A primer – Mike Gerschefske. Physical Security is Key If there is physical access to box, no such...
-
Upload
heather-kelley -
Category
Documents
-
view
215 -
download
1
Transcript of A primer – Mike Gerschefske. Physical Security is Key If there is physical access to box, no such...
A primer – Mike Gerschefske
Physical Security is Key
If there is physical access to box, no such thing as security Peter Nordahl *nix Single User mode (init=/bin/bash)
Encryption helps, but still key loggers
Demo 128.198.61.33 128.198.61.34 on walden
Museum Example
http://128.198.61.33/~museum/ http://128.198.61.33/~museum/
search.html http://128.198.61.33/~museum/
admin.html
SSH RSA Example
& mkdir /home/museum/.ssh & echo “ssh-rsa
AAAAB3NzaC1yc2EAAAABJQAAAIEAxz+UJg8d6HwiNAfC6Pedj4WJqaRxFR/tjhsLkrBXh1nSBO3khNqLfV8vZZIQ+1YyxfPXCBcYpBUxYS/2zE8T+0H2Nfp0a1TfFoukxYnd4g5yYSNl6tc7gBd7HE1368WnXmqZ7rygWyCp84D8l5phIvLDOME54kaK1/5/iemI4Rk=“ > /home/museum/.ssh/authorized_keys2
Terminal
10.x.x.1
Tunnel/
Firewall
UCSB
Tunnel
Image Test Box
Hub
IDS/IPS/
Firewall
10.x.x.3
Production Image Box
192.168.0.5
Ethereal
192.168.0.10
Ethereal
.10 .11
.12 .13
.14 .15
Hub
Terminal
192.168.0.30
Firewall
10.x.x.5
attack
attack
attack
attack
Hub
Backup Image Box
192.168.0.5
Tunnel/
Firewall
Spare
DHCP 50-70
192.168.1.x
Internet
128.198.60.x
John/ Ripper
Astaro Demo
http://128.198.61.35:4444
SQL Parameterization
Snort – IDS/IPS
http://cs.uccs.edu/~cs591/ids/snortSetup.html