...IT250 – Linux 1 Assignment 6.1 10/2012 EXERCISES, Page 582 1. Which commands can you use from the command line to send a file to the default printer? lpr/lp – sends job(s) to the printer lpr – prints a file 3. Which commands list your outstanding print jobs? lpq/lpstat – Displays the status of the print queue 5. Name three printing protocols that CUPS supports. Which is the CUPS native protocol? System-config-printer lpinfo Displays available drivers lpadmin configures printers The cups native protocol is IPP EXERCISES, Page 669 1. What advantage does a switch have over a hub? Switches are faster and switches have a repeater which boosts your speed 3. Name two servers that allow you to share directories between systems. NFS Samba 5. What is a common function of a router? What is this function called? A router connects a LAN to another network, such as the internet. A router can perform several functions, the most common of which is allowing several systems to share a single Internet connection and IP address is NAT. When a router uses NAT, the packets from each system on the LAN appear to come from a single IP address; the router passes return packets to the correct system. A router can also act as a firewall. 7. Which tool can you use to configure a wireless NIC (rather than having it be configured automatically)? The network manager applet CLI: nm-connection-editor ADVANCED EXERCISES, Page 669 9. If you...
Words: 276 - Pages: 2
...Research Assignment Linux Security Technologies Kristy Graves ITT Tech – Dayton Linux II IT302 Mandatory Access Control Mandatory Access Control (MAC) is a system wide policy that relies on the current system to control access (Syracuse University, 2009). Users cannot alter or make any changes to this policy. Only the administrator has the clearance and authorization to make changes (The Computer Language Company Inc., 2012). Mandatory access control mechanisms are more than Discretionary Access Control (DAC) but have trade offs in performance and convenience to all users (The Open Web Application Security Project, 2002). Users can access lower level documentation, but they cannot access higher level without the process of declassification. Access is authorized or restricted based on the security characteristics of the HTTP client. This can be due to SSL bit length, version information, originating IP address or domain, etc. Systems supporting flexible security models can be SELinux, Trusted Solaris, TrustedBSD, etc. DAC checks the validity of the credentials given by the user. MAC validate aspects which are out of the hands of the user (Coar, 2000). If there is no DAC list on an object, full access is granted to any user (Microsoft, 2012). SELinux SELinux has three states of operation. These states are enforcing, permissive, and disabled. SELinux was developed by the U.S. National Security Agency (NSA) and implements MAC in a Linux kernel (Sobell, 2011). Enforcing...
Words: 875 - Pages: 4
...Unit 1 Assignment Chapter 1 ex 1. What is free software? List three characteristics of free software. Free software is software that is available for anyone to use and modify however they like. 3 characteristics of free software are that, you are free to study, redistribute, and modify it free of cost. Chapter 2 ex 1. Briefly, what does the process of installing an operating system such as Fedora/RHEL involve? Installing the Fedora/RHEL OS is copying the OS files from a CD, DVD, or Flash drive on to the hard drives of the system then setting up the config files so the Linux runs properly on the hardware. Chapter 3 ex 1. What is a live system? What advantages does it have over an installed system? A live session is a Linux session that is running on your computer without you actually installing Linux on your computer. The advantages you have by running a live session is you can preview the system without installing it and your computer will not be changed. 4. Where on the disk should you put your /boot partition or the root (/) partition if you do not use a /boot partition? Default layout 8. When does a Fedora/RHEL system start X by default? To start X by default you need to set run level 5 to be the default and it will start when the system boots. Chapter 11 ex 1. How does single-user mode differ from multiuser mode In single user mode, only the console user may be logged in, though the user can edit files and execute multiple programs simultaneousl 3. What do...
