Difference between revisions of "SEC520"
(Created page with 'Category:OPS235 {| style="float: right; margin: 0 0 3em 2em; border: 1px solid black;" !style="background: #cccccc"| Quick Links |- |<div style="background:#ffff00">[[OPS235…') |
m (Protected "SEC520": OER transfer ([Edit=Allow only administrators] (indefinite) [Move=Allow only administrators] (indefinite))) |
||
(185 intermediate revisions by 6 users not shown) | |||
Line 1: | Line 1: | ||
− | [[Category: | + | [[Category:SEC520]] |
+ | |||
{| style="float: right; margin: 0 0 3em 2em; border: 1px solid black;" | {| style="float: right; margin: 0 0 3em 2em; border: 1px solid black;" | ||
!style="background: #cccccc"| Quick Links | !style="background: #cccccc"| Quick Links | ||
|- | |- | ||
− | |<div style="background:#ffff00">[[ | + | |<div style="background:#ffff00">[[SEC520_Weekly_Schedule|Weekly Schedule]]</div>[https://scs.senecac.on.ca/course/sec520 Course Outline]<br />[https://wiki.cdot.senecacollege.ca/wiki/Course_Policies Course Policies]]<br />Security Resources<br />Security Community<br />Instructor Resource |
|- | |- | ||
!style="background: #cccccc"| Assignments | !style="background: #cccccc"| Assignments | ||
|- | |- | ||
− | |<!-- [[OPS235 FSOSS Bonus Assignment|FSOSS Bonus Assignment]]<br /> -->[ | + | |<!-- [[OPS235 FSOSS Bonus Assignment|FSOSS Bonus Assignment]]<br /> -->[https://scs.senecac.on.ca/~fac/sec520/assignments/SEC520_Assignment_1.html Assignment 1]<br /> [https://my.senecacollege.ca/webapps/blackboard/content/listContentEditable.jsp?content_id=_7617589_1&course_id=_563094_1&mode=reset Assignment 2] |
− | [ | ||
|} | |} | ||
− | = Welcome to | + | = Welcome to SEC520 - ''Internet Security'' = |
== What This Course is About == | == What This Course is About == | ||
− | This | + | This subject explores issues surrounding '''web site construction''', '''operation''', and '''maintenance''' from a '''security point of view'''. Students will learn how to: |
+ | |||
+ | :*'''List basic rules''' regarding Internet Security. | ||
+ | |||
+ | :*'''Identify attack types''' from both internal and external sources. | ||
+ | |||
+ | :*'''Conduct safe authorized Penetration Testing''' (creating and using Virtual Machines). | ||
+ | |||
+ | :*'''Build secure servers from Penetration Testing Results''' ("hardened" servers). | ||
+ | |||
+ | |||
+ | Major topics will include '''document encryption''', '''server protection''', and '''defense strategies'''. | ||
− | + | Demonstration web servers for both '''Windows''' and '''Unix/Linux''' will be investigated during this one semester course. | |
− | |||
− | + | == Course Resources == | |
− | : | + | * [[https://wiki.cdot.senecacollege.ca/wiki/SEC520_Weekly_Schedule SEC520 Weekly Schedule]] (Course Notes / Labs) |
+ | * [https://scs.senecac.on.ca/course/sec520 Course Outline] | ||
+ | * [[https://wiki.cdot.senecacollege.ca/wiki/Course_Policies Course Policies]] | ||
− | == | + | == Supplies Checklist (Required Prior to First Class) == |
− | |||
− | + | <u>'''Hardware'''</u> | |
− | |||
− | + | {|border="1" cellpadding="8" | |
+ | |- | ||
+ | !Item | ||
+ | !Item Details | ||
+ | !Graphic | ||
+ | |- | ||
+ | ! | ||
− | + | SATA Hard Disk in Removable Drive Tray | |
− | + | |There are a few different methods of setting up for the SEC520 lab: | |
− | + | <ol> | |
+ | <li>Use '''removable SATA/SSD Removable Hard Disk''' (Kali Linux host, VMs for other vulnerable OS</li> | ||
+ | <li>Setup VirtualBox on '''existing Notebook/Netbook''', and '''create VMs for Kali Linux, vulnerable Windows (TBD) server, and vulnerable Linux server'''</li> | ||
+ | <li>'''Full dedicated install on a Notebook/Netbook for Kali Linux''', VMs to be installed for other vulnerable OS</li> | ||
+ | </ol> | ||
+ | |||
+ | |||
+ | Specification for SATA/SSD Hard Disk in Removable Drive Tray:<br /><br />Hard Disk Size: at least '''160GB''' ''(250 - 500 GB preferred)''.<br />'''Please buy the tray from ACS or the bookstore''' as not all trays are compatible.<br /><br />Mechanical shock from dropping a hard drive causes drive failure for several students each semester. If you use a mechanical hard drive, be careful not to drop it, and transport it in a padded container (e.g., a neoprene netbook sleeve, available from some dollar stores).<br /><br /> Solid state disks (SSDs) are becoming competitive in price, are faster, and are less susceptible to shock, so you may want to look for a deal on an SSD instead of a hard drive -- but check to ensure that your SSD will fit properly into your drive tray.<br /><br />Please tighten the drive screws securely to prevent the tray from jamming in the holder, or leave the screws off.<br /><br /> | ||
