News

We will continue discussing the test exam today, Thursday Nov 29th, at 12.30 in PI455.

The test exam (last years exam) has now been published in the archive and at the course page. Then you may spend some time working on the exam before we discuss it at the last lecture, today at 14.30. If needed, you may spend the first 45 minutes working on it, and the last 45 minutes discussing it. The duration of the exam is 4 hours and any written or printed aid is allowed.

We will start offering an extra class Tuesdays for Intrusion detection, as stated in time edit. Here you will get help from a teaching assistent finishing this weeks lab. Starting Tuesday Sept 4th 12.30 in PI455.

Intrusion detection and firewall security (MS004A)

Course info Staff: Hårek Haugerud
Builds on: Network and system administration 1, Security
10 ECTS Lectures in ENGLISH Level: Master Term: Autumn

[Student login]

Course plan
NotesTopicExercisesHints
1[en] Linux command line and bash scripts [en]
2[en] Course overview, Hostile datastreams, TCP,UDP,IP [en]
3[en] Firewalls, architectures and iptables [en]
4[en] Network Filtering rules and IPtables syntax [en]
5[en] Forwarding and NAT [en]
6 Home exam handed out [en]
7 Meeting the company representative
8READING WEEK
9[en] Host intrusion detection [en]
10[en] Network Intrusion Detection and Snort [en]
11[en] Snort [en]
12[en-pdf] Snort IPS [en]
13[en] Malware [en]
14Writing snort rules [en]
15[en] [en-pdf] Forensics, Penetration testing, Log analysis [en]
16 Test exam [en-pdf] [en-pdf]
17
Resources and Links
USENIX/SAGE association CERT Connection tracking on rex with world map.
CAIDA Securityfocus (Bugtraq) The National Security Agency (US)
Økokrim Datatilsynet Symantec scurity response
Silicon Defence Firewall lab Master wiki
dshield.org sans.org TCP/IP pocket reference guide
Forensics pocket reference guide VirusInfo MS05-039 exploit
Vulnerability Exploits Break Records Mark Burgess: Unix Mark Burgess: Unix (PDF)
iptables-tutorial.pdf ebook: Beginning Shell scripting ebook: Linux command line and shell scripting bible
ebook: shell programming