Security of the Internet

Internet History

Overview of Internet Security

Basic Security Concepts

Why Care About Security?

Network Security Incidents

Sources of Incidents

Types of Incidents

Probe

Scan

Account Compromise

Root Compromise

Packet Sniffer

Denial of Service

Malicious Code

Internet Infrastructure Attacks

Incidents and Internet Growth

Incident Trends

Technical Knowledge

Exploit Vulnerabilities

Intruders' Use of Software Tools

Internet Vulnerabilities

Why the Internet Is Vulnerable

Types of Incidents

Protocol Designs

Weaknesses in How Protocols and Software Are Implemented

System and Network Configurations

Network Configurations

Weaknesses in System and Network Configurations

System and Network

Improving Security

Security Policy, Procedures, and Practices

Security Policy

Computer and information security

System administrators

Information security

Computer information

Security-Related Procedures

Security Practices

Security Technology

Technology Security

Operational Technology

One-Time Passwords.

Time Passwords

Firewalls

Monitoring Tools

Tools to scan

Network monitors

notifications

evidence

Attack strategy

Automatic notifications

Scan tools

Cryptography

Encryption

Electronic document

First encrypts

Transmit information

Protect information

For example

Translating information

Encoded

Attack

Plaintext

Confidentiality

Decryption

Digital signature

Decrypts the information

Corresponding decryption key

Attack scenarios

Cryptographic

Use of cryptography

Scripting Languages

Checksum

Administrative control

authenticity

Private key

comprehend

Information Warfare

Detection

War

Protection of your information

The Future

Future

Internetworking Protocols

Intrusion Detection

Detection tools

Software Engineering

Web-Related Programming

Autonomous Agents

List of Acronyms

Bibliography

genb-genp virus

Where do I get VCL and an assembler, & what's the password?

Send me a virus

What about firewalls?

Viruses on CD-ROM

Removing viruses

Do I have a virus, and how do I know?

How do I know I have a clean boot disk?

What other tools might I need?

Rescue disks

Are there CMOS viruses?

Good software

Write viruses

Virus problem

I have a virus

Virus

How do viruses spread?

CMOS settings

Antivirus software

What is Virus

Guidelines for Virus

Worm

Trojan Horse

Trojan

PC viruses

KERNEL

Stealth virus

Polymorphic virus

Sparse infector

Companion virus

Armored virus

CMOS

DBS

DETECTION

DOS

Virus detected

GERM

IDENTIFICATION

MBR

PARTITION TABLE

RAM

TOM

TSR

VX

Best way to remove a virus

Remove a virus

Scanner report

Detected virus

What is the best antivirus program?

