Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computer Security Update Bob Cowles, SLAC stanford.edu Presented to HEPiX at Fermilab 23 Oct 2002 Work supported by U. S. Department of Energy.

Published byLynette Robertson Modified over 9 years ago

Similar presentations

Presentation on theme: "Computer Security Update Bob Cowles, SLAC stanford.edu Presented to HEPiX at Fermilab 23 Oct 2002 Work supported by U. S. Department of Energy."— Presentation transcript:

1 Computer Security Update Bob Cowles, SLAC bob.cowles @ stanford.edu Presented to HEPiX at Fermilab 23 Oct 2002 Work supported by U. S. Department of Energy contract DE-AC03-76SF00515

2 23 October 2002HEPiX – Bob Cowles – SLAC2 Areas Solaris Cisco Linux IIS Internet Explorer Windows Misc Virus & Worm Conclusions News

3 23 October 2002HEPiX – Bob Cowles – SLAC3 Solaris /bin/login ssh & OpenSSH in.talkd cachefsd xdr_array bo (affects OpenAFS too) ttdbserver TTYPROMPT

4 23 October 2002HEPiX – Bob Cowles – SLAC4 Cisco ssh Aironet wireless APs (telnet) ntp daemon httpd default passwords

5 23 October 2002HEPiX – Bob Cowles – SLAC5 Linux ssh wu-ftp glibc OpenSSH glibc (reboot required) Bugzilla OpenSSL

6 23 October 2002HEPiX – Bob Cowles – SLAC6 Apache Transfer chunking mod_ssl off-by-one shared memory scoreboard - scripting

7 23 October 2002HEPiX – Bob Cowles – SLAC7 IIS Cookie handling error (cross domains).htr heap overflow Office Web components SmartHTML interpreter.htr transfer chunking

8 23 October 2002HEPiX – Bob Cowles – SLAC8 Internet Explorer file name spoofing VBScript read local files jpeg scripting Gopher protocol error SSL cert checking error (Outlook, too) Cached objects

9 23 October 2002HEPiX – Bob Cowles – SLAC9 Windows MS SQL Server & Media Player UPNP XMLHTTP JVM Debugger MS Office document grabbing Network Connection Manager Windows XP SP1

10 23 October 2002HEPiX – Bob Cowles – SLAC10 Misc OpenVMS DECwindows Motif Server Add’l files indexed by Google AOL AIM & Yahoo Messenger snmp PGP buffer overflow libbind resolver buffer overflow MIME send by reference (RFC 2046) TCP/IP ambiguity

11 23 October 2002HEPiX – Bob Cowles – SLAC11 Virus & Worm Magistr badtrans Goner Myparty: www.myparty.yahoo.comwww.myparty.yahoo.com Frethem (your password) Klez Bugbear

12 23 October 2002HEPiX – Bob Cowles – SLAC12 Conclusions (almost the same) Poor administration is still a major problem Firewalls cannot substitute for patches Multiple levels of virus/worm protection are necessary Clue is more important than source

13 23 October 2002HEPiX – Bob Cowles – SLAC13 News OpenSSH trojaned http://www.cert.org/advisories/CA-2002-24.html 20 things to make your system safe and secure (really!) http://www.sans.org/top20/ http://www.sans.org/top20/ New versions of PGP.. incl. version 8.0 beta for Windows http://www.pgp.com/beta80.php http://www.pgp.com/beta80.php SMTP trojaned http://www.cert.org/advisories/CA-2002-28.html http://www.cert.org/advisories/CA-2002-28.html Flash and Warhol worms http://www.icir.org/vern/papers/cdc-usenix-sec02/index.html Attack on root DNS servers http://www.washingtonpost.com/wp-dyn/articles/A828-2002Oct22.html http://www.washingtonpost.com/wp-dyn/articles/A828-2002Oct22.html

Download ppt "Computer Security Update Bob Cowles, SLAC stanford.edu Presented to HEPiX at Fermilab 23 Oct 2002 Work supported by U. S. Department of Energy."

Similar presentations

The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor.

The Approach to Security in CLRC Gareth Smith With acknowledgements to all the members of the CLRC Computer Network and Security Group, especially Trevor.
Network Security Attack Analysis. cs490ns - cotter2 Outline Types of Attacks Vulnerabilities Exploited Network Attack Phases Attack Detection Tools.

Network Security Attack Analysis. cs490ns - cotter2 Outline Types of Attacks Vulnerabilities Exploited Network Attack Phases Attack Detection Tools.
By Hiranmayi Pai Neeraj Jain

By Hiranmayi Pai Neeraj Jain
Microsoft Windows XP SP2 Urs P. Küderli Strategic Security Advisor Microsoft Schweiz GmbH.

Microsoft Windows XP SP2 Urs P. Küderli Strategic Security Advisor Microsoft Schweiz GmbH.
1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.

1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
Changes in Windows XP Service Pack 2

Changes in Windows XP Service Pack 2
Web Server Administration

Web Server Administration
Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.

Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
TCP/IP - Security Perspective Upper Layers CS-431 Dick Steflik.

TCP/IP - Security Perspective Upper Layers CS-431 Dick Steflik.
Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.

Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.
Computer Security Update Bob Cowles, SLAC stanford.edu Presented at HEPiX - TRIUMF 23 Oct 2003 Work supported by U. S. Department of Energy.

Computer Security Update Bob Cowles, SLAC stanford.edu Presented at HEPiX - TRIUMF 23 Oct 2003 Work supported by U. S. Department of Energy.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)

IST 228\Ch3\IP Addressing1 TCP/IP and DoD Model (TCP/IP Model)
2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada.

2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada.
Microsoft October 2004 Security Bulletins Briefing for Senior IT Managers updated October 20, 2004 Marcus H. Sachs, P.E. The SANS Institute October 12,

Microsoft October 2004 Security Bulletins Briefing for Senior IT Managers updated October 20, 2004 Marcus H. Sachs, P.E. The SANS Institute October 12,
RFC6520 defines SSL Heartbeats - What are they? 1. SSL Heartbeats are used to keep a connection alive without the need to constantly renegotiate the SSL.

RFC6520 defines SSL Heartbeats - What are they? 1. SSL Heartbeats are used to keep a connection alive without the need to constantly renegotiate the SSL.

Similar presentations

Ads by Google