Operating System Hardening Vulnerabilities Unique vulnerabilities - - PowerPoint PPT Presentation

operating system hardening vulnerabilities
SMART_READER_LITE
LIVE PREVIEW

Operating System Hardening Vulnerabilities Unique vulnerabilities - - PowerPoint PPT Presentation

Nov 22, 2022 490 likes •623 views

Operating System Hardening Vulnerabilities Unique vulnerabilities for: Different operating systems Different vendors Client and server systems Vendors try to correct Attackers try to exploit Security professionals must

slide-1
SLIDE 1

Operating System Hardening

slide-2
SLIDE 2

Vulnerabilities

  • Unique vulnerabilities for:

– Different operating systems – Different vendors – Client and server systems

  • Vendors try to correct
  • Attackers try to exploit
  • Security professionals must keep update
slide-3
SLIDE 3

Typical Vulnerabilities

  • Default install
  • Auto login, FTP server,
  • Service exploits
  • Auto Play (C/DVD, USB)
  • Default protocols
  • FTP, HTTP, RDP,
  • Known accounts and passwords
  • Administrator, Root, admin : admin
  • Built-in applications
  • Remote administration
  • File access methods
  • FAT32, Everyone, 777
  • Physical access
  • Anything could happen
  • Buffer overflows
  • Injection, Adware, Worm
slide-4
SLIDE 4

Windows Hardening

Security Assesment

  • Identify Asset
  • Risk Assessment
  • Vulnerability & Threats
  • Security Hardening

GUI Tools

  • Microsoft Config (msconfig)
  • Services
  • Registry
  • Security Policy (secpol.msc)
  • User Rights
  • Audit
  • Group Policy (gpedit.msc)
  • Windows Settings
  • Windows Behaviour
  • Computer Management

(compmgmt.msc)

  • Event Viewer
slide-5
SLIDE 5

Windows Hardening

  • Windows Update

– Important update

  • Security update
  • Driver / Bug

– Optional update

  • Enhancement
  • Non-Essentials
  • Update Type

– Patch

  • Bug Fix

– Hot Fix

  • Fix Security Flaw

– Roll up

  • Cumulative patches &

hotfixes

– Service pack

  • Added feature
slide-6
SLIDE 6

Windows Hardening

  • Configuration Management
  • Security Baseline

– A template of configuration that applies to a group of system

  • Antivirus (adware, malware, worm, virus)
  • Event Viewer (Windows Log)
  • Auditing (Action purpose)
slide-7
SLIDE 7

Group Policy

  • Applying security baseline
slide-8
SLIDE 8

Group Policy

  • Apply template to

a system Predefined settings Templates based

  • n role
slide-9
SLIDE 9

Windows Hardening

  • File / Print server hardening (Tutorial)
  • Directory service hardening (Tutorial)
slide-10
SLIDE 10

Virtualization Technology

  • Honey Pot
  • Testing
  • Patch Management
slide-11
SLIDE 11

Directory Service

  • OpenLDAP
  • Microsoft Active Directory
  • Novell eDirectory

LDAP client LDAP server LDAP client

Stores directory data Directory query Directory query