Difference between revisions of "SEC520"

From CDOT Wiki
Jump to: navigation, search
m (Protected "SEC520": OER transfer ([Edit=Allow only administrators] (indefinite) [Move=Allow only administrators] (indefinite)))
 
(184 intermediate revisions by 6 users not shown)
Line 1: Line 1:
[[Category:OPS235]]
+
[[Category:SEC520]]
 +
 
  
 
{| style="float: right; margin: 0 0 3em 2em; border: 1px solid black;"
 
{| style="float: right; margin: 0 0 3em 2em; border: 1px solid black;"
 
!style="background: #cccccc"| Quick Links
 
!style="background: #cccccc"| Quick Links
 
|-
 
|-
|<div style="background:#ffff00">[[OPS235 Weekly Schedule|Weekly Schedule]]</div>[https://scs.senecac.on.ca/course/ops235 Course Outline]<br />[http://fedoraproject.org Fedora Project]<br />[http://docs.fedoraproject.org/ Fedora documentation]
+
|<div style="background:#ffff00">[[SEC520_Weekly_Schedule|Weekly Schedule]]</div>[https://scs.senecac.on.ca/course/sec520 Course Outline]<br />[https://wiki.cdot.senecacollege.ca/wiki/Course_Policies Course Policies]]<br />Security Resources<br />Security Community<br />Instructor Resource
 
|-
 
|-
 
!style="background: #cccccc"| Assignments
 
!style="background: #cccccc"| Assignments
 
|-
 
|-
|<!-- [[OPS235 FSOSS Bonus Assignment|FSOSS Bonus Assignment]]<br /> -->[http://zenit.senecac.on.ca/wiki/index.php/OPS235_Assignment_1 Assignment 1]
+
|<!-- [[OPS235 FSOSS Bonus Assignment|FSOSS Bonus Assignment]]<br /> -->[https://scs.senecac.on.ca/~fac/sec520/assignments/SEC520_Assignment_1.html Assignment 1]<br /> [https://my.senecacollege.ca/webapps/blackboard/content/listContentEditable.jsp?content_id=_7617589_1&course_id=_563094_1&mode=reset Assignment 2]
[http://zenit.senecac.on.ca/wiki/index.php/OPS235_Assignment_2 Assignment 2]
 
 
|}
 
|}
  
Line 16: Line 16:
 
== What This Course is About ==
 
== What This Course is About ==
  
This course is the second in a series of courses about Linux technologies:
+
This subject explores issues surrounding '''web site construction''', '''operation''', and '''maintenance''' from a '''security point of view'''. Students will learn how to:
 +
 
 +
:*'''List basic rules''' regarding Internet Security.
 +
 
 +
:*'''Identify attack types''' from both internal and external sources.
 +
 
 +
:*'''Conduct safe authorized Penetration Testing''' (creating and using Virtual Machines).
 +
 
 +
:*'''Build secure servers from Penetration Testing Results''' ("hardened" servers).
 +
 
 +
 
 +
Major topics will include '''document encryption''', '''server protection''', and '''defense strategies'''.
  
:* ULI101 taught you to be a Linux ''user''. '''In OPS235, you will move from being Linux a ''user'' to being a Linux system ''administrator''.'''
+
Demonstration web servers for both '''Windows''' and '''Unix/Linux''' will be investigated during this one semester course.
  
:* As a system administrator, you will be responsible for '''installing, configuring, adjusting, maintaining, and troubleshooting the operation of computer systems'''. This is a lot of responsibility, and with that responsibility comes power. You will be able to change anything on the system, and you will also have the ability to damage or destroy the system.
 
  
:* In this course you use a '''removable disk tray with the lab computers''' to set up a Linux system. You will also set up '''four additional Linux systems using "Virtual Machines"''', and therefore gain experience with different types of system configurations as well as setting up networking between systems.
+
== Course Resources ==
  
:* Later courses (OPS335 and OPS435) teach you to administer Linux servers (web servers, DNS servers, FTP servers, file sharing servers) -- and to use scripting to boost your system administration efficiency.
+
* [[https://wiki.cdot.senecacollege.ca/wiki/SEC520_Weekly_Schedule SEC520 Weekly Schedule]] (Course Notes / Labs)
 +
* [https://scs.senecac.on.ca/course/sec520 Course Outline]
 +
* [[https://wiki.cdot.senecacollege.ca/wiki/Course_Policies Course Policies]]
  
== Learning by Doing ==
+
== Supplies Checklist (Required Prior to First Class) ==
  
Most of the learning in this course occurs through the hands-on problem solving that takes place in the eight labs and two assignments.
 