+ | |[[Image:hd-tray.jpg|thumb|center|180px|<b>Hard Disk in Disk Tray</b><br />At least <b>160 GB</b> (available at the Bookstore)]] | ||
+ | |||
+ | |} | ||
+ | |||
+ | |||
+ | |||
+ | <u>'''Bootable Operating System Images'''</u> | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | + | '''Note:''' Although instructions are provided to burn OS for VMs on CD/DVD, there are other methods of installing OS on VMs: '''USB stick''', '''network install''', or by '''downloaded image file'''. You can determine the best method to use. Here is a link to installing a VM from saved image file: [http://geekyprojects.com/tutorials/how-to-run-an-iso-image-file-in-virtualbox/ How to Run ISO Image File in VirtualBox] | |
− | |||
{|border="1" cellpadding="8" width="100%" | {|border="1" cellpadding="8" width="100%" | ||
Line 57: | Line 81: | ||
!Storage Media | !Storage Media | ||
!Download and Burning Options | !Download and Burning Options | ||
− | |||
|- | |- | ||
− | + | ||
+ | |[[Image:blank-cd.png|thumb|left|75px]] | ||
+ | '''Kali Linux CD:''' | ||
+ | <ul> | ||
+ | <li>'''Download URL (Select for appropriate machine 32/64-bit):''' [http://www.kali.org/downloads/ http://www.kali.org/downloads/] </li> | ||
+ | <li>[[Download and Burn Image in TEL Open Lab]] </li> | ||
+ | </ul> | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | [[Image:blank-cd.png|thumb|left|75px]]'''Fedora Core 7 or Centos 7 DVD:''' | ||
+ | <ul> | ||
+ | <li>'''Download URL:''' <br />[http://dl.fedoraproject.org/pub/archive/fedora/linux/core/5/i386/iso/FC-5-i386-DVD.iso http://dl.fedoraproject.org/pub/archive/fedora/linux/core/5/i386/iso/FC-5-i386-DVD.iso] </li> | ||
+ | <li>[[Download and Burn Image in TEL Open Lab]] </li> | ||
+ | </ul> | ||
− | |||
− | + | <ul> | |
+ | <li>[[Download and Burn Image in TEL Open Lab]]</li> | ||
+ | </ul> | ||
− | + | |[[Image:ubs-key.png|thumb|center|75px|<b>USB keys to Installation Media</b> (Alternative to CD/DVD)]] | |
− | |||
− | |||
− | |||
|} | |} | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | + | <u>'''Study Aids'''</u> | |
− | |||
{|border="1" cellpadding="8" | {|border="1" cellpadding="8" | ||
Line 103: | Line 125: | ||
|- | |- | ||
!Lab Log-Book | !Lab Log-Book | ||
− | |Download and Print: '''[http:// | + | |Download and Print: '''SEC520 Lab log book [ [http://cs.senecac.on.ca/~murray.saul/SEC520/SEC520_lab_logbook.pdf PDF] ] [ [http://cs.senecac.on.ca/~murray.saul/SEC520/SEC520_lab_logbook.odt odt] ]'''.<br /><br />Please note that '''you can use your log book during quizzes, written tests, practical tests and the final exam'''.<br /><br /> It's also the record that you have completed the labs, so don't lose it! |
− | |[[Image:log-book.png|thumb| | + | |[[Image:log-book.png|thumb|center|200px|<b>Lab Log-Book</b><br />Used for '''marking labs''' and for an '''evaluation aid''']] |
|} | |} | ||
Line 112: | Line 134: | ||
|- | |- | ||
| | | | ||
− | |||
− | {{Admon/important|Place your Full Name and Contact Information on the hard disk tray cover and directly on the disk drive.|Use an adhesive label and permanent marker, or a white marker on the black cover.}} | + | {{Admon/caution|You are Playing With Fire!|''"A little bit of knowledge is a dangerous thing"''. '''You MUST carefully read and follow instructions in your SEC520 labs as well as heeding warning from your SEC520 instructor'''. Failing to use caution when learning in this environment can '''cause damage to computer systems and cause your computer account(s) to be taken away'''.<br /><br />'''Students will be required to "sign waivers" to promise to follow these rules carefully, and only perform certain operations in the computer lab indicated at the college'''.}} |
+ | |||
+ | |||
+ | {{Admon/important|Share / Collaborate Problems and Solutions with Others (non-evaluation issues only)|Use the "lounge" section is Moodle to post concerns or solutions with other classmates regarding labs. The ability to collaborate with colleagues to solve problems instead of always asking your boss (or professor) is a very useful skill-set!}} | ||
+ | {{Admon/important|Place your Full Name and Contact Information on the hard disk tray cover and directly on the disk drive.|Use an adhesive label and permanent marker, or a white marker on the black cover.}}<br /><br /> | ||
{{Admon/important|Always "double-check" that you have removabled your hard disk tray prior to exiting the lab room.|You may have your hard drive tray stolen which will result in lost work!}} | {{Admon/important|Always "double-check" that you have removabled your hard disk tray prior to exiting the lab room.|You may have your hard drive tray stolen which will result in lost work!}} | ||
