Presentation is loading. Please wait.

Presentation is loading. Please wait.

UNIX OS Security. “The original UNIX OS was not designed with the levels of security that most corporate and educational users now demand.” -Administering.

Published byAnnice Hines Modified over 8 years ago

Similar presentations

Presentation on theme: "UNIX OS Security. “The original UNIX OS was not designed with the levels of security that most corporate and educational users now demand.” -Administering."— Presentation transcript:

1 UNIX OS Security

2 “The original UNIX OS was not designed with the levels of security that most corporate and educational users now demand.” -Administering Security on the Solaris Operating System

3 Securing the OS User and password security Root access Network services Remote access

4 Insecure Passwords mookie1 fireman1 1monopol CATFISH hello7 bella19 happy katie1 shanthi! phd123 puppy1 1mother ri8412 NO PASSWORD moose1 mcrs1

5 “SEVERAL SPECIES OF SMALL FURRY ANIMALS GATHERED TOGETHER IN A CAVE AND GROOVING WITH A PICT” - Pink Floyd Password : S$o$fagTi@cagW@P A Secure Password Password : Hp$0N21f32[ or

6 Root Access “I need root access to run my program. Can you give me the root password?”

7 NO!

8 Controlling Root Access Role-Based Access Control (RBAC) Access Control Lists (ACL) PowerBroker Sudo

9 Network Services LDAP NIS/NIS+ DHCP WEB DNS CDE Sendmail SSH/Telnet FTP Printing NTP

10 Remote Services SSH (v2)-Secure SFTP/SCP-Secure Telnet-Insecure FTP-Insecure rlogin-Insecure

11 How do I know if I am secure? -Security Audits -User Audits -File System Audits

12 Intrusion Detection Systems -Network Based IDS -Host Based IDS

13 Host Based IDS Tripwire Aide

14 Detecting Network Scans SNORT Courtney

Download ppt "UNIX OS Security. “The original UNIX OS was not designed with the levels of security that most corporate and educational users now demand.” -Administering."

Similar presentations

CN 8822. Objectives of the course To build and maintain a UNIX-based Network Systems & Servers Install Linux, fine tune the system, enable required server,

CN Objectives of the course To build and maintain a UNIX-based Network Systems & Servers Install Linux, fine tune the system, enable required server,
Windows 2003 Server. Windows 2003 Server Contents Fitur Windows 2003 Server Installation And Configuration Windows Management Resource  User Management.

Windows 2003 Server. Windows 2003 Server Contents Fitur Windows 2003 Server Installation And Configuration Windows Management Resource  User Management.
Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.

Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.
 Single sign-on o Centralized and federated passport o Federated Liberty Alliance and Shibboleth  Authorization o Who can access which resource o ACM.

 Single sign-on o Centralized and federated passport o Federated Liberty Alliance and Shibboleth  Authorization o Who can access which resource o ACM.
NETWORK SECURITY INTRUSION DETECTION SYSTEMS (IDS) KANDIAH.M Clarkson University, Potsdam, New York.

NETWORK SECURITY INTRUSION DETECTION SYSTEMS (IDS) KANDIAH.M Clarkson University, Potsdam, New York.
Linux+ Guide to Linux Certification, Second Edition Chapter 15 Configuring Network Services and Security.

Linux+ Guide to Linux Certification, Second Edition Chapter 15 Configuring Network Services and Security.
Exam ● On May 15, at 10:30am in this room ● Two hour exam ● Open Notes ● Will mostly cover material since Exam 2 ● No, You may not take it early.

Exam ● On May 15, at 10:30am in this room ● Two hour exam ● Open Notes ● Will mostly cover material since Exam 2 ● No, You may not take it early.
ServiceTrak Meets NLOG/NMAP Jon Finke Rensselaer Polytechnic Institute.

ServiceTrak Meets NLOG/NMAP Jon Finke Rensselaer Polytechnic Institute.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Host-Based Intrusion Detection software TRIPWIRE & MD5.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Host-Based Intrusion Detection software TRIPWIRE & MD5.
Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.

Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.
Potions of Protection Server Security. What does that do again? Familiarity Differing levels of protection –Low, does not exist –Medium, No private data.

Potions of Protection Server Security. What does that do again? Familiarity Differing levels of protection –Low, does not exist –Medium, No private data.
Physical and Hardware Security Chapter 15 Networking Essentials Spring, 2013.

Physical and Hardware Security Chapter 15 Networking Essentials Spring, 2013.
Presentation _ID © 1999, Cisco Systems, Inc. Cisco Security Consulting Assessing your Network for Vulnerabilities Danny Rodriguez Network Security Engineer.

Presentation _ID © 1999, Cisco Systems, Inc. Cisco Security Consulting Assessing your Network for Vulnerabilities Danny Rodriguez Network Security Engineer.
Using Freeware Tools for Internet Security Copyright, Peter Shipley Peter shipley Network security associates

Using Freeware Tools for Internet Security Copyright, Peter Shipley Peter shipley Network security associates
Authentication and authorization Access control consists of two steps, authentication and authorization. Subject Do operation Reference monitor Object.

Authentication and authorization Access control consists of two steps, authentication and authorization. Subject Do operation Reference monitor Object.
Voyager Server Security and Monitoring Best practices and tools.

Voyager Server Security and Monitoring Best practices and tools.
Automating Endpoint Security Policy Enforcement Computing and Networking Services University of Toronto.

Automating Endpoint Security Policy Enforcement Computing and Networking Services University of Toronto.
Site Security and Administration Steve Cobrin.

Site Security and Administration Steve Cobrin.
1 Host – Based Intrusion Detection “Working of Tripwire”

1 Host – Based Intrusion Detection “Working of Tripwire”
Cloud Computing How secure is it? Author: Marziyeh Arabnejad Revised/Edited: James Childress April 2014 Tandy School of Computer Science.

Cloud Computing How secure is it? Author: Marziyeh Arabnejad Revised/Edited: James Childress April 2014 Tandy School of Computer Science.

Similar presentations

Ads by Google