Course Lab

Lab 3 © R. Craig Collins, 2005/6

General Lab Directions
Note: There is not enough time in lecture to cover all the material; read your book BEFORE you begin the lab
Note: Typically labs will require you to invest some time in the lab, outside of class lecture hours

Check with your Instructor for due date, typically Friday, 11:59PM, of the week assigned

Part 1, Server Activity (15%, 10% each):
• Windows Project 3-7 (Discuss process and add to documentation)
• Windows Project 4-2 (Get a screen shot of the General Tab)

Part 2: Documentation, (20%, 10% each)
• Linux Project 4-3 (Discuss process and add to documentation)

Part 3: Q&A (65%)
• Security: the 25 review questions at the end of chapter 3
• Security: the 20 review questions at the end of chapter 4

1. IPSec can be used with which of the following types of encryption keys? (Choose all that apply.)
Answer:

2. Which of the following authentication methods is particularly suited to UNIX and Linux systems because it can be used with piping?
Answer:

3. Your organization is planning to set up Windows XP Professional computer systems that have the ability to use smart cards. In preparation, you should configure _____________________ to be used with the smart cards.
Answer:

4. Your organization is installing a Windows Server 2003 NNTP server. Which of the following should you configure on the server for security?
Answer:

5. Advanced Encryption Standard uses which of the following? (Choose all that apply.)
Answer:

6. The formula (key x 20) / (data/key) is an example of a(n) _______________________.
Answer:

7. A sniffer ________________________________. (Choose all that apply.)
Answer:

8. For greater security, your company has decided to store Red Hat Linux 9.x password data in a location other than the /etc/passwd and /etc/shadow files. What should you obtain to accomplish this?
Answer:

9. Which of the following would you expect to find in an X.509-compliant digital certificate? (Choose all that apply.)
Answer:

10. You network houses many old Windows 98 systems because some users have refused to upgrade, but they are running the Directory Service Client. Which of the following should be configured as the authentication for these systems to provide the best security?
Answer:

11. You are setting up to use digital certificates on a network that uses Windows 2000 and 2003 servers. In the process of setting up to use digital certificates, you need to designate a ___________________________.
Answer:

12. You have configured a Windows 2003 server to use Kerberos. Many users are complaining that after three hours of continuous access to the server, they lose access and must log on again to resume working. How can you best fix this problem?
Answer:

13. Which of the following would you expect to come with an LCD?
Answer:

14. ________________________________ is an authenticating server for EAP.
Answer:

15. Your company uses Red Hat Linux 9.x servers and workstations. There is a need to encrypt specific top secret directories of files to protect their contents. Which of the following should you use
Answer:

16. When an attacker creates a customized script to try every character to find the password to an administrator’s account, this is an example of a ______________________ attack.
Answer:

17. Which of the following is (are) true of challenge/response authentication? (Choose all that apply.)
Answer:

18. One advantage of SSL is that it ______________________________.
Answer:

19. A secure way to remotely access Red Hat Linux 9.x workstations and servers is by using the _________ command.
Answer:

20. IPv6 uses __________________________ for secure communications.
Answer:

21. ______________________ tend to be more secure.
Answer:

22. In Windows Server 2003, the Client role in IPSec communications ______________________.
Answer:

23. ____________________ is a program that attackers use to access password information on a NetWare server
Answer:

24. How might an attacker decrypt data protected by the Encrypting File System?
Answer:

25. Microsoft Point-to-Point Encryption is used with ____________________________. (Choose all that apply.)
Answer:

1. ConsoleOne is employed by the __________________________ operating system for creating accounts.
Answer:

2. The Computer Security committee in your company has decided to restrict logon hours for all Windows 2003 Servers to Monday through Friday, between the hours of 6 a.m. and 8 p.m. What capability enables them to do this?
Answer:

3. You are consulting for an organization that uses Red Hat Linux 9.x servers. This organization wants to automatically prohibit access to accounts that have been inactive for over 30 days. Is this possible?
Answer:

