Presentation is loading. Please wait.

Presentation is loading. Please wait.

Technology Envioronment

Published byErin Caldwell Modified over 6 years ago

Similar presentations

Presentation on theme: "Technology Envioronment"— Presentation transcript:

1 Technology Envioronment
Scope of Assessment Technology Envioronment Perform a Nessus “Basic Network Scan” on Raspberry Pi running a Volumio Linux distro Summarize High and Medium Risk Findings and Recommendations Perform a re-scan after remediation activities Application Volumio Music Player Operating System Debian Linux Hardware Raspberry Pi 2 Model B Jason Lindsley - MIS Scanning Exercise

2 Results and Recommendations
1 All High and Medium risk vulnerabilities were related to the Samba daemon, which allows file and print sharing between computers running Microsoft Windows and Unix-like systems (e.g. Linux, AIX, Solaris, etc.). Volumio uses Samba to enable users to mount shared network storage to the device to play audio files from remote devices Users do not require the functionality associated with mount network storage in this environment. Therefore, Samba is not an essential service and can be removed. 2 29 Vulnerability Risk CVE Reference Risk Rating Recommendation SMB Shares Unprivileged Access Network storage shares can be accessed using a NULL session and may allow attacker to read/write data. CVE , CVE High Remove the entire Samba package, including configuration files, with the following command: sudo apt-get purge Samba It is recommended to make a backup copy of the micro SD card prior to disabling the Samba service in the event that the change disrupts operations completely. SMB Guest Account Local User Access The remote host is running one of the SAMBA daemons and is configured to allow access via a guest user using a random account. This could allow unauthorized access without traceability to an individual. CVE Medium SMB Signing Disabled Signing is not required on the remote server using Samba. An unauthenticated, remote attacker can exploit this service to conduct man-in-the-middle attacks against the server. Not Available Jason Lindsley - MIS Scanning Exercise

3 Remediation and Re-scan Results
Samba service was removed using the “sudo apt-get purge Samba” A re-scan provided evidence that the one High and two Medium rated vulnerabilities were remediated: Functionality of the Volumio software was tested and determined to be fully functional Note: Although it was not part of the scope of this assessment default privileged accounts were identified (i.e. ‘root’ and ‘volumio’). The passwords for the accounts were changed to complex passwords. All High and Medium risk findings were addressed Jason Lindsley - MIS Scanning Exercise

Download ppt "Technology Envioronment"

Similar presentations

Vulnerability Analysis Borrowed from the CLICS group.

Vulnerability Analysis Borrowed from the CLICS group.
Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.

Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.
Introduction to the Raspberry Pi ® Saman Amighi 10/2013 ® Raspberry Pi Foundation.

Introduction to the Raspberry Pi ® Saman Amighi 10/2013 ® Raspberry Pi Foundation.
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 6 Enumeration.
Chapter 8 Operating Systems and Utility Programs By: James Granahan.

Chapter 8 Operating Systems and Utility Programs By: James Granahan.
Privilege Levels Cisco IOS provides for 16 different privilege levels ranging from 0 to 15. Cisco IOS comes with 2 predefined user levels. User mode.

Privilege Levels Cisco IOS provides for 16 different privilege levels ranging from 0 to 15. Cisco IOS comes with 2 predefined user levels. User mode.
CMSC 691X – Summer 2002 Project By Pravin D’Souza.

CMSC 691X – Summer 2002 Project By Pravin D’Souza.
1 COP 4343 Unix System Administration Unit 16: file server – samba.

1 COP 4343 Unix System Administration Unit 16: file server – samba.
Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.

Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.
1 SAMBA. 2 Module - SAMBA ♦ Overview The presence of diverse machines in the network environment is natural. So their interoperability is critical. This.

1 SAMBA. 2 Module - SAMBA ♦ Overview The presence of diverse machines in the network environment is natural. So their interoperability is critical. This.
Guide to Operating System Security Chapter 9 Web, Remote Access, and VPN Security.

Guide to Operating System Security Chapter 9 Web, Remote Access, and VPN Security.
Securing Operating Systems Chapter 10. Security Maintenance Practices and Principles Basic proactive security can prevent many problems Maintenance involves.

Securing Operating Systems Chapter 10. Security Maintenance Practices and Principles Basic proactive security can prevent many problems Maintenance involves.
Copyright © 2002 ProsoftTraining. All rights reserved. Operating System Security.

Copyright © 2002 ProsoftTraining. All rights reserved. Operating System Security.
Hands-On Ethical Hacking and Network Defense Chapter 8 Microsoft Operating System Vulnerabilities.

Hands-On Ethical Hacking and Network Defense Chapter 8 Microsoft Operating System Vulnerabilities.
Module 4: Add Client Computers and Devices to the Network.

Module 4: Add Client Computers and Devices to the Network.
CIS 191 – Lesson 2 System Administration. CIS 191 – Lesson 2 System Architecture Component Architecture –The OS provides the simple components from which.

CIS 191 – Lesson 2 System Administration. CIS 191 – Lesson 2 System Architecture Component Architecture –The OS provides the simple components from which.
Explain the purpose of an operating system

Explain the purpose of an operating system
Module 1: Installing and Configuring Servers. Module Overview Installing Windows Server 2008 Managing Server Roles and Features Overview of the Server.

Module 1: Installing and Configuring Servers. Module Overview Installing Windows Server 2008 Managing Server Roles and Features Overview of the Server.
Module 9: Preparing to Administer a Server. Overview Introduction to Administering a Server Configuring Remote Desktop to Administer a Server Managing.

Module 9: Preparing to Administer a Server. Overview Introduction to Administering a Server Configuring Remote Desktop to Administer a Server Managing.
SCSC 555 Frank Li.  Introduction to Enumeration  Enumerate Microsoft OS  Enumerate *NIX OS  Enumerate NetWare OS (skip) 2.

SCSC 555 Frank Li.  Introduction to Enumeration  Enumerate Microsoft OS  Enumerate *NIX OS  Enumerate NetWare OS (skip) 2.

Similar presentations

Ads by Google