whoami
play

whoami Alec Stuart Muirk Network Security Architect Firewall - PowerPoint PPT Presentation

Jan 05, 2024 •539 likes •1.66k views

whoami Alec Stuart Muirk Network Security Architect Firewall Engineer Ruxcon attendee Security hobbist alec.stuart@gmail.com DISCLAIMER This research is not related to my job or current employer. This is purely an exercise

  1. Remote Unauthenticated Vulns (DoS/Overflow/Bypass) CVE-2012-4659 CVE-2013-5551 CVE-2012-0356 CVE-2013-1152 CVE-2012-4643 CVE-2013-5542 CVE-2012-0355 CVE-2012-4663 CVE-2013-1151 CVE-2013-5544 CVE-2012-0354 CVE-2012-4662 CVE-2013-1150 CVE-2013-5515 CVE-2012-0353 CVE-2013-1149 CVE-2014-2129 CVE-2012-4661 CVE-2013-5513 CVE-2012-0358 CVE-2012-4660 CVE-2013-1193 CVE-2013-5512 CVE-2014-2128 CVE-2013-1199 CVE-2013-5511 CVE-2014-2154 CVE-2013-1195 CVE-2014-2182 CVE-2013-5510 CVE-2013-5509 CVE-2011-3304 CVE-2013-6696 CVE-2013-5508 CVE-2011-3303 CVE-2013-6707 CVE-2013-5507 CVE-2011-3302 CVE-2013-3415 CVE-2013-1138 CVE-2011-3301 CVE-2011-3298 CVE-2014-3264 CVE-2012-5419 CVE-2011-4006 CVE-2012-6395 CVE-2011-0379 CVE-2012-0378 CVE-2012-5717 CVE-2012-2474 CVE-2014-0739 CVE-2012-2472 CVE-2013-3458 CVE-2014-0738 CVE-2010-4689 CVE-2013-5567 CVE-2013-6682 CVE-2010-4680 CVE-2013-6691 CVE-2012-3058 CVE-2013-3463 CVE-2013-5568 CVE-2010-4678 CVE-2013-5560 Jan 11 Feb Oct Mar 12 May Jun Aug Oct Jan 13 Feb Apr Aug Sep Oct Nov Dec Feb 14 Apr May Jul

  2. Memory Corruption in Protocol Inspection CVE-2012-0356 CVE-2012-4659 CVE-2013-5551 CVE-2013-1152 CVE-2012-4643 CVE-2013-5542 CVE-2012-0355 CVE-2013-1151 CVE-2012-0354 CVE-2012-4663 CVE-2013-5544 CVE-2013-1150 CVE-2013-5515 CVE-2012-0353 CVE-2012-4662 CVE-2013-1149 CVE-2014-2129 CVE-2013-5513 CVE-2012-0358 CVE-2012-4661 CVE-2014-2128 CVE-2013-1193 CVE-2013-5512 CVE-2012-4660 CVE-2014-2154 CVE-2013-1199 CVE-2013-5511 CVE-2013-1195 CVE-2014-2182 CVE-2013-5510 CVE-2011-3304 CVE-2013-5509 CVE-2011-3303 CVE-2013-6696 CVE-2013-5508 CVE-2011-3302 CVE-2013-6707 CVE-2013-5507 CVE-2013-1138 CVE-2011-3301 CVE-2013-3415 CVE-2014-3264 CVE-2011-3298 CVE-2012-5419 CVE-2011-4006 CVE-2012-6395 CVE-2011-0379 CVE-2012-0378 CVE-2012-5717 CVE-2012-2474 CVE-2014-0739 CVE-2012-2472 CVE-2013-3458 CVE-2014-0738 CVE-2010-4689 CVE-2013-5567 CVE-2013-6682 CVE-2010-4680 CVE-2013-6691 CVE-2012-3058 CVE-2013-3463 CVE-2013-5568 CVE-2010-4678 CVE-2013-5560 Jan 11 Feb Oct Mar 12 May Jun Aug Oct Jan 13 Feb Apr Aug Sep Oct Nov Dec Feb 14 Apr May Jul