  
Requirements for Success:
+
<u>'''Hardware'''</u>
  
:* '''It is very important to stay up-to-date with the coursework''', and to practice until you have confidently mastered each task.
 
  
:* '''All of the software used in this course is ''open source'' software, so you are free to use, modify, and redistribute it'''. This means that you can install it as many times as you want on as many different computers as you would like. It also means that you can tinker with it -- you can take it apart, see how it works, and put it back together in the same or a different way, limited only by your time and ambition. '''You are encouraged to experiment and question liberally'''.
+
{|border="1" cellpadding="8"
 +
|-
 +
!Item
 +
!Item Details
 +
!Graphic
 +
|-
 +
!
  
:* '''The notes that you make during the labs and assignments are your reference material for the quizzes, tests, and assignments'''. Take really good notes, and if you have questions, experiment and consult with your professor.
+
SATA Hard Disk in Removable Drive Tray
  
:* '''Carefully read ALL lab instructions and check your work regularly'''. The labs have been designed with backup safeguards to prevent the student from losing their work. On the other hand, '''students may lose their work if they fail to follow lab instructions or accidentally forget their removable hard disks in the workstation's hard disk bay drive!'''
+
|There are a few different methods of setting up for the SEC520 lab:
  
== Course Resources ==
+
<ol>
 +
  <li>Use '''removable SATA/SSD Removable Hard Disk''' (Kali Linux host, VMs for other vulnerable OS</li>
 +
  <li>Setup VirtualBox on '''existing Notebook/Netbook''', and '''create VMs for Kali Linux, vulnerable Windows (TBD) server, and vulnerable Linux server'''</li>
 +
  <li>'''Full dedicated install on a Notebook/Netbook for Kali Linux''', VMs to be installed for other vulnerable OS</li>
 +
</ol>
 +
 
 +
 
 +
Specification for SATA/SSD Hard Disk in Removable Drive Tray:<br /><br />Hard Disk Size: at least '''160GB''' ''(250 - 500 GB preferred)''.<br />'''Please buy the tray from ACS or the bookstore''' as not all trays are compatible.<br /><br />Mechanical shock from dropping a hard drive causes drive failure for several students each semester. If you use a mechanical hard drive, be careful not to drop it, and transport it in a padded container (e.g., a neoprene netbook sleeve, available from some dollar stores).<br /><br /> Solid state disks (SSDs) are becoming competitive in price, are faster, and are less susceptible to shock, so you may want to look for a deal on an SSD instead of a hard drive -- but check to ensure that your SSD will fit properly into your drive tray.<br /><br />Please tighten the drive screws securely to prevent the tray from jamming in the holder, or leave the screws off.<br /><br />
 +
|[[Image:hd-tray.jpg|thumb|center|180px|<b>Hard Disk in Disk Tray</b><br />At least <b>160 GB</b> (available at the Bookstore)]]
 +
 
 +
|}
 +
 
 +
 
 +
 
 +
<u>'''Bootable Operating System Images'''</u>
  
* [[OPS235 Weekly Schedule |OPS235 Weekly Schedule]] (Course Notes / Labs)
 
* [https://scs.senecac.on.ca/course/ops235 Course Outline]
 
* [https://cs.senecac.on.ca/~scs/DonMillsPolicies/policy.html Course Policies]
 
* [https://scs.senecac.on.ca/ School of Computer Studies Homepage]
 
* Optional (non required) Reading Materials: [http://magazine.redhat.com/2008/01/31/book-review-fedora-linux-toolbox/ Fedora Linux Toolbox].
 