Words: 426 - Pages: 2
...Assignment 2.1 August 4, 2013 1. The two predominant Linux desktops currently in use are GNOME and KDE. GNOME is a desktop environment and graphical user interface (GUI) that runs on top of a computer operating system. It is composed entirely of free and open source software and is developed by both volunteers and paid contributors, the largest corporate contributor being Red Hat. KDE is an international free software community producing an integrated set of cross-platform applications designed to run on Linux, FreeBSD, Solaris, Microsoft Windows, and OS X systems. It is known for its Plasma Desktop, a desktop environment provided as the default working environment on many Linux distributions, such as Kubuntu, Pardus, and openSUSE. 2. Panel – these are the bars at the top and bottom of the screen. They hold objects or icons which are shortcuts or applets. Menu bar – the menu bar appears at the top of the File Browser window and displays a drop down menu when you click one of its selections. The Nautilus File Browser menu bar controls which information is displayed and how it is displayed. Applet – this is a small program that displays its user interface on or adjacent to the panel. (EXAMPLES: clock or workspace switcher) Notification area – an applet that displays icons of applications that are running and open. (For example, if you’re playing the CD player, this would show in the notification area) Shading – this appears to be a graphical enhancement...
Words: 567 - Pages: 3
...Linux Security Technology Security of a system is important in our today’s use of the internet. That is why Linux with its many layers that are always evolving in security to protect against all kinds of hackers or othe types of attacks . SELinux, Chroot Jail, IPTables, Mandatory Access Control and Discrestionary Access Control, just to name a few. SELinux is an access control implementation for the Linux kernel. Take for instants that you are the administrator and you define rules in user space and if the Linux kernel has been added with SELinux support, then those rules will be followed by the kernel. SELinux is a NSA Security-Enhanced Linux, in which the mandatory access control is flexible. The structure of SELinux supports against all kinds of mandatory access control policies. Some of which are Role-Based Access Control and Multi-Level Security. It was designed by NSA for the purpose of protecting a server against malicious daemons, by telling the daemons what they can and can’t do. This type of technology was created by Secure Computing Corporation, but was supported by the U.S. National Security Agency. In 1992, the thought for a more intense security system was needed and a project called Distributed Trusted Match was created. Some good solutions evolved from this, some of which were a part of the Fluke operating system. Which then became the Flux and finally led to the creation of the Flask architecture. Eventually it was combined with the Linux kernel, which...
Words: 873 - Pages: 4
...1. What is the meaning of the acronym LAMP, and how is it used for creating dynamic websites? A: Lamp stands for “Linux, Apache, MySQL and PHP.” Together these software technologies can be used to form a fully-functional web server. Linux is the most popular operating system used in web servers. The most important of these four technologies is Apache, Apache is the software that serves webpages over the Internet via the HTTP protocol. Once Apache is installed, a standard Linux machine is transformed into a web server that can host live websites. Other components of LAMP include MySQL and PHP. MySQL is a popular open source database management system (DBMS) and PHP is a popular web scripting language. Together, these two products are used to create dynamic websites. Instead of only serving static HTML pages, a LAMP server can generate dynamic webpages that run PHP code and load data from a MySQL database. 2. For Internet websites which are located throughout the entire world, what is the estimated market share for dynamic websites which use LAMP as opposed to Microsoft IIS and the Microsoft Active Server Page scripting language? A: As of today, LAMP (Apache) = 56.4% and Microsoft IIS = 12.9% and I cannot find the percentages for the Microsoft Active Server Page. 3. What is PHP? A: PHP is a widely-used open source general-purpose scripting language that is especially suited for web development and can be embedded into HTML. 4. What is the JAVA Server Page...
