CPSC665 - Advanced Networks and Security

Spring 2001 - Dr. Pooch

Compromising a Unix Machine

This page last updated:  Friday, January 26, 2001 14:16


Home
Course Information
Schedule
Team Lists
White Paper
Midterm Examination
Final Report
Final Examination
Complaint Policy
Grade Determination

Lesson Objectives   Lesson Information   Slideshow   Assignments   References   Questions

Lesson Objectives

  1. Definition of host compromise.
  2. Define the objective of a host compromise.
  3. Define the configuration errors that have led to host compromises.
  4. Define the software flaws that have led to host compromises.

Lesson Information

This lesson describes the methods a intruder may use to compromise a UNIX host. A host is defined as compromised when the intruder is able to able login as root, or change the real or effective user ID of a process to root.  This lesson will discuss some of the vulnerabilities which may exists on a host due to configuration errors, and software flaws such as numeric and array overflows.

Slideshow

 

Assignments

 

References

TAMU CS TR98-021:   Survey of UNIX Penetration Tests Performed During a Graduate Computer Security Class at Texas A&M University

Questions

This website is maintained by John Hill.