  
== Supplies Checklist (Required for Second Class) ==
+
'''Note:''' Although instructions are provided to burn OS for VMs on CD/DVD, there are other methods of installing OS on VMs: '''USB stick''', '''network install''', or by '''downloaded image file'''. You can determine the best method to use. Here is a link to installing a VM from saved image file: [http://geekyprojects.com/tutorials/how-to-run-an-iso-image-file-in-virtualbox/ How to Run ISO Image File in VirtualBox]
  
  
'''1. Bootable Fedora Media (CD / DVD)'''
 
  
 
{|border="1" cellpadding="8" width="100%"
 
{|border="1" cellpadding="8" width="100%"
Line 57: Line 81:
 
!Storage Media
 
!Storage Media
 
!Download and Burning Options
 
!Download and Burning Options
!colspan="3"|Graphics
 
 
|-
 
|-
!'''Fedora 16 Live CD''' (x86_64)<br />and<br />'''Fedora 16 installation DVD (x86_64)'''
+
 
 +
|[[Image:blank-cd.png|thumb|left|75px]]
 +
'''Kali Linux CD:'''
 +
<ul>
 +
  <li>'''Download URL (Select for appropriate machine 32/64-bit):'''  [http://www.kali.org/downloads/ http://www.kali.org/downloads/] </li>
 +
  <li>[[Download and Burn Image in TEL Open Lab]] </li>
 +
</ul>
 +
 
 +
 
 +
 
 +
 
 +
 
 +
[[Image:blank-cd.png|thumb|left|75px]]'''Fedora Core 7 or Centos 7 DVD:'''
 +
<ul>
 +
  <li>'''Download URL:''' <br />[http://dl.fedoraproject.org/pub/archive/fedora/linux/core/5/i386/iso/FC-5-i386-DVD.iso http://dl.fedoraproject.org/pub/archive/fedora/linux/core/5/i386/iso/FC-5-i386-DVD.iso] </li>
 +
  <li>[[Download and Burn Image in TEL Open Lab]] </li>
 +
</ul>
  
  
|'''1. [[Use Freedom Toaster (in the Open Lab)]]''' (click for details)
 
  
  
'''2. [[Download and Burn in TEL Open Lab]]''' (click for full instructions)
+
<ul>
 +
  <li>[[Download and Burn Image in TEL Open Lab]]</li>
 +
</ul>
  
  
'''3. [[Download and Burn at Home]]''' (click for details)
+
|[[Image:ubs-key.png|thumb|center|75px|<b>USB keys to Installation Media</b> (Alternative to CD/DVD)]]
  
|[[Image:blank-cd.png|thumb|right|100px|<b>Blank Writable CD or DVD</b><br />Available at the Bookstore or other retail stores]]
 
|[[Image:blank-cd.png|thumb|right|100px|<b>Blank Writable DVD </b><br />Available at the Bookstore or other retail stores]]
 
|[[Image:toaster.png|thumb|right|100px|<b>Freedom Toaster <br />in TEL Open Lab</b><br /> (Convenient, but machine has problems with some types of DVDs)]]
 
  
 
|}
 
|}
  
<u>'''2. Additional Hardware'''</u>
 
  
{|border="1" cellpadding="8"
 
|-
 
!Item
 
!Item Details
 
!Graphic
 
|-
 
!SATA Hard Disk in Removable Drive Tray
 
|Hard Disk Size: at least '''160GB'''.<br />'''Please buy the tray from ACS or the bookstore''' as not all trays are compatible.<br /><br />Mechanical shock from dropping a hard drive causes drive failure for several students each semester. If you use a mechanical hard drive, be careful not to drop it, and transport it in a padded container (e.g., a neoprene netbook sleeve, available from some dollar stores).<br /><br />Hard drives are currently expensive due to flooding in Thailand. Solid state disks (SSDs) are becoming competitive in price, are faster, and are less susceptible to shock, so you may want to look for a deal on an SSD instead of a hard drive -- but check to ensure that your SSD will fit properly into your drive tray.<br /><br />Please tighten the drive screws securely to prevent the tray from jamming in the holder, or leave the screws off.<br /><br />
 
|[[Image:hd-tray.jpg|thumb|right|180px|<b>Hard Disk in Disk Tray</b><br />At least <b>160 GB</b> (available at the Bookstore)]]
 
|-
 
!USB Flash Drive
 
|'''2GB''' or larger recommended).<br /><br /> '''Warning:''' anything on this flash drive will be erased!
 
