Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer...
-
Upload
rhoda-warner -
Category
Documents
-
view
235 -
download
0
Transcript of Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer...
![Page 1: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/1.jpg)
Implementing Network Implementing Network SecuritySecurity
Ch 19Ch 19
![Page 2: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/2.jpg)
Network and Sharing Center
• Network discovery• File and printer sharing• Public folder sharing• Media streaming• File sharing connections
– Send authentication credentials with 128-bit encryption or older, less secure methods
• Password protected sharing• HomeGroup connections
![Page 3: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/3.jpg)
Network Discovery
• Used to draw the Network Map, in Network and Sharing Center
![Page 4: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/4.jpg)
Password-Protected Sharing
• This makes sharing very inconvenient• Each person who accesses a shared resource
needs an account on the server
![Page 5: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/5.jpg)
HomeGroup Connections
• By default, Windows uses the HomeGroupUser$ account to
![Page 6: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/6.jpg)
Sharing Wizard
• Right-click a folder, Share with…, Specific people
• Simplifies sharing
![Page 7: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/7.jpg)
Deactivating the Sharing Wizard
• Uncheck it in Folder Options
![Page 8: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/8.jpg)
Advanced Sharing
• In a folder’s properties, on the Sharing tab, click "Advanced sharing", check "Share this folder", click Properties
• Error in book: this is possible with the Sharing Wizard activated
![Page 9: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/9.jpg)
Sharing and NTFS Permissions Work Together
• Share permissions are required to connect to a resource over the network
• NTFS permissions apply to both local and remote users– NTFS permissions are a more powerful security
barrier in most cases
![Page 10: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/10.jpg)
Example
• Share permissions on a folder– Sam has Full Control– Everyone has Read
• NTFS Permissions– Sam has Read– Everyone has Full Control
• Sam has Read whether he connects locally or remotely
• Other users have Full Control locally, but Read remotely
![Page 11: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/11.jpg)
Administrative Shares
• Windows shares the root of each drive
• It also makes ADMIN$ for remote administration and IPC$ for inter-process communication
• You can hack the Registry to remove the Administrative Shares, but some Windows features require them
![Page 12: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/12.jpg)
Hidden Shares
• The $ sign makes the Administrative Shares hidden--they won't appear in Windows Explorer on a remote machine
• You can put a $ at the end of your own shared folders to hide them
• This is not very secure--Linux can still see them
![Page 13: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/13.jpg)
Credential Manager
• Delete credentials you don't need
![Page 14: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/14.jpg)
Restricting Logon Hours
• From an Administrative Command Prompt– net user username /time:M-F,8am-5pm
• For more, see link Ch 19a
![Page 15: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/15.jpg)
Forcing Logoff when Logon Hours Expore
• In Local Security Policies (Start, SECPOL.MSC)• Network security: Force logoff when logon
hours expire
![Page 16: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/16.jpg)
Wireless Network Security
Ch 20Ch 20
![Page 17: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/17.jpg)
Network+ Guide to Networks, 5th Edition 17
Configuring Wireless Routers
• Netgear WGR614 (v7)– Popular, low-cost access point– Four switch ports, routing capabilities– Supports 802.11b, 802.11g transmission
• Configuration steps on other small wireless connectivity devices– Differ somewhat– Follow similar process, modify same variables
![Page 18: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/18.jpg)
Network+ Guide to Networks, 5th Edition 18
Figure 8-14 The Netgear router Basic Settings page
![Page 19: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/19.jpg)
Network+ Guide to Networks, 5th Edition 19
Figure 8-15 Netgear router Wireless Settings page
![Page 20: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/20.jpg)
Network+ Guide to Networks, 5th Edition 20
Figure 8-16 The Netgear router Advanced Wireless Settings page
![Page 21: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/21.jpg)
Network+ Guide to Networks, 5th Edition 21
Figure 8-17 The Netgear router LAN IP Setup page
![Page 22: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/22.jpg)
Network+ Guide to Networks, 5th Edition 22
Figure 8-18 The Netgear router Router Status page
![Page 23: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/23.jpg)
Router Passwords
• If you don't have the password– Hold down the reset switch for 10 seconds to
restore router to factory defaults• Sometimes you need to power cycle the router with the
button down
• Find the default password online– routerpasswords.com
• Don't trust home router security much– "Router Hacking Contest" at link Ch 20b
![Page 24: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/24.jpg)
Opening a Router's Configuration Page from the Network Map
• Right-click device• View Device Webpage
– But it couldn't find my AT&T device at 192.168.1.254
![Page 25: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/25.jpg)
Wireless Encryption
• We wardrive San Francisco every semester • Most wireless networks are insecure
Nov 2008April 2009
![Page 26: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/26.jpg)
Sat. Nov 7, Noon
• This semester's wardrive (20 pts extra credit)• Meet in S214• Bring whatever you have
– Cars– Laptops– Antennas– Nothing at all
• We'll drive around for an hour, then meet for lunch and compile the data
![Page 27: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/27.jpg)
WPA v. WEP
• Open networks let anyone connect • WEP is the older encryption technique, easily
broken in a few minutes with the right network card
• WPA is much safer. Just don't use a dictionary word as the passphrase.
