonus: install any edition of Windows 7

windows_7_usb_14.png
This is a completely optional step and you only want to do this if you want to be able to choose which edition of Windows 7 to install. In the command prompt, type "del g:\sources\ei.cfg" without the quotes and hit enter (where g:\ is your USB flash drive).
windows_7_usb_15.png
This will make sure that your Windows 7 installer no longer has a specific version of Windows 7 set as the default, and you will be prompted to choose the version you want to install. Remember that while this gives you a more universal Windows 7 installer, you still need to make sure you are choosing the edition that you own, or you will not be able to activate Windows 7 with the key you have obtained.

How to setup a 301 Redirect

The “301 Permanent Redirect” is the most efficient and search engine friendly method for redirecting websites. You can use it in several situations, including:
  • to redirect an old website to a new address
  • to setup several domains pointing to one website
  • to enforce only one version of your website (www. or no-www)
  • to harmonize a URL structure change
There are several ways to setup a 301 Redirect, below I will cover the most used ones:
PHP Single Page Redirect
In order to redirect a static page to a new address simply enter the code below inside the index.php file.
<?php
header("HTTP/1.1 301 Moved Permanently");
header("Location: http://www.newdomain.com/page.html");
exit();
?>
PHP Canonical Redirect
The Canonical 301 Redirect will add (or remove) the www. prefixes to all the pages inside your domain. The code below redirects the visitors of the http://domain.com version to http://www.domain.com.
<?php
if (substr($_SERVER['HTTP_HOST'],0,3) != 'www') {
header('HTTP/1.1 301 Moved Permanently');
header('Location: http://www.'.$_SERVER['HTTP_HOST']
.$_SERVER['REQUEST_URI']);
}
?>
Apache .htaccess Singe Page Redirect
In order to use this method you will need to create a file named .htaccess (not supported by Windows-based hosting) and place it on the root directory of your website, then just add the code below to the file.
Redirect 301 /old/oldpage.htm /new/http://www.domain.com/newpage.htm
Apache .htaccess Canonical Redirect
Follow the same steps as before but insert the code below instead (it will redirect all the visitors accessing http://domain.com to http://www.domain.com)
Options +FollowSymlinks
RewriteEngine on
rewritecond %{http_host} ^domain.com [nc]
rewriterule ^(.*)$ http://www.domain.com/$1 [r=301,nc]
ASP Single Page Redirect
This redirect method is used with the Active Server Pages platform.
<%
Response.Status="301 Moved Permanently"
Response.AddHeader='Location','http://www.new-url.com/'
%>
ASP Canonical Redirect
The Canonical Redirect with ASP must be located in a script that is executed in every page on the server before the page content starts.
<%
If InStr(Request.ServerVariables("SERVER_NAME"),"www") = 0 Then
Response.Status="301 Moved Permanently"
Response.AddHeader "Location","http://www."
& Request.ServerVariables("HTTP_HOST")
& Request.ServerVariables("SCRIPT_NAME")
End if
%>