|[[Image:ubs-key.png|thumb|right|75px|<b>A single USB key</b><br />At least <b>2 GB</b> or larger]]
 
  
|}
+
<u>'''Study Aids'''</u>
  
<u>'''3. Study Aids'''</u>
 
  
 
{|border="1" cellpadding="8"
 
{|border="1" cellpadding="8"
Line 103: Line 125:
 
|-
 
|-
 
!Lab Log-Book
 
!Lab Log-Book
|Download and Print: '''[http://zenit.senecac.on.ca/~chris.tyler/ops235/2012-1/ops235_2012-1_lab_log_book.pdf Lab log book (PDF)]'''.<br /><br />Please note that '''you can use your log book during  quizzes, written tests, practical tests and the final exam'''.<br /><br /> It's also the record that you have completed the labs, so don't lose it!
+
|Download and Print: '''SEC520 Lab log book [ [http://cs.senecac.on.ca/~murray.saul/SEC520/SEC520_lab_logbook.pdf PDF] ]  [ [http://cs.senecac.on.ca/~murray.saul/SEC520/SEC520_lab_logbook.odt odt] ]'''.<br /><br />Please note that '''you can use your log book during  quizzes, written tests, practical tests and the final exam'''.<br /><br /> It's also the record that you have completed the labs, so don't lose it!
|[[Image:log-book.png|thumb|right|200px|<b>Lab Log-Book</b><br />Used for '''marking labs''' and for an '''evaluation aid''']]
+
|[[Image:log-book.png|thumb|center|200px|<b>Lab Log-Book</b><br />Used for '''marking labs''' and for an '''evaluation aid''']]
 
|}
 
|}
  
Line 112: Line 134:
 
|-
 
|-
 
|
 
|
{{Admon/important|Bring all of these supplies to each class.|Even after installation, the Live CD, Installation DVD, and flash drive may be required.}}
 
  
{{Admon/important|Place your Full Name and Contact Information on the hard disk tray cover and directly on the disk drive.|Use an adhesive label and permanent marker, or a white marker on the black cover.}}
+
{{Admon/caution|You are Playing With Fire!|''"A little bit of knowledge is a dangerous thing"''. '''You MUST carefully read and follow instructions in your SEC520 labs as well as heeding warning from your SEC520 instructor'''. Failing to use caution when learning in this environment can '''cause damage to computer systems and cause your computer account(s) to be taken away'''.<br /><br />'''Students will be required to "sign waivers" to promise to follow these rules carefully, and only perform certain operations in the computer lab indicated at the college'''.}}
 +
 
 +
 
 +
{{Admon/important|Share / Collaborate Problems and Solutions with Others (non-evaluation issues only)|Use the "lounge" section is Moodle to post concerns or solutions with other classmates regarding labs. The ability to collaborate with colleagues to solve problems instead of always asking your boss (or professor) is a very useful skill-set!}}
 +
{{Admon/important|Place your Full Name and Contact Information on the hard disk tray cover and directly on the disk drive.|Use an adhesive label and permanent marker, or a white marker on the black cover.}}<br /><br />
  
 
{{Admon/important|Always "double-check" that you have removabled your hard disk tray prior to exiting the lab room.|You may have your hard drive tray stolen which will result in lost work!}}
 
{{Admon/important|Always "double-check" that you have removabled your hard disk tray prior to exiting the lab room.|You may have your hard drive tray stolen which will result in lost work!}}
  
{{Admon/important|Do not share your OPS235 disk drive with another course.|The work you do in this course will render your other work inaccessible and may erase it.}}
+
{{Admon/important|Do not share your SEC520 disk drive with another course.|The work you do in this course will render your other work inaccessible and may erase it.}}
  
 
{{Admon/important|Earlier labs become the foundation for later labs.|Seemingly "small errors", or "skipping instructions" in earlier labs can have negative consequences when performing other dependent labs. Make backups when requested at the end of labs for "restoration points" in case something goes wrong while performing a lab.}}
 
{{Admon/important|Earlier labs become the foundation for later labs.|Seemingly "small errors", or "skipping instructions" in earlier labs can have negative consequences when performing other dependent labs. Make backups when requested at the end of labs for "restoration points" in case something goes wrong while performing a lab.}}
Line 124: Line 149:
 