Words: 353 - Pages: 2
...lab it is recommended that you review the Demo Lab presentations in the Unit 5 and Unit 6 Learning Space. Click the PRACTICE link > DEMO LAB > then click the hyperlink to launch the demonstration. Part #1 Apply Hardened Security for Linux Services & Applications Learning Objectives and Outcomes Upon completing this lab, students will learn about the following tasks: * Harden Linux server services when enabling and installing them, and keep a security perspective during configuration * Create an Apache Web Server installation and perform basic security configurations to assure that the system has been hardened before hosting a web site * Configure and perform basic security for a MySQL database, understanding the ramifications of a default installation and recommending hardening steps for the database instance * Install, setup and perform basic security configuration for Sendmail to be able to leverage the built-in messaging capabilities of the Linux System * Enable and implement secure SSH for encrypted remote access over the network or across the Internet of a Linux server system Overview This lab is an extension of the previous hands-on labs, and it incorporates security hardening for Linux services and applications loaded in the physical server. This demonstration will configure security and hardened services and applications to ensure C-I-A of these services. It will take the steps to configure and secure an Apache web server and...
Words: 2020 - Pages: 9
...1. JetDirect, LPD/LPR, IPP, and SMB. 2. It is The Internet Printing Protocol (IPP). 3. lpadmin, a CUPS web interface, and system – config – printer. 4. It is a Uniform Resource Identifier. It is a string/ name, or a symbol to identify a resource (ex: http://hangtime.blogs.nba.com/2012/07/18/blazers-smith-released-from-hospital/#) 5. Model Wizbang 9000 – lpadmin -p Wizbang 9000 -E -v socket://172.20.20.76 -m Wizbang 9000 ps.ppd.gz PPD file Wizbang_9000_ps.ppd.gz (already in the foomatic database) - lpadmin -p "Wizbang 9000" -E -v socket://(add IP address here) -m Wizbang_9000_ps.ppd.gz (basically, the same answer as the previous answer before this one). Connected to a JetDirect print server with an IP of 172.20.20.76 – press CTRL + V and it enters it to the copied IP, after you’ve copied the IP address….and then press the “enter” key. Accessible to all users – lpoptions -p printer -o option1=value –o, for a second option, enter the value of the file name. 6. A timing attack; a side channel attack, which the attacker tries to concede a cryptosystem, in which, you estimate the time taken to execute cryptographic secrets/conclusions or formulas. 7. rsh and rexec. (they send passwords in visible text). 8. (/home/axl/.ssh/id_rsa): 9. /etc/ssh/sshd_config, or /usr/local/etc/ssh/sshd_config, and /etc/sshd_config. 10. Modify the etc/host.deny, then enter sshd: “all.” You can then modify /etc/host.allow, then add the commands: sshd: Archie, sshd: Jughead, and sshd: Veronica...
Words: 283 - Pages: 2
...Unit 10 Assignment 1 John Smith 1 – None, FTP only makes necessary changes for compatibility. 2 - This file will be corrupted, resulting in a program that will not executable. 3 – When you would download a public file. 4 – You would enter the following command on the command line n /etc/vsftpd/vsftpd.conf: local_enable=NO 5 – SFTP is secure whereas FTP is not. 6 – The cd command changes the remote working directory; and the lcd command changes the local working directory. 7 – The server has blocked that port. An administrator may have disabled that port. 8 – Running vsftpd in the chroot makes it a lot more unlikely that a malicious user can exploit the system. VSFTPD does not run as root by itself, if ran in just root a user may stil be able to exploit the system where as using chroot is harder for a malicious user to exploit the system. 9 – You could use Free MD5 Checksum or Hashing Software 10 - To configure vsftpd to run through xinetd, set listen=NO in /etc/vsftpd/vsftpd.conf, and create a xinetd configuration file for vsftpd in /etc/xinetd.d. Chapter 26 Exercises 1 -10 1 - DocumentRoot "/usr/local/www" and <Directory "/usr/local/www"> 2 – Change the setting in httpd.conf, Listen 80 to Listen 81 3 - Just add an Alias and Directory directive to Sam’s site Alias /sam 4 - Apache listens on port 80 by default; port 80 is a privileged port. Only root can use privileged ports, so you must start Apache as root. 5 - Sset the interface that apache listens...
