CEG 499/699: Internet Security College of Engineering & CS Wright State University Dayton, Ohio 45435-0001

Security Audit   Prabhaker Mateti   Abstract: Auditing the security of an individual host and LAN is a necessary activity.  This lecture describes the components of a security policy and how to set up a platform for conducting this audit, and the typical structure of a final report.   This work is supported in part by NSF DUE-9951380.

Table of Contents

1. Educational Objectives
2. Security Audit
3. Lab Experiment
4. Acknowledgements
5. References

Educational Objectives

1. Learn to audit Unix systems.

Security Audit

Print the slides, and read them!  There are several Required Readings.

Lab Experiment

None.

Acknowledgements

The slides are based on a course taught by Farmer and Venema.

References

1. Prabhaker Mateti, Security Audit, July 2000, [PowerPoint slides].
2. Lance Spitzner, "Auditing Your Firewall Setup," March, 2000. http://www.enteract.com/~lspitz/ audit.html.  Required Reading.
3. Henderson Group,  "How to Audit Windows NT Security," 10/01/97, http://home.us.net/~stu/ ntsec1.html  Recommended Reading.

4. Dan Farmer, and Wietse Venema, "Improving the Security of Your Site by Breaking Into it," [Local copy .html] Required Reading.

5. Auditors Checklists and Other Audit Information, http://all.net/books/audit/top.html Recommended Reading.
6. Dan Farmer, and Wietse Venema, "An Internet Security Audit for fish.com computing network," 1996, [Local copy .ps].  Required Reading.
7. P. Holbrook, J. Reynolds (Editors), "RFC 1244, Site Security Handbook," www.cis.ohio-state.edu/ htbin/rfc/ rfc1244.html Reference.