{{Admon/important|Always shut down your system under software control, rather than using the reset or power buttons. You can shutdown using the GUI or with the <code>poweroff</code>, <code>reboot</code>, <code>init</code>, or <code>shutdown</code> commands. Shut down your virtual machines before shutting down your main system.|}}
 
{{Admon/important|Always shut down your system under software control, rather than using the reset or power buttons. You can shutdown using the GUI or with the <code>poweroff</code>, <code>reboot</code>, <code>init</code>, or <code>shutdown</code> commands. Shut down your virtual machines before shutting down your main system.|}}
  
{{Admon/important|If you get a message about the gnome-power-manager configuration at the login screen, you may have run out of disk space. Switch to a character-mode virtual terminal (for example, switch to VT2 by pressing Ctrl-Alt-F2). Login and take a look at the available space (with the command: <code>df -h</code>). If the <code>/</code> filesystem is full, delete some files (such as unused VM images in <code>/var/lib/libvirt/images</code>) and then reboot the system.|}}
 
|[[Image:Desk flip.png|thumb|right|200px|<b>Failure to listen to lab "suggestions" by this resource could result in loss of work...</b>]]
 
 
|}
 
|}
  
 
= Course Faculty =
 
= Course Faculty =
{|cellpadding="15" width="100%"
 
|-
 
|During the Winter 2012 semester, OPS235 is taught by:
 
  
* [http://cs.senecac.on.ca/~john.smith/ Andrew Smith] (Sections A, B, C, D)
+
''During the Winter 2018 semester, SEC520 is taught by:
 
 
 
 
|[[Image:andrew.jpg|thumb|left|175px|<b>Andrew Smith</b><br />Sections '''A''','''B''','''C''','''D''']]
 
|}
 
 
 
And here's Andrew's timetable:
 
 
 
{| class="wikitable" border="1"
 
| || Monday || Tuesday || Wednesday || Thursday || Friday
 
|-
 
| 08:55 ||  ||  ||  ||  ||
 
|-
 
| 09:50 ||  ||  ||  ||  || OPS235C
 
|-
 
| 10:45 ||  ||  ||  ||  || OPS235C
 
|-
 
| 11:40 ||  ||  || OPS235C ||  ||
 
|-
 
| 12:35 ||  ||  || OPS235C ||  || OPS235A
 
|-
 
| 13:30 ||  ||  || OPS235A ||  || OPS235A
 
|-
 
| 14:25 ||  ||  || OPS235A ||  ||
 
|-
 
| 15:20 ||  ||  || OPS235B ||  || OPS235B
 
|-
 
| 16:15 ||  ||  || OPS235B ||  || OPS235B
 
|}
 
  
= Old Weekly Schedule (Do not use) =
+
Anthony Austin anthony.austin@senecacollege.ca''
  
* [[OPS235 Fall 2011 Schedule]]
+
x32267, Rm. D2096 (formerly TEL)
  
 
= Wiki Participation =
 
= Wiki Participation =
  
 
* You can edit these pages! Please feel free to fix typos or add links to additional resources. Please use this capability responsibly.
 
* You can edit these pages! Please feel free to fix typos or add links to additional resources. Please use this capability responsibly.
 +
* Some simple math skills required for saving edits... >:)

Latest revision as of 14:57, 21 July 2023


Quick Links
Course Outline
Course Policies]
Security Resources
Security Community
Instructor Resource
Assignments
Assignment 1
Assignment 2

Welcome to SEC520 - Internet Security

What This Course is About

This subject explores issues surrounding web site construction, operation, and maintenance from a security point of view. Students will learn how to:

  • List basic rules regarding Internet Security.
  • Identify attack types from both internal and external sources.
  • Conduct safe authorized Penetration Testing (creating and using Virtual Machines).
  • Build secure servers from Penetration Testing Results ("hardened" servers).


Major topics will include document encryption, server protection, and defense strategies.

Demonstration web servers for both Windows and Unix/Linux will be investigated during this one semester course.