Words: 432 - Pages: 2
...IT302 Linux System Administration Research Assignment 1 SELinux or Security Enhanced Linux uses an architecture that separates enforcement from access policy decisions. With this architecture different types of policies can be implemented, including Role-Based Access Control (RBAC), Type Enforcement (TE), and Multi-Level Security (MLS). The module assigns security labels to each subject or object. It uses a security class to determine the kinds of relationship a pair of labels might have. The triplet consisting of a pair of labels and a class are then sent to a policy server to determine if access is allowed. The security labels are assigned dynamic integer security ID's (SID's); the reply from the policy server is cached in an 'access vector cache' for performance reasons. SELinux was developed in coordination with the open source community and the National Security Agency (NSA) to provide the highest level of security for the Linux operating system. Linux V-Server – The three basic elements of the VServer are: * The security context. A process in one security context cannot see processes in other security contexts, neither with the 'ps' command, nor with 'cat /proc' nor in any other way. As side-effect, this means that a process in one context cannot kill processes in other contexts. * Capabilities. The existing Linux kernel provides a wide variety of capabilities which can be taken away from processes. These include the ability to change network addresses...
Words: 423 - Pages: 2
...Francisco Ramirez Unit 5 assignment 1 Ch. 18 1. Sftp-secure file transfer protocol is a network protocol that provides file access, transfer, and management over a trusted data stream. Scp-secure transfer protocol is a network protocol that transfers data that can withstand or is immune to interception and tampering. 2. Use the “ssh host who” command in the terminal to show who is logged in 3. Scp user@bravo:-r your@home:blank 4. “$ ssh plum xterm” or use this command with “-y” if x11 forwarding is not trusted 5. The problem that enabling compression prevent when using a ssh to run remote x11 applications on a local display would be that this creates a backup feature. Should the computer crash, all of your work will be saved on the hard drive. 6. Check with the remote administrator to see if something has changed. Ch. 20 1. Edit “etc/aliases file to include the entry: root, var/logs/systemmail 2. “Cat~/. Forward”, then max@bravo.com then “/max” 3. Edit “/etc/mail/access” and add the following: “connect 192.168.1.1 relay” 4. “dnl” stand for “delete to new line”, works the same as # in shell script; it instructs the compiler to ignore any line followed by “dnl” 5. Go to content configuration on Spamassassin, then under “required spam assassin score”, change 3 to 5. 6. First, type the mail followed by the e-mail address of the recipient: mail Max@email.com, then type the subject line, then press enter. Type your message, then...
Words: 270 - Pages: 2
...ITECH1002 Assignment 1 Lecturer’s Name: Sanjay Jha ATMC Sydney Assignment has to be submitted online on Moodle on or before the due date. SUBJECT CODE: ITECH1004 SUBJECT TITLE: NETWORK OPERATING SYSTEM ASSIGNMENT NUMBER AND TITILE: 1- NETWORKING ASSIGNMENT WORD COUNT (IF APPLICABLE): 3274 DUE WEEK: WEEK-6 LAB/TUTORIAL GROUP: LAB 2 LECTURER: SANJAY JHA TUTOR: SANJAY JHA STUDENT ID (FedUni): 30314027 STUDENT FAMILY NAME: KIRAN STUDENT GIVEN NAMES: RIJAL I declare that this assignment is my individual work. I have not worked collaboratively nor have I copied from any other student’s work or from any other source except where due acknowledgement is made explicitly in the text, nor has any part been written for me by another person. I realize that the penalties may ensure for late submission or any other breaches of assignment rules. 1 20 December 2015 ITECH1002 Assignment 1 Lecturer’s Name: Sanjay Jha Kiran Rijal Student ID: 30314027 Contents 1. INTRODUCTION ................................................................................................................... 3 1.1 VIRTUALIZATION .................................................................................................................... 3 1.2 NUMBER SYSTEM .................................................................................................................. 3 CONVERSION .....................................................
