I3Live Security Paul Wisniewski UW-Madison August, 2010.

Slides:

Advertisements

Similar presentations

Network Security Essentials Chapter 11

Advertisements

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewall Simulation Teaching Information Security Using: Visualization Tools, Case Studies, and Hands-on Exercises May 23, 2012.

Computer Security II Lecturer – Lynn Ackler – Office – CSC 222 – Office Hours 9:00 – 10:00 M,W Course – CS 457 – CS 557.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Server Administration TEC 236 Securing the Web Environment.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.

System and Network Security Practices COEN 351 E-Commerce Security.

Nessus – A Vulnerability Scanning Tool SUNY Technology Conference June 2003.

Firewall Vulnerabilities Presented by Vincent J. Ohm.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

Computer Security and Penetration Testing

Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

CyberSecurity for NEEShub: Best-Practices and Lessons Learned Gaspar Modelo-Howard CyberSecurity Engineer George E. Brown, Jr. Network for Earthquake Engineering.

Securing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

Additional SugarCRM details for complete, functional, and portable deployment.

1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.

Network Security Essentials Chapter 11 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Drupal Security Securing your Configuration Justin C. Klein Keane University of Pennsylvania School of Arts and Sciences Information Security and Unix.

1-Vulnerabilities 2-Hackers 3-Categories of attacks 4-What a malicious hacker do? 5-Security mechanisms 6-HTTP Web Servers 7-Web applications attacks.

Csci5233 Computer Security1 Bishop: Chapter 27 System Security.

Module 7: Firewalls and Port Forwarding 1. Overview Firewall configuration for Web Application Hosting Forwarding necessary ports for Web Application.

OV Copyright © 2013 Logical Operations, Inc. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

Module 4: Configuring ISA Server as a Firewall. Overview Using ISA Server as a Firewall Examining Perimeter Networks and Templates Configuring System.

OV Copyright © 2011 Element K Content LLC. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

Wireless Networks and the NetSentron By: Darren Critchley.

Distributed IDS The implementation of a Distributed Intrusion Detection System over a medium scale open network where the focus is availability of services.

Network and Perimeter Security Paula Kiernan Senior Consultant Ward Solutions.

Fundamentals of Proxying. Proxy Server Fundamentals  Proxy simply means acting on someone other’s behalf  A Proxy acts on behalf of the client or user.

© 2006 Cisco Systems, Inc. All rights reserved. Cisco IOS Threat Defense Features.

7400 Samsung Confidential & Proprietary Information Copyright 2006, All Rights Reserved. -0/17- OfficeServ 7400 Enterprise IP Solutions Quick Install Guide.

1 Figure 4-1: Targeted System Penetration (Break-In Attacks) Host Scanning  Ping often is blocked by firewalls  Send TCP SYN/ACK to generate RST segments.

Module 14: Securing Windows Server Overview Introduction to Securing Servers Implementing Core Server Security Hardening Servers Microsoft Baseline.

Integrating and Troubleshooting Citrix Access Gateway.

Denial of Service Sharmistha Roy Adversarial challenges in Web Based Services.

Module 7: Advanced Application and Web Filtering.

Lesson 19-E-Commerce Security Needs. Overview Understand e-commerce services. Understand the importance of availability. Implement client-side security.

Accessing Evitech network via FTP by Susan Jansson.

1 OFF SYMB - 12/7/2015 Firewalls Basics. 2 OFF SYMB - 12/7/2015 Overview Why we have firewalls What a firewall does Why is the firewall configured the.

NetTech Solutions Protecting the Computer Lesson 10.

Module 12: Responding to Security Incidents. Overview Introduction to Auditing and Incident Response Designing an Audit Policy Designing an Incident Response.

Module 10: Windows Firewall and Caching Fundamentals.

0wning the koobface botnet. intro web 2.0 botnet spreads through social networks –facebook –myspace –twitter, etc.

Firewalls Fighting Spyware, Viruses, and Malware Ch 5.

Syo-401 Question Answer. QUESTION 1 An achievement in providing worldwide Internet security was the signing of certificates associated with which of the.

@Yuan Xue CS 285 Network Security Fall 2012 Yuan Xue.

Unit 2 Personal Cyber Security and Social Engineering Part 2.

Internet security for the home Paul Norton MEng(Hons) MIEE Electronic engineer working for Pascall Electronics Ltd. on the Isle of Wight A talk on Internet.

Koustav Sadhukhan, Rao Arvind Mallari and Tarun Yadav DRDO, Ministry of Defense, INDIA Cyber Attack Thread: A Control-flow Based Approach to Deconstruct.

Firewalls. Overview of Firewalls As the name implies, a firewall acts to provide secured access between two networks A firewall may be implemented as.

Windows Vista Configuration MCTS : Network Security.

Common System Exploits Tom Chothia Computer Security, Lecture 17.

Anti Virus System i-Specific Anti-Virus Product

Working at a Small-to-Medium Business or ISP – Chapter 8

Critical Security Controls

Cisco IOS Firewall Context-Based Access Control Configuration

Implementing Network Access Protection

ITIS 3110 IT Infrastructure II

Securing the Network Perimeter with ISA 2004

Lesson Objectives Aims You should be able to:

Firewall – Survey Purpose of a Firewall Characteristic of a firewall

6.6 Firewalls Packet Filter (=filtering router)

* Essential Network Security Book Slides.

IS3440 Linux Security Unit 9 Linux System Logging and Monitoring

Chapter 27: System Security

ISMS Information Security Management System

Firewalls Purpose of a Firewall Characteristic of a firewall

Information Security Awareness

Protocol Application TCP/IP Layer Model

Protection Mechanisms in Security Management

Presentation transcript:

i3Live Security Paul Wisniewski UW-Madison August, 2010

i3Live System Security Safe Guards Vulnerability Reduction Operating System - Package Management - FS Permission-ing Application - Package Management - Role Based Access Control - Django Input Sanitizing Network - Firewall-ed DMZ placement - Packet Filtering rules restricts types of access - Connection Logging - Periodic Scanning & Penetration Testing

i3Live System Security

i3Live Security SUMMARY –Number of hosts which were alive during the test : 1 –Number of security holes found : 0 –Number of security warnings found : 2 –Number of security notes found : 28 –TESTED HOSTS (Security warnings found) Warning found on port https (443/tcp) Synopsis : Debugging functions are enabled on the remote web server. Description : The remote webserver supports the TRACE and/or TRACK methods. TRACE and TRACK are HTTP methods that are used to debug web server connections. Warning found on port https (443/tcp) Synopsis : The remote web server discloses information due to a configuration weakness. Description : The web server on the remote host allows read access to '.svn/entries' files. This exposes all file names in your svn module on your website. This flaw can also be used to download the source code of the scripts (PHP, JSP, etc...) hosted on the remote server.

I3live System Security Breach Detection & Containment Detection Periodic Logging Analysis User and Campus FeedBack Host Monitoring via Nagios Containment Quarantining via network partitioning Assessment via out-of-band access Quick Recovery using Kickstart methods

I3live System Security Discussion Impact of a Breach ? How much detector downtime is tolerable ? How much IceCube Live downtime is tolerable ? Can data taking be unlinked from IceCube Live ?