ipl-logo

Nt1330 Unit 3 Assignment 1 Case Study

959 Words4 Pages

There are five actions taken to improve the security of a vulnerable server, enumerated as follows.
1 Fix Root Password
The original password for root is “default”, which is unsecure. Attackers could easily crack the password with the brute-force mode. I gained the password in several minutes with the tool Metasploit. To fix the problem, the password was reset to a stronger one “Afcb136!” with 8-character length and four types of characters. Then, I retried the brute-force attacks and it failed to get the password as the result. The new password with higher complexity improves the system security compared to the old one.
There are three actions in the terminal: sudo passwd, type and confirm the new password “Afcb136!”. Consequently, the terminal …show more content…

Firstly, a password will be expired in 90 days. I changed the line PASS_MAX_DAYS from 99999 to 90 in the /ect/login.defs file, which set the expiration from never to 90 days. The following changes took place in the /ect/pam.d/common password file. Secondly, users are only allowed to input password for three times. The account will be blocked once the password fails in three times. Thirdly, the length of the password is required to be larger than or equal to 8 characters. Additionally, passwords need to involve at least one digit, one uppercase letter and one lower case letter. Finally the password is rejected if the password is the username in the straight or reverse form. To implement the above password policies, I installed the power module libpam-cracklib by the command “apt-get update” and “apt-get install libpam-cracklib”. Then I separately added the parameter “retry=3” (for the times of retrying password), “minlen=8” (for the length of password), “dcredit=-1” (at least one digits), “ucredit=-1” (at least one upper case letter), “lcredit=-1” (at least one lower case letter) and “reject_username” (for rejection of setting the username as password) in the command password file.
To evaluate the password policy, I reset the password according to the password policies and tried to have the access to the password in another machine the tool …show more content…

The biggest problem of the telnet service is that all the text which users try to send across the network is unchanged. Especially, the username and password are sent in plain text. As a result, the attackers could easily capture the data and gain the password if they are in the same network with telnet connection. Compared to telnet, SSH is more secure due to the encrypted connection. Therefore, I blocked the port 23 (telnet service).
To close the unsecure port 23, I set up a firewall with some rules. Firstly, I created a new file called “firewall.sh” by the command “touch firewall.sh”. Then, I added the rule “iptables -A INPUT -i eth0 -p tcp --dport 23 -j ACCEPT”. Finally, I ran the file to block the telnet service. Although other ports are more secure, they will be closed in the same way if they are not in use.
5 Set SSH Public Key

Show More
Related
971 Words | 4 Pages

I am going to explain the current methods and protocols we use in a LAN environment to provide a high level of redundancy, such as EtherChannel, FHRP (First Hop Redundancy Protocols) and STP (Spanning Tree protocols). I will briefly explain how the protocols work & then discusses the latest implementations of the protocol and the environment you would expect to see them working in. The STP is a protocol that prevents loops from occurring in a switched LAN environments when a device has multiple interconnected paths. The protocols works by sending BDPU messages across in the interconnected devices, detects the loop then removes it from the topology by shutting down the port.

Read More
571 Words | 3 Pages

Changing finger information . Password: Name [user wks]: Office []: Programming Lab 2 Office Phone []: 2301 Home Phone []: 5947280 Finger information changed. c. View information finger $ Finger $ Finger 5: Using the manual

Read More
1610 Words | 7 Pages

Locks: There is a need for locks on both the building and Central wiring closet. These locks will limit access to the physical network. They will also provide a barrier to stop someone from walking up and just plugging in something into the network. Everyone always focuses on the logical setup of the network and forgets that physical access is just as important. The same locks should be used for the alternate site where the backups are.

Read More
1070 Words | 5 Pages

So in our Hybrid model - Strong, efficient and reliable personal messaging peer to peer architecture based on Hybrid RSA for an active networked environment, to tackle the Chosen cipher text attack when messaging is going on, Public Key Cryptography Standards (PKCS) version 5 is used. The basic RSA with Rabin-Miller strong Primality test with Efficient RSA with Euler Phi function variants integration and pohligHellmanEncipher with salt and padding integration makes it stronger and more reliable from the attacks like factorization of the RSA modulus n, message iteration attack, broadcast decryption by small exponent attack, broadcast decryption by common modulus attack, fault injection attack, the small difference between p and q attack and the finding eth root attack, Mathematical attacks and Timing attacks. Brute force attach is tackle by randomly changing the keys in synchronous time gap with 1024-bit value [13]. Also if somebody monitors pattern of the key so here as second layer and third layer reliable authentication between two parties key exchanging are there from the beginning. As in the instant messaging we generally cannot message for so long, so within these short time it’s quite impossible to do any brute force in our architecture with

