Changes

← Older edit

SEC830

428 bytes added, 23:42, 22 January 2009

no edit summary

~~<span style="background: #ffff00">'''Note!''' This information is under revision.</span>~~

= SEC830 - Security Issues =

SYA810 is taught by [[User:Selmys|John Selmys]] (Winter 2009)

== ~~Weekly Outline~~ External Links == See the [http://cs.senecac.on.ca/~selmys/subjects/sec830-091/sec830-plan-091.html Winter 2009 SEC830 Weekly Schedule] for specific dates and topics. For up to date notes, see [http://cs.senecac.on.ca/~selmys/subjects/sec830-091/index.html John's winter 2009 SEC830 page on CS] This is the [http://cs.senecac.on.ca/~selmys/subjects/sec830-071/index.html old SEC830], from Jan 2007. NOTE: It will be updated this semester.

~~See the [~~Here's a good article about [http://csblogs.~~senecac~~gurulabs.~~on.ca~~com/aaron/~~~selmys~~2008/~~subjects~~10/~~sec830~~shadowed-~~091/index~~passwords.html ~~Winter 2009 SEC830 Weekly Schedule~~passwords and encryption]~~] for specific dates and topics~~on Linux.

~~Nes: This is~~ == Lab Notes == Here's the ~~[[http://cs~~place to put notes dealing with our labs.~~senecac.on~~For example, problems we ran into and their solutions; things we discovered; weird results, etc.~~ca/~selmys/subjects/sec830-071/index~~etc.~~html old SEC830]]~~(But please, ~~note that it would be changed during~~ NOT the ~~semester. Just for people wants~~ answers to ~~learn in advanced~~the questions before the due dates.) [[ 2009_SEC830_LAB01 | Lab #1 ]] [[ 2009_SEC830_LAB02 | Lab #2 ]] [[ 2009_SEC830_LAB03 | Lab #3 ]] [[ 2009_SEC830_LAB04 | Lab #4 ]] [[ 2009_SEC830_LAB05 | Lab #5 ]]

== Subject Description ==

Upon successful completion of this subject students should be able to:

* install and use encryption software * maintain user accounts and passwords * implement and use public key infrastructures * identify and disable unused system services * audit the security of a Linux system * enable and use wrappers and proxies * maintain file permissions and access control lists * implement and maintain manditory access controls * setup, maintain and monitor system logs * configure a Linux firewall * setup intrusion prevention and detection systems * monitor and restrict logins * install, configure and administrate authentication schemes

=== Topic Outline ===

* System Security - 15%

** backups

** monitoring accounts

** system logs

* Network Security - 20%

** trusted hosts

** TCP wrppers

** securing network services

** firewalls

** network file systems (NFS CIFS)

** wireless security

* The Secure Shell (SSH) - 10%

** ~~Installation~~ installation, configuration and ~~Configuration~~use

* Pluggable Authentication Modules (PAM) - 10%

** ~~Installation~~installation, ~~Configuration~~configuration, ~~Administration~~administration

* Security Tools - 15%

** ~~Tripwire~~tripwire, ~~Crack~~crack, ~~Satan~~satan, ~~Saint~~saint** ~~Root kits~~** Tigertiger, COPS** ~~Sniffers~~ sniffers (tcpdump, sniffit, kismet)** ~~Port~~ port Scanning using nmap

* ~~Intrusion Prevention~~ Mandatory Access Controls - 10%** AppArmor

** SELinux

=== Prescribed Text ===

* ~~Hack Notes~~None: ~~Linux and Unix Security Portable Reference by Nitesh Dhanjani; ISBN 0-07-222786-9 published by McGraw-Hill/Osborne~~Web links to relevant information will be given during the semester.

=== Reference Material ===

=== Modes of Evaluation ===

* 02% Quiz #1* 03% Quiz #2* 3010% ~~Assignments/~~Labs* 4010% Assignment #1* 15% Assignment #2* 30% Final Exam

* 30% Midterm Test

Selmys

63

edits

Changes

SEC830

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

get involved with CDOT

courses

course projects

links

Tools