If you're not prepared to be wrong, you'll never come up with anything original. – Sir Ken Robinson
For this project you will perform several hardening techniques to your VMs. Learning outcomes Planning and design. VMware guest modifications. Modifying application software. Security settings on multiple platforms. Ubuntu Using the Ubuntu Hardening documentation and the Network Details documentation, perform the following: First: Apply the recommended hardening items minus the SSH secure login. For the … Read More “CISS-125 Project 4 – Server Hardening” »
There are a variety of Ubuntu hardening techniques out there. These are just a few that should be of interest. Secure shared memory Shared memory can be used as an attack vector for running services. Edit the /etc/fstab file and add the following to the bottom: tmpfs /run/shm tmpfs defaults,noexec,nosuid 0 0 A reboot is … Read More “Ubuntu Hardening” »
For this project you will install certificates into web servers (Apache and IIS) and configure them to support HTTPS. Learning outcomes Planning and design. VMware guest modifications. Modifying application software. Secure Communications and Protocols. Installing key and certificates for HTTPS. Apache on Ubuntu If you have not already done so, install the Apache server on … Read More “CISS-125 Project 3 – HTTPS” »
#!/bin/bash -x set -e for C in `echo root-ca intermediate`; do mkdir $C cd $C mkdir certs crl newcerts private cd .. echo 1000 > $C/serial touch $C/index.txt $C/index.txt.attr echo ‘ [ ca ] default_ca = CA_default [ CA_default ] dir = ‘$C’ # Where everything is kept certs = $dir/certs # Where the issued … Read More “Cert script” »
In this project we will use some secure connections with a terminal protocol called SSH. We will also create some certificates that will be used in another project. Learning outcomes Planning and design. Enhancing existing virtualization and networking skills. VMware guest modifications. Installing application software. Public Key Infrastcture. Secure Communications and Protocols. Generate key and … Read More “CISS-125 Project 2 – SSH and Certificates” »
CISS-125 Project 1 (10 points) (Updated 1/24/2019) You have been given three (3) virtual machines (VMs) in a resource pool that bears your name. Within these VMs, you are to configure the networking and hostnames for each. Learning outcomes Planning and design. Enhancing existing virtualization and networking skills. VMware guest modifications. Installing updates and application … Read More “CISS-125 Project 1 – Planning!” »
(Updated July 26, 2024) “Um, I’ll tell you the problem with the scientific power that you’re using here: it didn’t require any discipline to attain it. You read what others had done, and you took the next step. You didn’t earn the knowledge for yourselves, so you don’t take any responsibility for it.” – Dr. … Read More “Before you paste that code you found during your online search…” »
CISS-150 Project 1 (10 points) (Updated August 29, 2021) Overview You have been given three (3) virtual machines (VMs) in a resource pool that bears your name. Within these VMs, you are to configure the networking for each. You will be given details and videos to watch to understand what needs to be done. Learning … Read More “CISS-150 Project 1 – Planning!” »
public class CharEx { public static void main(String[] args) { char c; c = ‘a’; System.out.println(c); if ( c >= ‘0’ && c = ‘A’ && c = ‘a’ && c
[Updated 3/15/2019] Table of Contents Basic Knowledge Certificate Selection Tomcat Apache Nginx IIS 8.5 Windows 2012 IIS 10 Winows 2016 References Basic Knowledge These configurations assume that you know that RC4 is bad, weak DH leads to LogJam and 3DES & weak ciphers have no place here. We avoid DROWN, ROBOT, MITM and others. We … Read More “Security Settings for Apache, Tomcat, NGINX and IIS.” »