  3. Looking for Remote Vulnerabilities in Application Layer Protocol Inspection – DNS Inspection – CVE-2013-5513 – ESMTP Inspection - CVE-2011-4006 – H.323 Inspection - CVE-2012-5419 – HTTP Inspection - CVE-2013-5512 – Instant Messenger Inspection - CVE-2011-3304 – ILS Inspection - CVE-2011-3303 – RADIUS Inspection -CVE-2014-3264 – SIP Inspection - CVE-2012-4660 – SCCP Inspection - CVE-2010-0151 – UDP Inspection - CVE-2012-0353 (DNS/SIP/SNMP/GTP/MCGP/XDMCP) – SQL*Net Inspection - CVE-2013-5508 Most memory corruption vulnerabilities are classified as DoS

  4. Looking for Remote Checkheaps most likely offering “protection” – DoS instead of code exec Previous work on IOS checkheaps bypass could be used in ASA land? – Michael Lynn BlackHat 2005 Expect more research in this space

  5. Memory Corruption in Protocol Inspection CVE-2012-4659 CVE-2012-4643 CVE-2012-4663 CVE-2012-4662 CVE-2014-2129 CVE-2012-4661 CVE-2012-4661 CVE-2014-2128 CVE-2012-4660 CVE-2014-2154 CVE-2014-2182 Cisco Firewall Services Module and Cisco ASA 5500 CVE-2013-6696 Series Adaptive Security Appliance DCERPC CVE-2013-6707 Inspection Buffer Overflow Vulnerability CVE-2014-3264 “An unauthenticated, remote attacker could exploit CVE-2012-5419 CVE-2012-6395 CVE-2011-0379 this vulnerability to cause a stack overflow condition CVE-2012-5717 which could be leveraged to execute arbitrary CVE-2014-0739 CVE-2013-3458 CVE-2014-0738 commands or cause an affected device to reload, CVE-2010-4689 CVE-2013-5567 CVE-2013-6682 resulting in a DoS condition .” CVE-2010-4680 CVE-2013-6691 CVE-2012-3058 CVE-2013-3463 CVE-2013-5568 CVE-2010-4678 Cisco Vulnerability Alert 27107 CVE-2013-5560 Jan 11 Feb Oct Mar 12 May Jun Aug Oct Jan 13 Feb Apr Aug Sep Oct Nov Dec Feb 14 Apr May Jul

  6. Looking for Remote CVE-2012-4661 Stack-based buffer overflow ASLR disabled! GDB/IDA attach to serial console – /asa/bin/lina_monitor -g -s /dev/ttyS0 -d

  7. Bug Hunting CVE-2012-4661 Disclosure shows issue in DCERPC inspection Static analysis shows some memcpy operations to a fixed sized buffer Focus on ISystemActivator / RemoteCreate Instance RPC Messages Fuzz the protocol parameters

  8. Bug Hunting CVE-2012-4661 Windows RPC WMI ISystemActivator ISystemActivator: BIND ISystemActivator : BIND-ACK RemoteCreateInstance : REQUEST RemoteCreateInstance : RESPONSE Buffer overflow triggered by RPC client RPC server malformed RCI RESPONSE packet!

  9. Bug Hunting CVE-2012-4661

  10. Looking for Remote CVE-2012-4661 Overwrite EIP with xlarge oxidbinding info Unfortunately string content is restricted to valid IP address string characters ASCII 0-9 (0x30-0x39) and . (0x2e) Partial overwrite / ROP opportunity? Our princess is in another castle!

  11. Looking for Remote WebVPN Portal another likely target – CVEs related to Web Services (XSS/Bypass/Gain Privs) CVE-2014-2128 CVE-2014-2127 CVE-2014-2126 CVE-2014-2120 CVE-2014-2151 CVE-2013-5511 CVE-2013-5510 CVE-2013-5509 CVE-2013-3414 CVE-2012-0335 CVE-2011-3285 CVE-2010-4680 Jan 11 May 12 Jul 13 Mar 14 Apr Jun

  12. WebVPN Popular remote access method A web server on your firewall? Two web services – WebVPN Portal / AnyConnect Gateway – ASDM services (launch ASDM/ handles ASDM GUI config via POST/GET) Assume no access to ASDM services!