42 Web Design Mistakes You Should Avoid

There are several lists of web design mistakes around the Internet. Most of them, however, are the “Most common” or “Top 10” mistakes. Every time I crossed one of those lists I would think to myself: “Come on, there must be more than 10 mistakes…”. Then I decided to write down all the web design mistakes that would come into my head; within half an hour I had over thirty of them listed. Afterwards I did some research around the web and the list grew to 43 points.
The next step was to write a short description for each one, and the result is the collection of mistakes that you will find below. Some of the points are common sense, others are quite polemic. Most of them apply to any website though, whether we talk about a business entity or a blog. Enjoy!
1. The user must know what the site is about in seconds: attention is one the most valuable currencies on the Internet. If a visitor can not figure what your site is about in a couple of seconds, he will probably just go somewhere else. Your site must communicate why I should spend my time there, and FAST!
2. Make the content scannable: this is the Internet, not a book, so forget large blocks of text. Probably I will be visiting your site while I work on other stuff so make sure that I can scan through the entire content. Bullet points, headers, subheaders, lists. Anything that will help the reader filter what he is looking for.
3. Do not use fancy fonts that are unreadable: sure there are some fonts that will give a sophisticated look to your website. But are they readable? If your main objective is to deliver a message and get the visitors reading your stuff, then you should make the process comfortable for them.
4. Do not use tiny fonts: the previous point applies here, you want to make sure that readers are comfortable reading your content. My Firefox does have a zooming feature, but if I need to use on your website it will probably be the last time I visit it.
5. Do not open new browser windows: I used to do that on my first websites. The logic was simple, if I open new browser windows for external links the user will never leave my site. WRONG! Let the user control where he wants the links to open. There is a reason why browsers have a huge “Back” button. Do not worry about sending the visitor to another website, he will get back if he wants to (even porn sites are starting to get conscious regarding this point lately…).
6. Do not resize the user’s browser windows: the user should be in control of his browser. If you resize it you will risk to mess things up on his side, and what is worse you might lose your credibility in front of him.
7. Do not require a registration unless it is necessary: lets put this straight, when I browse around the Internet I want to get information, not the other way around. Do not force me to register up and leave my email address and other details unless it is absolutely necessary (i.e. unless what you offer is so good that I will bear with the registration).
8. Never subscribe the visitor for something without his consent: do not automatically subscribe a visitor to newsletters when he registers up on your site. Sending unsolicited emails around is not the best way to make friends.
9. Do not overuse Flash: apart from increasing the load time of your website, excessive usage of Flash might also annoy the visitors. Use it only if you must offer features that are not supported by static pages.
10. Do not play music: on the early years of the Internet web developers always tried to successfully integrate music into websites. Guess what, they failed miserably. Do not use music, period.
11. If you MUST play an audio file let the user start it: some situations might require an audio file. You might need to deliver a speech to the user or your guided tour might have an audio component. That is fine. Just make sure that the user is in control, let him push the “Play” button as opposed to jamming the music on his face right after he enters the website.
12. Do not clutter your website with badges: first of all, badges of networks and communities make a site look very unprofessional. Even if we are talking about awards and recognition badges you should place them on the “About Us” page.
13. Do not use a homepage that just launches the “real” website: the smaller the number of steps required for the user to access your content, the better.
14. Make sure to include contact details: there is nothing worse than a website that has no contact details. This is not bad only for the visitors, but also for yourself. You might lose important feedback along the way.
15. Do not break the “Back” button: this is a very basic principle of usability. Do not break the “Back” button under any circumstance. Opening new browser windows will break it, for instance, and some Javascript links might also break them.
16. Do not use blinking text: unless your visitors are coming straight from 1996, that is.
17. Avoid complex URL structures: a simple, keyword-based URL structure will not only improve your search engine rankings, but it will also make it easier for the reader to identify the content of your pages before visiting them.
18. Use CSS over HTML tables: HTML tables were used to create page layouts. With the advent of CSS, however, there is no reason to stick to them. CSS is faster, more reliable and it offers many more features.
19. Make sure users can search the whole website: there is a reason why search engines revolutionized the Internet. You probably guessed it, because they make it very easy to find the information we are looking for. Do not neglect this on your site.
20. Avoid “drop down” menus: the user should be able to see all the navigation options straight way. Using “drop down” menus might confuse things and hide the information the reader was actually looking for.
21. Use text navigation: text navigation is not only faster but it is also more reliable. Some users, for instance, browse the Internet with images turned off.
22. If you are linking to PDF files disclose it: ever clicked on a link only to see your browser freezing while Acrobat Reader launches to open that (unrequested) PDF file? That is pretty annoying so make sure to explicit links pointing to PDF files so that users can handle them properly.
23. Do not confuse the visitor with many versions: avoid confusing the visitor with too many versions of your website. What bandwidth do I prefer? 56Kbps? 128Kbps? Flash or HTML? Man, just give me the content!
24. Do not blend advertising inside the content: blending advertising like Adsense units inside your content might increase your click-through rate on the short term. Over the long run, however, this will reduce your readership base. An annoyed visitor is a lost visitor.
25. Use a simple navigation structure: sometimes less is more. This rule usually applies to people and choices. Make sure that your website has a single, clear navigation structure. The last thing you want is to confuse the reader regarding where he should go to find the information he is looking for.
26. Avoid “intros”: do not force the user to watch or read something before he can access to the real content. This is plain annoying, and he will stay only if what you have to offer is really unique.
27. Do not use FrontPage: this point extends to other cheap HTML editors. While they appear to make web design easier, the output will be a poorly crafted code, incompatible with different browsers and with several bugs.
28. Make sure your website is cross-browser compatible: not all browsers are created equal, and not all of them interpret CSS and other languages on the same way. Like it or not, you will need to make your website compatible with the most used browsers on the market, else you will lose readers over the long term.
29. Make sure to include anchor text on links: I confess I used to do that mistake until some time ago. It is easier to tell people to “click here”. But this is not efficient. Make sure to include a relevant anchor text on your links. It will ensure that the reader knows where he is going to if he clicks the link, and it will also create SEO benefits for the external site where the link is pointing.
30. Do not cloak links: apart from having a clear anchor text, the user must also be able to see where the link is pointing on the status bar of his browser. If you cloak your links (either because they are affiliate ones or due to other reasons) your site will lose credibility.
31. Make links visible: the visitor should be able to recognize what is clickable and what is not, easily. Make sure that your links have a contrasting color (the standard blue color is the optimal most of the times). Possibly also make them underlined.
32. Do not underline or color normal text: do not underline normal text unless absolutely necessary. Just as users need to recognize links easily, they should not get the idea that something is clickable when in reality it is not.
33. Make clicked links change color: this point is very important for the usability of your website. Clicked links that change color help the user to locate himself more easily around your site, making sure that he will not end up visiting the same pages unintentionally.
34. Do not use animated GIFs: unless you have advertising banners that require animation, avoid animated GIFs. They make a site look unprofessional and detract the attention from the content.
35. Make sure to use the ALT and TITLE attributes for images: apart from having SEO benefits the ALT and TITLE attributes for images will play an important role for blind users.
36. Do not use harsh colors: if the user is getting a headache after visiting your site for 10 consecutive minutes, you probably should pick a better color scheme. Design the color palette around your objectives (i.e. deliver a mood, let the user focus on the content, etc.).
37. Do not use pop ups: this point refers to pop ups of any kind. Even user requested pop ups are a bad idea given the increasing amount of pop blockers out there.
38. Avoid Javascript links: those links execute a small Javascript when the user clicks on them. Stay away from them since they often create problems for the user.
39. Include functional links on your footer: people are used to scrolling down to the footer of a website if they are not finding a specific information. At the very least you want to include a link to the Homepage and possibly a link to the “Contact Us” page.
40. Avoid long pages: guess what, if the user needs to scroll down forever in order to read your content he will probably just skip it altogether. If that is the case with your website make it shorter and improve the navigation structure.
41. No horizontal scrolling: while some vertical scrolling is tolerable, the same can not be said about horizontal scrolling. The most used screen resolution nowadays is 1024 x 768 pixels, so make sure that your website fits inside it.
42. No spelling or grammatical mistakes: this is not a web design mistake, but it is one of the most important factors affecting the overall quality of a website. Make sure that your links and texts do not contain spelling or grammatical mistakes.