Advanced Topics in Computer Security - Parkland    

Last Modified:
Tuesday, 28-Apr-2009 11:31:06 CDT

CSC251 Summer 2009 Schedule

First 8 Weeks at a Glance:

Week 1
June 30 		Week 2
June 30 		Week 3
July 7 		Week 4
July 14
Week 5
TBA 		Week 6
TBA 		Week 7
TBA 		Week 8
TBA

Second 8 Weeks at a Glance

Week 9
TBA 		Week 10
TBA 		Week 11
TBA 		Week 12
TBA
Week 13
TBA 		Week 14
TBA 		Week 15
TBA 		Week 16
TBA

Week 1: June 30

Reading and assignment:
For next Time:
  • Subscribe to a Security Newsletter
  • Surf the web for a security web site and post the url to our Angel bulletin board with a small blurb on what it is all about. 10 Points.
    Due by July 7 at Midnight.
  • Be prepared to discuss what you have read about computer security next class period for 10 points.
Exercise 1 RFC 2196 and 1281
Due By Midnight July 7
You may take this exercise as many times as you wish before that time.

Week 1 -4 Participation
Due by Midnight TBA 10 points

| Top | CSC251 Home | Overview |  

Week 2: June 30

Reading and assignment:
For next Time:
Presentation For Next week: Find your machine or someone elses and perform a security audit on it. You will bring two copys of your report to class next week, one to give me and one to have something to look at during your presentation. You need to be complete, tell what the machine had on it, what it is used for, what utilities you ran what you did to fix the problems etc.
Paper Report 25 points, Oral Report 25 points.
Due at the beginning of Class next week.

Be sure to run MBSA or some such equilavent tool that runs on your machine.

Exercise 2 Regan Book Ch 2
Due By Midnight July 14
You may take this exercise as many times as you wish before that time.

| Top | CSC251 Home | Overview |  

Week 3: July 7

Reading and assignment:
Quizzes, Homework and Exams:

  • Quiz Next Week at the beginning of class
    study Ch2, RFC 1291 and 2196, Data Ownership Classifications, and your class notes. This quiz will be closed book, written on paper. In the first 25 minutes of class.

| Top | CSC251 Home | Overview |  

Week 4: July 14

Reading and Assignment:

Quiz at the Beginning of class

User Management and Security Student presentations on securing a machine of your choice continued.

Quizzes, Homework and Exams:




Don't forget: Week1-4 Discussion
Due by: TBA at Midnight.

| Top | CSC251 Home | Overview |  

Week 5: TBA

Reading and Assignment:

Ch 4 User Management and Security

Vulnerability Scanning nmap
Quizzes, Homework and Exams:

nmap scanning:
Get with a partner and scan back and forth against each others machine. You will have to open your firewall for the other machine (do not turn off your firewall). Bring in a minimal report on your activities next week for each group. Be sure to have your web server etc. on so that the nmap scans will find something. 10 points for report and 10 points for classroom discussion next week.

Vulnerability Scanning:
Get with a Partner in Class, decide on a VULNERABILITY scanner to install on your lab machine. Install and configure it. Be sure that you have the current definitions for your scanner. Find a group's machine to scan and scan it. you will bring a report to class in 2 weeks detailing what you did. Each student will bring in a report on what you did and will be required to talk about what you did.
50 points.
Due: In at the beginning of class the week of TBA

Discussion Board Week 5-8:
Continue Discussion for another 10 points this four week block
Due by: TBA at Midnight.

| Top | CSC251 Home | Overview |  

Week 6: TBA


Reading and Assignment:

FTC Official ID Theft Victim's Web Site.
Nessus Scan Results
Nessus Scanning Your Network
nmap the Network port MAPping scanner (Review)
Securing Your Hosts

Reports and discussions from class members on nmap and security vulnerability scanning
Lab:

File Integrity Checking using md5sum
Quizzes, Homework and Exams:

Discussion Board Week 5-8
Continue Discussion for another 10 points
Due by: TBA


| Top | CSC251 Home | Overview |  

Week 7: TBA

Reading and Assignment:

Presentations on Vulnerability Scanning and Beginning of SPAM material.
More on reading headers, handling e-mail and SMTP

Re-allocated Networks www.illini-hockey.com in class demo
e-mail, sendmail and spam Lecture

Testing a Relay
The short story to Test a Relay
Quizzes, Homework and Exams:

You will forge an e-mail to your account on shaula. You will then show up next Tuesday and show me the e-mail that you forged and it's headers.

| Top | CSC251 Home | Overview |  

Week 8: TBA

Reading and Assignment:

Continued student presentations on Nessus

Continued spam material Look at the spam material on week 7.

