CONTENTS

• Access Control & OS
  1. Tutorial Overview
  2. Windows Lab Procedures
  3. Unix 's File System
  5. SOLARIS
  6. SOLARIS Lab Procedures
• Apache SSL
  1. Tutorial Overview
  2. Installing Components
  3. Creating a Certificate
  4. Configuring Apache SSL
• Authenticode
  1. Tutorial Overview
  2. Installing .NET Framework SDK
  3. Signing a File
  4. Verifying a Signature
• Common Criteria Methodology
  1. Tutorial Overview
  2. General Evaluation Guidelines
  3. Evaluation of Functional Requirements TOE
  4. Questions
  5. References
• Cryptography with C#
  1. Tutorial Overview
  2. C# .NET Framework Examples
  3. Message Authentication
  4. Digital Signatures
  5. Exercises
  6. Resources
• Cryptographic Libraries
  1. Tutorial Overview
  2. OpnelSSL's Toolkit
  3. Java Cryptography Extension
  4. Exercises
  5. Resources
• Firewall Access Control Lists
  1. Tutorial Overview
  2. Technical Details
  3. Telnet and FTP
  4. Lab Report
• Firewall Configurations & Attacks
  1. Tutorial Overview
  2. Attacking Without a Firewall
  3. Filter an IP Address
  4. Filter TCP Traffic
  5. Misconfigured Firewall Examples
  6. Exercises
• Forensics
  1. Tutorial Overview
  2. Exercises
  3. Hidden Data
  4. Steganography
  5. Viewing IE Cache
  6. Installation Instructions
• IIS & Server 2003
  1. Tutorial Overview
  2. Installing Components
  3. Create a Certificate Request
  4. Submit a Certificate Request
  5. Installing a Certificate
  6. Secure Certificate Services
  7. Secure the Server
  8. Secure IIS
• IPSec and VPN Tunnel
  1. Tutorial Overview
  2. Technical Details
  3. VPN Tunnel Parameters
  4. Lab Report
• Java Code Signing
  1. Tutorial Overview
  2. Installing Java & Signing a File
  3. Verifying a Signature
• Network Protocol Analyzers
  1. Tutorial Overview
  2. TCPDump
  3. Ethereal
  4. Sniffer Distributed System
  5. Telnet Session
• PKI
  1. Tutorial Overview
  2. Installing Thunderbird
  3. Installing GPG and Enigmail
  4. Create and Use Key Pairs
• Secure Cookies
  1. Tutorial Overview
  2. Installing Components
  3. Creating a Secure Cookie
• Three Tier

1.  Attack the Server Without a Firewall. 

1.  Open 6 terminals on the client and resize them within one window so that you can see all the terminals.

2.  In five terminals, type the following command:

3.  Check to see if any of the ping packets were got through the firewall.  In the 6th terminal, open an FTP connection to the server using the following command and log-in information. 

$ ftp 192.168.24.100
Username : firewall
Password : goodguy

4. After you have logged-in to the FTP server, use command as follow to retrieve a file.  

ftp> binary
ftp> get firewall.doc

5. Record the total time of the transmission.  Repeat this process three times.

Repetition Time (sec.)
1 __________________
2 __________________
3 __________________

AVERAGE TIME : __________________________ FILE SIZE : __________________ Bytes

6. Using the following command to quit the FTP connection.

ftp> bye

7. Use Ctrl-C to quit the PING process in the other five terminals.

2.  Attack the Server With a Firewall.

1.  Configure the console computer. 

a.   Log-in or continue the session

b.  Type in the following configuration settings:

> add filter ether1.in
> set filter ether1.in 1 permit tcp 192.168.23.0/24
> set ether1 ifilter ether1.in
> save filter

To show the rules, which were entered to the firewall use Command > show filter ether1.in

2. Configuring the client computer

a.   Follow the previous steps to attack the server with a firewall that you used to Attack the Server Without a Firewall. 

b.  Record the total time of the transmission.  Repeat this process three times.

Repeat this process three times.

Repetition Time (sec.)
1 __________________
2 __________________
3 __________________

AVERAGE TIME : __________________________

3. Questions. 

1.  Explain the attack and discuss the results when compared with those of the section above, Attack the Server Without a Firewall.

2.  What is the message returned by the PING command and why was this the message returned?  You answer should be based on the configuration above.

3.  Assume that there are two subnets, i.e., 192.168.22.0 and 192.168.23.0. Is it possible for a subnet 192.168.22.0 to ftp this server? Why?

4. An Alternative Rule Set. 

1. At the console computer, type in the commands as follows:

> delete filter ether1.in
> add filter ether1.in
> set filter ether1.in 1 deny icmp
> set filter ether1.in 2 permit tcp
> set ether1 ifilter ether1.in
> save filter

2. Repeat the steps found in  Attack the Server Without a Firewall section. 

3. Record the total time of the transmission.  Repeat this process three times.

Repeat this process three times.

Repetition Time (sec.)
1 __________________
2 __________________
3 __________________

AVERAGE TIME : __________________________

5. Questions.

1.  Do you see any different in the results between this step and the previous step in  the section Attack the Server With a Firewall? Why?

2.  Assume that there are two subnets, i.e., 192.168.22.0 and 192.168.23.0. Is it possible for a subnet 192.168.22.0 to ftp to this server? Why?

Browse Pages << | < | 1 2 3 4 5 6 7 | > | >>