SEC520

From CDOT Wiki
Revision as of 15:30, 1 January 2014 by Msaul (talk | contribs)
Jump to: navigation, search


Quick Links
Course Outline
Course Policies
Security Resources
Security Community
Instructor Resource
Assignments
Assignment 1
Assignment 2

Welcome to SEC520 - Internet Security

What This Course is About

This subject explores issues surrounding web site construction, operation, and maintenance from a security point of view. Students will learn how to:

  • List basic rules regarding Internet Security.
  • Identify attack types from both internal and external sources.
  • Conduct safe authorized Penetration Testing (creating and using Virtual Machines).
  • Build secure servers from Penetration Testing Results ("hardened" servers).


Major topics will include document encryption, server protection, and defense strategies.

Demonstration web servers for both Windows and Unix/Linux will be investigated during this one semester course.


Course Resources


Supplies Checklist (Required Prior to First Class)

1. Bootable Operating System Images


</ul>{|border="1" cellpadding="8" width="100%" |- !Storage Media !Download and Burning Options !colspan="3"|Other Options |- !Kali Linux CD
(Host / Penetration Testing)


Vulnerable Linux Installation CD
(Vulnerable Linux Virtual Machine )


Windows 2003 Server CD
(Vulnerable Windows Virtual Machine)



|
Blank-cd.png
Kali Linux CD:


Blank-cd.png
Fedora Core 5 DVD:


Blank-cd.png
Windows 2003 Server CD:
  • Download URL: https://inside.senecac.on.ca/clientservices
    (Select Software Access -> Software Downloads -> MSDN)

    • Download Instructions:
      1. Select Downloads, then select MSDN and log in with your user name and password.
      2. To download a key for the product , use that same URL as above, then select Licences, then enter username and password, and accept the license agreement.
      3.  </ul>
        
        </ul>


        |
        USB keys to Installation Media (Alternative to CD/DVD)
        |
        Freedom Toaster
        in TEL Open Lab

        (Convenient, but machine has problems with some types of DVDs, and BackTrack versions may not be as current as discussed in labs)

        |}

        2. Additional Hardware

        Item Item Details Graphic
        SATA Hard Disk in Removable Drive Tray Hard Disk Size: at least 160GB (250 - 500 GB preferred).
        Please buy the tray from ACS or the bookstore as not all trays are compatible.

        Mechanical shock from dropping a hard drive causes drive failure for several students each semester. If you use a mechanical hard drive, be careful not to drop it, and transport it in a padded container (e.g., a neoprene netbook sleeve, available from some dollar stores).

        Solid state disks (SSDs) are becoming competitive in price, are faster, and are less susceptible to shock, so you may want to look for a deal on an SSD instead of a hard drive -- but check to ensure that your SSD will fit properly into your drive tray.

        Please tighten the drive screws securely to prevent the tray from jamming in the holder, or leave the screws off.

        Hard Disk in Disk Tray
        At least 160 GB (available at the Bookstore)

        3. Study Aids

        Item Item Details Graphic
        Lab Log-Book Download and Print: SEC520 Lab log book [ PDF ] [ odt ].

        Please note that you can use your log book during quizzes, written tests, practical tests and the final exam.

        It's also the record that you have completed the labs, so don't lose it!
        Lab Log-Book
        Used for marking labs and for an evaluation aid

        Important Information

        Stop (medium size).png
        You are Playing With Fire!
        "A little bit of knowledge is a dangerous thing". You MUST carefully read and follow instructions in your SEC520 labs as well as heeding warning from your SEC520 instructor. Failing to use caution when learning in this environment can cause damage to computer systems and cause your computer account(s) to be taken away.

        Students will be required to "sign waivers" to promise to follow these rules carefully, and only perform certain operations in the computer lab indicated at the college.
        Important.png
        Place your Full Name and Contact Information on the hard disk tray cover and directly on the disk drive.
        Use an adhesive label and permanent marker, or a white marker on the black cover.
        Important.png
        Always "double-check" that you have removabled your hard disk tray prior to exiting the lab room.
        You may have your hard drive tray stolen which will result in lost work!
        Important.png
        Do not share your SEC520 disk drive with another course.
        The work you do in this course will render your other work inaccessible and may erase it.
        Important.png
        Earlier labs become the foundation for later labs.
        Seemingly "small errors", or "skipping instructions" in earlier labs can have negative consequences when performing other dependent labs. Make backups when requested at the end of labs for "restoration points" in case something goes wrong while performing a lab.
        Important.png
        Always shut down your system under software control, rather than using the reset or power buttons. You can shutdown using the GUI or with the poweroff, reboot, init, or shutdown commands. Shut down your virtual machines before shutting down your main system.

        Course Faculty

        During the Winter 2014 semester, SEC520 is taught by:


        Murray Saul
        Section A


        Wiki Participation

        • You can edit these pages! Please feel free to fix typos or add links to additional resources. Please use this capability responsibly.
        • Some simple math skills required for saving edits... >:)