Protect the hard disk

Hardware protection

from viruses

Access control systems

Introduction

Windows 2000 supports

Windows 2000 Performance Enhancements

Access control

Access Control

Access control lists

Account

Account Authentication

Account Policies

Accounts

Account Security Parameters

Active Directory's Role

Active Directory's Role

Administrative Accounts

Administrator Account

Administrator Account

Administrator Account Does Not Lock Out

Administrators

Administrators Group

Application-Level Gateway

Applications

ARP Address Resolution Protocol

ARP Cache

Arp Tool

ATM Address Resolution

Auditing

Audit Logging

Auditor Account

Audit Policy Dialog Box

Authentication

Authentication

Authentication

Backlog Parameter

Backups

Before Log On

Boot Process

C2

Choose Applications Carefully

Circuit-Level Gateway

Use Remote Access Administrator for Dial-Up Client Authentication

Comparisons

Complete Trust Model

Conclusions

Configuration Editor

Controlling Access

Controlling Access

Controlling Access to Removable Media

Controlling Access to the Computer

Controlling Access to the Power Switch

Default Auditor Account

Default Auditor Account

Denial Attacks

Denial-of-Service Attacks

Directories and Files

Displaying a Legal Notice Before Log On

Displaying Notice

DNS

DNS Resolver Cache Service

Domain Complexity

Domain Model

Dynamic Update DNS Client

Effectively Manage

Effectively Manage Passwords and Logons

Effectively Manage User and Group Accounts

Encrypting File System

Event Logs

Everyone Group

Fast rate of evolution

File Permissions

Files and Directories

Files Folders

Files Folders Permissions

File Shares

Finger

Firewall Policies

FTP

FTP Server

Group Accounts

Groups

Guest

Guest Account

Hacking

High Level Security

Huge and young OS

ICMP

ICMP1

ICMP Internet Control Message Protocol

Internet Control Message Protocol

ICMP Router Discovery

Identifier

IGMP

IIS and Firewall Architecture

IIS

IIS Inside the Firewall

Install Firewalls

Install Firewalls and Proxy Servers

Install Proxy Servers

Integration of Public Key Certificates

Inter-Domain Trust

IP Internet Protocol

IP

Internet Protocol

IP Address Detection

IP Address

Duplicate IP Address

Duplicate IP

IP ARP Extensions for IP Multicasting

IP ARP

IPConfig Tool

IP Level

IP Level security

IP Multicasting

IP multicasting

IP over ATM

IP Security

IP

IP Security IP

LAN Manager

Layer Security

Legal Notice

Level Gateway

Level security

Levels of Security

LM Authentication

Locking the Workstation

Locking Workstation

Logging Off

Logging Off or Locking the Workstation

Logging On

Login Process

Low awareness

Mailslots over UDP

Maintaining Route Tables

Manage Passwords and Logons

Man-in-the-Middle Attacks

Microsoft developers

Microsoft Network Monitor

Microsoft's Security Measures

Middle Attacks

Minimal Security

Minimal Software Security Considerations

Miscellaneous

Microsoft's Domain Model

Monitor Applications

Multicast Extensions

Multicast Extensions to Windows Sockets

Multiple Authentication Services

Multiple Domain Models

Multiple Domains

Multiple Master

Multiple Security Protocols

Name and Address Resolution

Names and Passwords

NBT Stat

NBTStat Tool

User Accounts

NDIS Interface

NDIS Interface

NetBIOS Name Registration and Resolution

NetBIOS Names

NetBIOS

NetBIOS over TCP-IP

NetBIOS over TCP Sessions

Netstat

NetWare

NetWare 4.x

Network Access

Network and Security

User Rights

Network Application Interfaces

Network Driver Interface

Networking

User Datagram Protocol (UDP)

Networking

Network Monitor

Networks and Security

Networks Security

NFS

NFS

NFS Server

Usage Log

NT

NT

Unix

NT 5.0

NT 5.0 Security

NT Allows Remote Administration

NT Remote Administration

NT Security

Password Issues

Password

User Datagram Protocol

Password Policies

Passwords

Passwords and Logons

TCP employs Path Maximum Transmission

PMTU

Permissions and Shares

Physically Secure

Physically Secure Your Network

Physically Secure Your Network

Using NT Security

Physical Security

Physical Security Considerations

Ping

Ping Tool

Plug and Play

Policies

Poor Audit-Logging Capabilities

Potential Vulnerabilities

Power Switch

PPTP

Prevent Unauthorized Access to the Network

Procedural

Protecting Directories

Protecting Files

UDP and Name Resolution

Protecting Files and Directories

User Names and Passwords

Protecting Files and Directories

Protecting Registry

User Rights

Protecting the Registry

Proxy Server Gateways

Proxy Servers

User Login Process

Proxy Servers

Push Bit Interpretation

Registry

Security Configuration Editor

Registry Editor

Security Parameters

Registry Protecting

Remote Access

User Accounts1

Remote Access Administrator

Remote Administration

Security Services

Security control

Removable Media

Restricting

Restricting the Boot Process

Rights

Unauthorized Access

Route Tables

Routing

Routing and Remote Access

Rsh

Rsh Server

Screening Router

Web Problem

Secure Network

Secure Sockets

TCP Selective Acknowledgment

Secure Sockets Layer Security

Secure Your Network

Security Capabilities

User Group Accounts

Security Configuration

Route Tool

The Usage Log

Security Considerations

Registry

Security Identifier

Security Problem Response Team

Security Problem

Windows NT Security

Trojan Horses

Security Services for Applications

Service Attacks

Services Available

Web Problem ?

Setting IP level security

Setting User

Transport Driver Interface

Setting User Names and Passwords

Single-Master Domain Model

Software Security

Specify Directory and File Permissions

Specifying Permissions

Specifying Permissions for Directories and Files

Note that SSPI

SSPI

Standard Security

Standard Software Security Considerations

Stateful Inspection Techniques

Third-Party Products

Support for IP Multicasting

TDI

Telnet

TFTP

The Administrator Account and Administrators Group

Windows Sockets

The Future of Windows NT Security

The generic guest account

The Guest

The Guest Account

Windows for Workgroups

The Web Problem ?

The Guest Account1

The Guest Account and Everyone Group

The Registry

User Login

The Security Identifier

The Web Problem

Tracert Tool

Transmission Control Protocol TCP

TCP

Transmission Control Protocol

Transmission Control Protocol (TCP)

Transport Driver Interface TDI

Windows NT Configuration

UDP

User Names

Default configuration

Default Guest Account

Hacking

Techniques to Exploit Vulnerabilities

Technical Vulnerabilities

index2