Security
Revised: 2006-07-06 devinTable Of Contents
- U of U students, staff and faculty can access the Campus Network via a Virtual Private Network connection known as a VPN. A Virtual Private Network (VPN) provides a secure connection to a network through the Internet from a personal computer
Dustin, who provides technical support for U of U NetCom, will discuss what services are available for Mac users.
This page give you a summary on setting up the campus VPN on a iPhone or iPod Touch running firmware 2.0 or later.
In the course of deploying new Apple hardware, SCL Mac Support has either commissioned the manufacture of or developed on its own variety of security and protection devices. These devices are designed to secure and protect specific hardware or hardware components from theft or damage (accidental and intentional) that is likely to occur in an open lab or kiosk environment. In each instance, factors such as overall cost, durability, size, and aesthetics were important considerations.
Eavesdrop is a network capture application (based on tcpdump) that captures and understands TCP conversations. It keeps track of the TCP flag history and extracts the payload of each conversation as it is captured. The payload is also searched for image data to display. Graphs can be created to view trends in the captured data.
It seems that someone is always poking their nose where they are not supposed to. Wouldn't it be great to find out when this is happening? That is what Intrusion Detection is for, but what exactly is it, why do you need one, and how do you set one up? Darren will be presenting a general overview and then discuss how to implement one type of Intrusion Detection System for Networks using the HenWen interface to Snort. This will include a demonstration.
Derrick Donnelly will discuss the state of forensics on Mac OS and tasks like using a Mac to create a forensics image of a Mac or PC drive and commands to sift through the amount of information stored on today's hard drives. Derrick is considered one of the foremost experts in Mac forensic analysis. He currently serves as the CTO of BlackBag Technologies, a leading provider of multi-platform forensic software and hardware solutions. Before BlackBag Technologies, he led the IT Security Department at Apple Computer where he played key roles in securely implementing iTunes, .Mac and the Apple online stores. He was a law enforcement officer for the Royal Canadian Mounted Police. He has developed and teaches courses to law enforcement agencies internationally, including the FBI Computer Analysis and Response Team (CART). He also has worked with the US Department of Justice. He attended St. Francis Xavier University in Nova Scotia, Canada where he studied Information Systems.).
This presentation discusses Mac OS X lab physical security, boot security, how to handle published exploits, passwords, world write permissions, SUID applications, how to securely modify the system, what to do with applications that stay open after logout, how to protect services that you might enable, and how to monitor your labs to ensure that they stay secure.
A brief overview of the "help"-related internet security vulnerability recently discovered in Mac OS X.
An overview of MacAnalysis, a network security application.
A discussed the pros and cons of TrueCrypt for Mac OS X and demonstration on its use.
A vulnerability has been discovered, that with access to a USB Keyboard connected to the computer running on OS's Mac OS X 10.2.8 or earlier; a person can hold down Control + c during startup and be given access to a root shell prompt due to init crashing. Then they can easily compromise the Mac. Richard will discuss the vulnerability, give an example, and give a workaround to remove the vunerability.
Overviews of various anti-virus software for Mac OS X.
©2006 -
University of Utah -
Marriott Library -
Student Computing Labs
Disclaimer - 295 South 1500 East, Room 1705J, SLC, UT 84112 - 801.581.6494