Read More
964 Words | 4 Pages

I have been asked to use Ubuntu? One comparison between windows and linux is that Linux is a lot freer than windows because windows are restricted. Another comparison is windows are a lot safer because if something breaks you get paid support whereas on Linux you do not have any support. My experience with Linux is not much as I am entirely a windows user.

Read More
1267 Words | 6 Pages

You could login using the command-line or a GUI interface depending on the system configuration. Example of a GUI login interface on a CentOS machine User enters "username" on this screen and hits enter. User enters the password on this scree and hits "Sign In" Example of a command line login interface (Unix System with no GUI interface) login as: mususer1 password: Note

Read More
938 Words | 4 Pages

User authentication in Ubuntu 15.04 systems in an AD environment All HACKD, LLC systems are supposed to be connected to the Microsoft Active Directory domain. However, after implementing Ubuntu 15.04 in the systems that were running on Windows XP, there is a need to ensure interoperability by allowing Ubuntu users to join the AD domain using their credentials. In such instances, the Samba software suite is used to provide AD connectivity and provide stable, secure and fast file sharing and print services to all clients using the SMB/CIFS protocol. In this case, Samba is a critical component for integrating Linux clients in a Windows environment (Samba.org, 2015).

Read More
657 Words | 3 Pages

After compiling all of the ingredients into a numbered list, I find out that every product “purchased” at Harris Teeter would account for $116.19 over the budget. The few adjustments I made to my shopping list beforehand did not help reduce the total to a reasonable price either. While I was going through all of the products at home, I crossed out a few unnecessary items that were optional or switched to products with a lower price just to see if I could be within the budget. Eventually, after I was done “shopping” and tallying up all of the prices, the cost still exceeded the price that I calculated in my head. As I went down the aisles searching for foods on my grocery list, I kept a close eye out for products that had nutritious labels such as organic, fresh, or low in sodium so that the college student I chose could receive the right amount of nutrients needed for a healthy lifestyle.

Read More
583 Words | 3 Pages

IGN(InGame Name)- Dxnyy Date of Application- 24/6/15 Age(Age doesn't really matter, we're looking for mature staff that won't mess around, if you don't fit this then you will not be accepted)- 12 Country- England, UK.

Read More
920 Words | 4 Pages

At the time of your first login, the “Change Password” screen will appear. 4. Enter your old password, then enter your new password twice, then select the “change password” button. 5. Once you’ve changed your password, select the “Remember me” checkbox to save your login credentials.

Read More
1119 Words | 5 Pages

As you type your passwords it hides each character. After entering your information

Read More
559 Words | 3 Pages

In this leaflets I will be talking about how the network can be attacked, One way the network can be attacked is DOS and what this stands for is Denial of service, this attacks the network by overflowing the network with useless traffic, the result of this overflowing cause the network to slow down significantly, and even can crash the network if it overflows too much. The damage that is can do to a business is huge they can lose a lot of money to fix the issue. The weird thing is that the hacker does not even benefit from this attack. The second way the network can be attacked is backdoor this attack is basically when you can access a computer program that side-steps security, the hackers use backdoors that they made or backdoors they found,

Read More
1124 Words | 5 Pages

You will be transferred to the secure sign in form. Step 2 – Enter your user ID and password into the form on the left. Press the ‘Login’ button. Forgot Password – On the login page, click the ‘Forgot User ID or Password’ link. You will be transferred to the password reset page.

Read More
815 Words | 4 Pages

A good password should be at least eight characters long, and use a combination of uppercase and lowercase letters, numbers and symbols. Avoid using full words, names, addresses, phone numbers or any other easily identifiable personal information. Be sure to avoid using the same password across multiple websites as well. Also, never save passwords on your device.

Read More
946 Words | 4 Pages

Following should be kept in mind while selecting passwords:- i. Good password be selected. ii. Don’t reuse

Read More

More about Nt1330 Unit 3 Assignment 1 Case Study

Related Topics

Open Document