Exam Next week: You will create a new mailbox according to my specifications, send a spam to your account and prove that you have filtered it to the mailbox of my choice. You will show me the headers.



Procmail at Wikipedia

SMTP at Wikipedia

Identd or AUTH at Wikipedia
AUTH Lab a little known service

The short story to Test a Relay

procmail at procmail.org
The Apache SpamAssassin Project


Spamassassin GTUBE. The string on this web page will guarantee that you are getting a spam if you place it in the body of an e-mail.
Quizzes, Homework and Exams:



Set up spamassassin and procmail and show up next week showing that it is working. 15 points.

Exercise on e-mail You may take this Exercise as many times as you wish before:
Midnight TBA .

| Top | CSC251 Home | Overview |  

Week 9: TBA

Reading and Assignment:

Exam


Quizzes, Homework and Exams:

The Midterm today is all we are doing..

Don't forget Week 5-8 discussion board which is due by TBA .

| Top | CSC251 Home | Overview |  

Week 10: TBA

Reading and Assignment:



DoS Attacks
Read Ch 12 Attacks and Intrusion Detections.

Denial of Service Attacks
Fluffy Bunny Cracks SourceForge and the Apache Project
Apache dot org Replies
Top 10 attacks

Quizzes, Homework and Exams:

Exercise DOS Attacks:
Exercise is on angel.parkland.edu and is available til midnight TBA

Week 9-12 discussion due by TBA .

| Top | CSC251 Home | Overview |  

Week 11: TBA


Trojan Horses and root kits


Sun Tzu and The Art of War.
Chapter 12 - Attacks and Intrusion Detection
We will be installing the BackOrifice root kit and checking it's operation in class.
Quizzes, Homework and Exams:


Discussion Board week 8-12.
Due by: TBA at midnight.

| Top | CSC251 Home | Overview |  

Week 12: TBA

Reading and Assignment:


Cryptography: The Basics

Read Ch 5. Encryption and authentication.
Introduction to Cryptography
Screen Shots for TLS

Labs:

F or next week::

Snort HowTo

Bleeding Edge Snort

For next Week: 50 point assignment - With a partner, install snort and configure it, including using it with the OpenSource Community Rules and Alerts in IDS mode. You and your partner will prepare a 1-2 page paper on it.

Exercise:Encryption and Authentication.
Due by: TBA

| Top | CSC251 Home | Overview |  

Week 13: TBA

Reading and Assignment:

Intrusion Detection tripwire

Quizzes, Homework and Exams:



Final Discussion board of the semester.



Continue with your intrusion detection and the conversation about it in the discussion board. You will turn in your report NEXT week and be prepared to discuss your IDS next week.

50 Point Homework Install and configure open source tripwire on your systems. You should show me the following: That you made installed (Version 2.4 or higher) and configured it to check the system daily in a cron job and make a change to the system files that it uses and show that the output finds a change in your system. . Bring your results in next week. You MUST prove that each team member participated in this assignment. This will also require a 1-2 page paper to be turned in for each team.


| Top | CSC251 Home | Overview |  

Week 14: TBA

Reading and Assignment:

Student discussion and presentations on snort IDS.

Password Cracking: John The Ripper, Lophtcrack etc.

Quizzes, Homework and Exams:


Another 10 point participation week for the Discussion Board.

25 Point Homework Go on the web and find a password cracking tool and install it and run it on your machine. Bring your results in for next week. Be prepared to show me a password that you cracked.

| Top | CSC251 Home | Overview |  

Week 15: TBA

Reading and Assignment:

Student Presentations on Tripwire

Bring in your password cracking stuff next week

arpwatch

Making your own certificate authority.
For next week:


Another 10 point participation week for the Discussion Board for Week 12-16
Due by Midnight May, 11 .

Make your own certificate and certificate authority . You will show me your secure page in class next week. 50 points.

| Top | CSC251 Home |  

Week 16: TBA

Reading and Assignment:

Bring in your password cracking stuff

Review For Final
Quizzes, Homework and Exams:


Don't forget the week 15/16 participation for the Discussion Board.

| Top | CSC251 Home |  

Finals Week Finals week is May 11-15

| Top | Valid HTML 4.01! Valid CSS!