  14. Provides access to internal web resources. Intranet server etc. Cisco ASA acts as a proxy HTML rewriter. Embeds returned content into the WebVPN portal.

  15. Provides access to internal resources. Launches Java applets. Cisco ASA proxies the SSH/RDP/Citrix connections to the remote server

  16. WebVPN Lots of server side processing! Embedded Lua provides server side functions Scripts are stored as plaintext blobs in lina binary `strings lina` reveals 86 Lua scripts – Plenty of complied Lua also.. Code review of server side Lua shows us some interesting bugs…

  17. Some code here…

  18. WebVPN CheckAsdmSession(cookie, no_redirect) – Checks to see if file $cookie exists – Validates session if file exists! Where is CheckAsdmSession() used? WebVPN Customization Editor! – Used to edit look and feel of WebVPN portal

  19. WebVPN

  22. WebVPN

  23. WebVPN Preview Button actions: – Creates /asdm/OneTimeRandomCedValue – POST the Customization contents – launches a URL to view the preview https://interface.mgmt.net/+CSCOE+/cedlogon.html?obj =DfltCustomization&preview=logon&f=logon&pf=logon& ced=B96AD3A7653629D48087D20058041F32 “ ced ” value is used as CheckAsdmSession(file,1)

  24. WebVPN cedlogon.html can also be accessed as: – https://interface.internet.net/+CSCOE+/cedlogon.html Set ced= to a known file across all versions – ced=../../locale/ru/LC_MESSAGES/webvpn.mo – CheckAsdmSession (“ ../../locale/ru/LC_MESSAGES/web vpn.mo”,1) always returns true Session check is bypassed.. We can request a “preview” of our own content So what?

  25. WebVPN CVE-2014-3393 Older versions of ASDM did all customization through web browser The code still remains in current versions! This includes the ability to save the preview content! We can use ‘ ced ’ bypass to “customize” the WebVPN ! via the internet facing web service!

  26. WebVPN Content can be “customized” to serve clients some malware! – Inject some BEEF .js – Clients expect Java applets to be served (RDP/SSH plugins) – Clients expect .exe to be served (updates for SSL AnyConnect client) Hijack the login form!

  27. WebVPN Exploit Process.. Request “Preview” of our requested Customization content Request “Preview Save” of requested Customization content

  28. WebVPN Request “Preview” – With Customization Contents Request “Preview Save” – Save Cotents

  29. WebVPN Request “Preview” – With Customization Contents Request “Preview Save” – Save Cotents

  30. WebVPN Request “Preview” – With Customization Contents Request “Preview Save” – Save Cotents

  31. WebVPN Scrape the current login screen Customization Request “Preview” – With Hijack Contents Request “Preview Save” – Save Cotents Catch creds on HTTPS listener service Form submit sends us clear-text username/password combos. Javascript injection in portal sends session cookie. Customization is reboot/upgrade persistent (flash stored)

  32. Metasploit CED Exploit “demo”

  33. WebVPN Credentials stolen.. Remote VPN user access gained!

  34. Agenda Mario Super Adventure cisco>enable cisco# #id uid=0(root) gid=0(root) Device Compromise “Jail break” & Local shell access Obtain SSL VPN User Privilege Escalation Access

  35. Network Reconnaissance CVE-2014-3398 Remotely detect the ASA firmware version.. https://webvpn.ip/CSCOSSLC/config-auth – Returns firmware version number – i.e "9.2(1) VPN Server internal error." Write an nmap nse script!

  36. WebVPN

  37. WebVPN Network Reconnaissance shows two Cisco ASAs! High Availability / Redundant pair Typical enterprise configuration Maybe we can attack this?