4. How does Mac OS X provide assistance to a user who is having trouble remembering his or her password?
Answer:

5. Which of the following can be configured in a NetWare 6.x user template? (Choose all that apply.)
Answer:

6. How can you restrict access to a Windows 2000 Server so that only administrators can log onto the console locally?
Answer:

7. Which of the following are advantages of group policy over system policy in Windows-based servers? (Choose all that apply.)
Answer:

8. As a server and network administrator, you want to standardize the setup for NetMeeting for Windows XP Professional clients who access Windows Server 2003. Which of the following enable you to do that?
Answer:

9. From where are accounts created in a Mac OS X workstation?
Answer:

10. Which of the following are characteristics of a strong password? (Choose all that apply.)
Answer:

11. Which of the following is password security information contained in the /etc/shadow file in Red Hat Linux 9.x? (Choose all that apply.)
Answer:

12. In Windows 2000 Server, account policies include which of the following? (Choose all that apply.)
Answer:

13. In Windows Server 2003, the policy that passwords must meet complexity requirements means that _____________________________________________________.
Answer:

14. In Windows Server 2003, a group policy can be linked to which of the following? (Choose all that apply.)
Answer:

15. Each Red Hat Linux 9.x account has a __________________________.
Answer:

16. Your organization uses a combination of Windows 2000 and Windows 2003 servers. You have lectured users about reusing the same passwords, but no on seems to be listening. This is a major security problem, because users have often shared their passwords with other users in the past. How can you best solve this problem?
Answer:

17. Which of the following are part of role-based security in Netware 6.x? (Choose all that apply.)
Answer:

18. Sometimes members of the Server Operators group on a Windows 2003 server decide to connect printers to certain servers for their convenience, and load drivers for those printers to make them work. What steps might you take, so that only the Administrators group has this option?
Answer:

19. Windows Server 2003 group policy settings are stored in ____________________________________.
Answer:

20. Which of the following are tools used on a Mac OS X server for managing accounts? (Choose all that apply.)
Answer:

Save the changes to yourname-lab3.doc. Print the results to turn in. Upload the file as directed.

for Labs that require files to be electronically submitted
• zip the required file(s) and/or folder(s)
• rename the zipped file to reflect your name and the lab being turned in
       •Example: yourname-lab1 or yourname-lab1.zip (if your extensions are visible)

If submitting by Temple College Desire2Learn:
       •Log into D2L, scroll to the bottom, and choose the correct course
       •When the Course Home Page appears, click on the Dropbox link.
        Dropbox Selection image
        1. Choose the class for which you want to drop off an assignment. 2. Find the Dropbox tool, click on it. 3. Choose the appropriate Dropbox folder, click on it. 4. Choose [Add a File], then choose [Browse] 5. Find the file that you would like to upload and click open, then choose [Upload] 6. Type in a short description or comment about the file, if you like. 7. Select [Add] for any additional files that may be pertinent, and repeat 8. After your files have been selected, click [Upload]. (You will always click upload at least twice) 9. Some files may take a long time to upload (especially if there are graphics in the file). After the upload is complete the File Upload dialog box should appear. See the steps below to verify that your file went through. Did my file get through? 1. Go to the Dropbox tool 2. Click the number under Submissions 3. All of the assignments that have been submitted will be listed.
• if submitting by eCampus, by Blackboard
      •Log in to your class, and Click once on the Drop Box/Tools button
      •Select the Digital Drop Box
      •Select the [Add file]
        • For Name, type in the name of the lab
        • For File
           • [Browse...] to the file you wish to submit,
           • Choose [Open] to select it
        • For Comments, include your name, your class, your section, and what you are submitting
      •Select Submit

• if submitting by email:
       •Send the mail to your instructor, cc yourself
       •The subject line should include your name, your class, your section, and what you are submitting
       •Attach the file