Course Resources

Supplies Checklist (Required Prior to First Class)

Hardware


Item Item Details Graphic

SATA Hard Disk in Removable Drive Tray

There are a few different methods of setting up for the SEC520 lab:
  1. Use removable SATA/SSD Removable Hard Disk (Kali Linux host, VMs for other vulnerable OS
  2. Setup VirtualBox on existing Notebook/Netbook, and create VMs for Kali Linux, vulnerable Windows (TBD) server, and vulnerable Linux server
  3. Full dedicated install on a Notebook/Netbook for Kali Linux, VMs to be installed for other vulnerable OS


Specification for SATA/SSD Hard Disk in Removable Drive Tray:

Hard Disk Size: at least 160GB (250 - 500 GB preferred).
Please buy the tray from ACS or the bookstore as not all trays are compatible.

Mechanical shock from dropping a hard drive causes drive failure for several students each semester. If you use a mechanical hard drive, be careful not to drop it, and transport it in a padded container (e.g., a neoprene netbook sleeve, available from some dollar stores).

Solid state disks (SSDs) are becoming competitive in price, are faster, and are less susceptible to shock, so you may want to look for a deal on an SSD instead of a hard drive -- but check to ensure that your SSD will fit properly into your drive tray.

Please tighten the drive screws securely to prevent the tray from jamming in the holder, or leave the screws off.

Hard Disk in Disk Tray
At least 160 GB (available at the Bookstore)


Bootable Operating System Images


Note: Although instructions are provided to burn OS for VMs on CD/DVD, there are other methods of installing OS on VMs: USB stick, network install, or by downloaded image file. You can determine the best method to use. Here is a link to installing a VM from saved image file: How to Run ISO Image File in VirtualBox


Storage Media Download and Burning Options
Blank-cd.png

Kali Linux CD:



Blank-cd.png
Fedora Core 7 or Centos 7 DVD:




USB keys to Installation Media (Alternative to CD/DVD)



Study Aids


Item Item Details Graphic
Lab Log-Book Download and Print: SEC520 Lab log book [ PDF ] [ odt ].

Please note that you can use your log book during quizzes, written tests, practical tests and the final exam.

It's also the record that you have completed the labs, so don't lose it!
Lab Log-Book
Used for marking labs and for an evaluation aid

Important Information

Stop (medium size).png
You are Playing With Fire!
"A little bit of knowledge is a dangerous thing". You MUST carefully read and follow instructions in your SEC520 labs as well as heeding warning from your SEC520 instructor. Failing to use caution when learning in this environment can cause damage to computer systems and cause your computer account(s) to be taken away.

Students will be required to "sign waivers" to promise to follow these rules carefully, and only perform certain operations in the computer lab indicated at the college.


Important.png
Share / Collaborate Problems and Solutions with Others (non-evaluation issues only)
Use the "lounge" section is Moodle to post concerns or solutions with other classmates regarding labs. The ability to collaborate with colleagues to solve problems instead of always asking your boss (or professor) is a very useful skill-set!
Important.png
Place your Full Name and Contact Information on the hard disk tray cover and directly on the disk drive.
Use an adhesive label and permanent marker, or a white marker on the black cover.


Important.png
Always "double-check" that you have removabled your hard disk tray prior to exiting the lab room.
You may have your hard drive tray stolen which will result in lost work!
Important.png
Do not share your SEC520 disk drive with another course.
The work you do in this course will render your other work inaccessible and may erase it.
Important.png
Earlier labs become the foundation for later labs.
Seemingly "small errors", or "skipping instructions" in earlier labs can have negative consequences when performing other dependent labs. Make backups when requested at the end of labs for "restoration points" in case something goes wrong while performing a lab.
Important.png
Always shut down your system under software control, rather than using the reset or power buttons. You can shutdown using the GUI or with the poweroff, reboot, init, or shutdown commands. Shut down your virtual machines before shutting down your main system.

Course Faculty

During the Winter 2018 semester, SEC520 is taught by:

Anthony Austin anthony.austin@senecacollege.ca

x32267, Rm. D2096 (formerly TEL)

Wiki Participation

  • You can edit these pages! Please feel free to fix typos or add links to additional resources. Please use this capability responsibly.
  • Some simple math skills required for saving edits... >:)