  38. Failover Two modes: Active / Active – Allows both ASA to pass traffic – Requires multi-contexts (not supported by WebVPN) Active / Standby – Supported by WebVPN

  42. Failover Failover Link Provides – NAT Tables sync – TCP/UDP connection tables sync – ARP table sync – VPN Session sync – Dynamic route table sync – WebVPN configuration (Customizations) – Config / command replication

  43. Failover Three proprietary protocols on Failover link IP Protocol 8 – TCP/UDP/NAT table sync IP Protocol 105 – HELLOs , config sync, file replication, command replication IP Protocol 9 – WebVPN session and content sync, also syncs ASDM sessions

  44. Failover As an unprivileged SSL user we can send packets across the fail over link to the Standby firewall! We can send IP Proto 105 packets and IP Proto 9, IP Proto 8 dropped Standby firewall will accept packets from any source!

  46. Failover IP Protocol 105 Config Sync Packet Format CRC No replay protection! Field Length Config command sync No authentication! Sequence Number? This packet configures “hostname MyCiscoASA ” on the standby ASA

  47. Failover Cisco allows to run commands from active to standby firewall (or vice-versa) Eg. failover exec standby show version Commands run as user enable_15 (root)

  48. Failover IP Protocol 105 Failover Exec Packet Format CRC Field Length Execute command Sequence Number?

  49. Failover CVE-2014-3389 As an unprivileged SSL VPN user we can send custom IP 105 packets to exec commands on the standby firewall! No authentication! Cisco default “no logging standby” – SNMP/Syslog is disabled by default on Standby

  50. Failover “Demo” scapy script sending commands to the standby firewall Fail-over command injection: – First download a copy of running config – Upload some of our own config – We will create a user on the Standby firewall in order to send exec commands to the Active firewall! – Login to standby and execute command on active!

  52. Failover Cisco recommend that failover be secured by either: – failover key – failover ipsec preshared-key

  53. Failover failover ipsec preshared-key Starts an IPsec VPN between ASAs, all the sync/exec packets are encrypted.. A logic flaw exists.. The Standby will accept unencrypted packets as successfully decrypted packets! Cisco recommended setting “failover IPSec ” offers no security against command injection attack!

  54. Failover Use failover command injection to configure secondary Cisco ASA without logging Login to secondary ASA and exec commands on the primary! Both devices now compromised!

  55. Mario Super Adventure cisco>enable cisco# #id uid=0(root) gid=0(root) Device Compromise “Jail break” & Pwn the Network Local shell access Obtain SSL VPN User Privilege Escalation with Access Hidden Config

  56. Owning the Network We now have our SSL tunnel and have compromised the firewall Lateral movement phase of attack.. Probing the network directly will raise alarms – SIEM/IPS/Flow analytics etc

  57. !

  58. Remote Shell and Hidden Config Stolen firewall config shows us the access-lists Access-lists describe trust relationships and expected traffic flows

  59. SOURCE DESTINATION SERVICE ACTION ANY DMZ_WEB_SERVER HTTP PERMIT HTTPS DMZ_WEB_SERVER INT_DMZ_DATABASE SQL_PORTS PERMIT ANY DMZ_MAIL_SERVER MAIL_SERVICES PERMIT DMZ_MAIL_SERVER ACTIVE_DIRECTORY AD_PORTS PERMIT

  60. SOURCE DESTINATION SERVICE ACTION ANY DMZ_WEB_SERVER HTTP PERMIT HTTPS DMZ_WEB_SERVER INT_DMZ_DATABASE [SQL_PORTS] PERMIT 10.55.55.55 10.11.11.11 TCP-1433 ANY DMZ_MAIL_SERVER MAIL_SERVICES PERMIT DMZ_MAIL_SERVER ACTIVE_DIRECTORY AD_PORTS PERMIT

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Platforms FTW! Matt OKeefe $ whoami Developer -> Architect -> CTO $ whoami

Platforms FTW! Matt OKeefe $ whoami Developer -> Architect -> CTO $ whoami

Platforms FTW! Matt OKeefe $ whoami Developer -> Architect -> CTO $ whoami -O RLY? Developer -> Architect -> CTO What is a Platform? Mise en place for developers In slightly more technical terms

622 views • 39 slides
basho Thursday, 11 April 13 $ Thursday, 11 April 13 $ whoami Thursday, 11 April 13 $ whoami

basho Thursday, 11 April 13 $ Thursday, 11 April 13 $ whoami Thursday, 11 April 13 $ whoami