− | {{Admon/important|Do not share your | + | {{Admon/important|Do not share your SEC520 disk drive with another course.|The work you do in this course will render your other work inaccessible and may erase it.}} |
{{Admon/important|Earlier labs become the foundation for later labs.|Seemingly "small errors", or "skipping instructions" in earlier labs can have negative consequences when performing other dependent labs. Make backups when requested at the end of labs for "restoration points" in case something goes wrong while performing a lab.}} | {{Admon/important|Earlier labs become the foundation for later labs.|Seemingly "small errors", or "skipping instructions" in earlier labs can have negative consequences when performing other dependent labs. Make backups when requested at the end of labs for "restoration points" in case something goes wrong while performing a lab.}} | ||
Line 124: | Line 149: | ||
{{Admon/important|Always shut down your system under software control, rather than using the reset or power buttons. You can shutdown using the GUI or with the <code>poweroff</code>, <code>reboot</code>, <code>init</code>, or <code>shutdown</code> commands. Shut down your virtual machines before shutting down your main system.|}} | {{Admon/important|Always shut down your system under software control, rather than using the reset or power buttons. You can shutdown using the GUI or with the <code>poweroff</code>, <code>reboot</code>, <code>init</code>, or <code>shutdown</code> commands. Shut down your virtual machines before shutting down your main system.|}} | ||
− | |||
− | |||
|} | |} | ||
= Course Faculty = | = Course Faculty = | ||
− | |||
− | |||
− | |||
− | + | ''During the Winter 2018 semester, SEC520 is taught by: | |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | + | Anthony Austin anthony.austin@senecacollege.ca'' | |
− | + | x32267, Rm. D2096 (formerly TEL) | |
= Wiki Participation = | = Wiki Participation = | ||
* You can edit these pages! Please feel free to fix typos or add links to additional resources. Please use this capability responsibly. | * You can edit these pages! Please feel free to fix typos or add links to additional resources. Please use this capability responsibly. | ||
+ | * Some simple math skills required for saving edits... >:) |
Latest revision as of 14:57, 21 July 2023
Quick Links |
---|
Course Outline Course Policies] Security Resources Security Community Instructor Resource |
Assignments |
Assignment 1 Assignment 2 |
Contents
Welcome to SEC520 - Internet Security
What This Course is About
This subject explores issues surrounding web site construction, operation, and maintenance from a security point of view. Students will learn how to:
- List basic rules regarding Internet Security.
- Identify attack types from both internal and external sources.
- Conduct safe authorized Penetration Testing (creating and using Virtual Machines).
- Build secure servers from Penetration Testing Results ("hardened" servers).
Major topics will include document encryption, server protection, and defense strategies.
Demonstration web servers for both Windows and Unix/Linux will be investigated during this one semester course.
Course Resources
- [SEC520 Weekly Schedule] (Course Notes / Labs)
- Course Outline
- [Course Policies]
Supplies Checklist (Required Prior to First Class)
Hardware
Item | Item Details | Graphic |
---|---|---|
SATA Hard Disk in Removable Drive Tray |
There are a few different methods of setting up for the SEC520 lab:
|
Bootable Operating System Images
Note: Although instructions are provided to burn OS for VMs on CD/DVD, there are other methods of installing OS on VMs: USB stick, network install, or by downloaded image file. You can determine the best method to use. Here is a link to installing a VM from saved image file: How to Run ISO Image File in VirtualBox
Storage Media | Download and Burning Options |
---|---|
Kali Linux CD:
|
|
Study Aids
Item | Item Details | Graphic |
---|---|---|
Lab Log-Book | Download and Print: SEC520 Lab log book [ PDF ] [ odt ]. Please note that you can use your log book during quizzes, written tests, practical tests and the final exam. It's also the record that you have completed the labs, so don't lose it! |
Important Information
|
Course Faculty
During the Winter 2018 semester, SEC520 is taught by:
Anthony Austin anthony.austin@senecacollege.ca
x32267, Rm. D2096 (formerly TEL)
Wiki Participation
- You can edit these pages! Please feel free to fix typos or add links to additional resources. Please use this capability responsibly.
- Some simple math skills required for saving edits... >:)