• WPA-2 is even safer than WPA
![Page 28: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/28.jpg)
MAC Address Filtering
• Used on the CCSF Wi-Fi network– www.ccsf.edu/wifi
• This is a very weak security measure• Easily defeated, because MAC addresses are not
concealed at all– Use Cain to read all the MAC addresses on the
network now– Adjust network card properties to impersonate
anyone you like• This is, of course, dishonest and possibly illegal
![Page 29: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/29.jpg)
Troubleshooting and Recovering from Problems
Ch 21Ch 21
![Page 30: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/30.jpg)
Error Messages
• Google the exact text of the message you got
• Sometimes they aren't very helpful– Links Ch 21a, 21b
![Page 31: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/31.jpg)
Event Viewer
![Page 32: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/32.jpg)
System Information
• Start, MSINFO32• Useful items
– Conflicts/Sharing– Problem Devices
![Page 33: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/33.jpg)
Automatic Restart
• Blue screen errors don't last long by default, because Windows automatically restarts
• To adjust that– Start– Systempropertiesadvanced– In "Startup and Redovery"
section, click Settings
![Page 34: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/34.jpg)
Debugging Information
• Small memory dump– Includes the stop error
and its description, running device drivers, and the processor state
• Kernel memory dump– Only the Kernel (1/3 the
size of RAM)• Complete memory dump
– All of the RAM (2 GB on my machine)
![Page 35: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/35.jpg)
Repairing Applications
• In Programs and Features• You can repair or uninstall/reinstall
![Page 36: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/36.jpg)
Recent Changes to Investigate
• Did you recently– Edit the registry– Change Windows settings– Change application settings– Install a new program– Install a new device– Install an unsigned driver– Apply a Windows update
• These can all cause problems
![Page 37: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/37.jpg)
Troubleshooters
![Page 38: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/38.jpg)
Disk Diagnostics
• Self-Monitoring, Analysis, and Reporting Technology (SMART)
• Measures the health of a hard disk– Spin-up time– Drive temperature– Error rates, etc.
• Windows 7 will automatically alert you if it detects a problem
![Page 39: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/39.jpg)
Memory Diagnostic
![Page 40: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/40.jpg)
Problem Reporting in Action Center
• Windows checks for a solution to any problem
• Asks for permission to send information back to Microsoft
![Page 41: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/41.jpg)
Online Resources
• Microsoft Product Support– support.microsoft.com (link Ch 21d)– General help
• Microsoft Knowledge Base– Specific, detailed, problem solutions (link Ch 21e)
• Technet– Technet.microsoft.com– For IT Professionals (link Ch 21f)
![Page 42: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/42.jpg)
Online Resources
• Windows Update• Microsoft Security
– microsoft.com/security (link Ch 21g)
• Vendor websites• Windows 7 Newsgroups
![Page 43: Implementing Network Security Ch 19. Network and Sharing Center Network discovery File and printer sharing Public folder sharing Media streaming File.](https://reader036.fdocuments.in/reader036/viewer/2022062305/56649ec85503460f94bd45d3/html5/thumbnails/43.jpg)
Recovering from a Problem
• Last Known Good Configuration– Press F8 during startup– Only helps with driver problems, a weak solution
• System Restore– Very powerful and easy– Can be undone– Often the best option