Words: 3418 - Pages: 14
...| IT250 Linux Operating System | Jerry Black | Spring 2012 | | | | Course Description: Installation, configuration and management of a Linux operating system will be explored. Focus will be on functions that resemble the UNIX environment. Directory and file management, user account management and certain device management (such as drives, printers, interface cards, etc.) will be discussed. Prerequisite(s) and/or Corequisite(s): Prerequisite: IT103 Operating Systems Credit hours: 4 Contact hours: 50 (30 Theory Hours, 20 Lab Hours) Syllabus: Linux Operating System Instructor | Jerry Black | Office Hours | Thursday, 4PM-6PM | Class Hours | Monday, 6:00PM – 10:20PM | Contact | Ms. Travis, 937-264-7707 | | jblack@itt-tech.edu | Major Instructional Areas 1. Introduction to Linux 2. Linux installation 3. Graphical user interface (GUI) desktops 4. Command-line interface (CLI) essentials 5. Hardware configuration: display, network, and printer 6. Networking: Resource sharing and remote access 7. Backup and restore utilities 8. Installing software in Linux 9. Scripting: Bourne Again Shell (bash) and Perl 10. Apache Web Server installation and configuration Course Objectives 1. Discuss the history and unique characteristics of the Linux operating system. 2. Perform an installation of Linux. 3. Use the components and features of the GNOME desktop environment. 4. Perform basic tasks by...
Words: 2032 - Pages: 9
...1: Compare and contrast the X Window system and Microsoft Windows. DQ 2: What is the most interesting, useful, unexpected or unusual thing you have learned about Linux/UNIX during this course? Computer Science - General Computer Science POS 420 Week 1 UNIX® and Linux® Comparison Matrix Resources: University of Phoenix Material: UNIX® and Linux® Comparison Matrix Complete the UNIX® and Linux® Comparison Matrix located on your student website. See the Assignment 1 post in the Main forum or Course Materials forum for detailed instructions. POS 420 Week 2 Individual File Processing Commands Worksheet Resource: University of Phoenix Material: File Processing Commands Worksheet Resource: University of Phoenix Materials: Linux® Directory Log Complete the Linux® Directory Log located on your student website. Complete the University of Phoenix Material: File Processing Commands Worksheet located on your student website. See the Assignment 2 post in Main forum or Course Materials POS 420 Week 3 Individual Linux® Script Worksheet Resource: University of Phoenix Material: Linux® Script Worksheet Complete the University of Phoenix Material: Linux® Script Worksheet located on your student website. See the Assignment 3 post in Main forum or Course Materials forum for detailed instructions. POS 420 Week 4 Individual Systems Administration Scripting Log ...
Words: 324 - Pages: 2
...IS4670: Week 3 Assignment 1 Create Data and Password Recovery Plans © ITT Educational Services Page 1 Learning Objectives and Outcomes You will learn general process for examining and recovering data from a hard disk. You will create a data recovery plan for future use. You will learn how to write a procedure for recovering a password from a computer system. Assignment Requirements You are a computer forensics intern at AAA Computer Forensics, a small forensics investigations and data recovery firm. Today your manager receives a call from a client in the construction industry. The client reported that a disgruntled employee reformatted a hard disk that contained valuable blueprints for a current job. The computer is an ordinary laptop that was running Windows Vista. No backup is available. The client wants that data to be recovered and at the same time has requested that you create a procedure for using an appropriate password-cracking method. You have been asked to assist in the recovery of the data and to crack passwords. Create a data recovery plan outline that lists the steps to be performed in recovering the data in their order of importance. Create a document that lists the steps for recovering a password from a Windows Vista, Windows 7, or Linux system. The software used should be open source. You may have to research password recovery methods on the Internet to complete the assignment. Submission Requirements Format: Microsoft Word...
Words: 3649 - Pages: 15
