Security lecture
Today, I taught that lecture on security for the Computer Infrastructures class (including demos of ARP Poisoning, Man-In-The-Middle Attacks, Network Sniffing, etc) and the handouts are available.
The outline of the lecture is
It is amusing to see how easy it is to every time capture passwords of students, while they know that I am trying to do that.
The outline of the lecture is
- Overview
- Network-level security: topology, VLAN, firewall, VPN, IDS, honeypots
- System-level security: OS Patching (MS-Blaster)
- Application-level security: buffer overflows and dumb coding (directory traversal vulnerability
- Message-level security: Network sniffing
- Physical security
- Incident response
It is amusing to see how easy it is to every time capture passwords of students, while they know that I am trying to do that.