Killing pigs and saving Danish bacon GOTO Zurich Zurich, Switzerland 11th April 2013 basho Thursday, 11 April 13 $ Thursday, 11 April 13 $ whoami Thursday, 11 April 13 $ whoami Name: Matthew Revell Title:

1.55k views • 111 slides
Counterattack Turning the tables on exploitation attempts from tools like Metasploit whoami

Counterattack Turning the tables on exploitation attempts from tools like Metasploit whoami

Counterattack Turning the tables on exploitation attempts from tools like Metasploit whoami scriptjunkie Security research Metasploit contributor whoami wrote this thing whoami I work here Disclaimer This

1.02k views • 76 slides
Myth Busters Open source and Security By Aseem Jakhar $ whoami $ whoami We break break

Myth Busters Open source and Security By Aseem Jakhar $ whoami $ whoami We break break

Myth Busters Open source and Security By Aseem Jakhar $ whoami $ whoami We break break things! things! We $ whoami When not working, we do charity $ whoami When not working, we do charity By breaking products for free :)

659 views • 28 slides
HIGH-PERFORMANCE VMS USING OPENSTACK NOVA by Nikola ipanov $ WHOAMI $ WHOAMI Software

HIGH-PERFORMANCE VMS USING OPENSTACK NOVA by Nikola ipanov $ WHOAMI $ WHOAMI Software

HIGH-PERFORMANCE VMS USING OPENSTACK NOVA by Nikola ipanov $ WHOAMI $ WHOAMI Software engineer @ Red Hat Working on OpenStack Nova since 2012 Nova core developer since 2013 THIS TALK THIS TALK OpenStack - the elastic cloud High-perf

455 views • 34 slides
Taking you API to the next level Django Rest Framework $whoami Carlos Martnez Backend

Taking you API to the next level Django Rest Framework $whoami Carlos Martnez Backend

Taking you API to the next level Django Rest Framework $whoami Carlos Martnez Backend Developer en twitter @carlosmart626 github carlosmart626 https://carlosmart.co $whoami Colombia @carlosmart626 $whoami @carlosmart626 5

945 views • 65 slides
Machine Learning What, how, why? Rmi Emonet (@remiemonet) 2015-09-30 Web En Vert $ whoami $

Machine Learning What, how, why? Rmi Emonet (@remiemonet) 2015-09-30 Web En Vert $ whoami $

Machine Learning What, how, why? Rmi Emonet (@remiemonet) 2015-09-30 Web En Vert $ whoami $ whoami Software Engineer Researcher: machine learning, computer vision Teacher: web technologies, computing literacy Geek: deck.js slides,

626 views • 58 slides
dnstap-whoami Robert Edmonds (edmonds@fsi.io) Farsight Security, Inc. Intro DNS nameservers

dnstap-whoami Robert Edmonds (edmonds@fsi.io) Farsight Security, Inc. Intro DNS nameservers

dnstap-whoami Robert Edmonds (edmonds@fsi.io) Farsight Security, Inc. Intro DNS nameservers that return custom responses Diagnostics Experimentation Result passed through to the original client Examples: DNS whoami

265 views • 25 slides
Powering Flexible Payments in the Cloud with Kubernetes whoami Ana Calin Systems Engineer

Powering Flexible Payments in the Cloud with Kubernetes whoami Ana Calin Systems Engineer

Powering Flexible Payments in the Cloud with Kubernetes whoami Ana Calin Systems Engineer @Paybase Twitter: @AnaMariaCalin 3 01 whoami 02 About Paybase 03 Things weve achieved so far 04 Our tech stack Table of Contents 05

970 views • 37 slides
Steroids [root@tools ~]# whoami Martin (purehate) Bos Core Developer for Backtrack Linux

Steroids [root@tools ~]# whoami Martin (purehate) Bos Core Developer for Backtrack Linux

Password Cracking on Steroids [root@tools ~]# whoami Martin (purehate) Bos Core Developer for Backtrack Linux Owner of Computer Rehab Co-Founder Question-Defense Security Enthusiast [root@tools ~]# whoami Alex (dakykilla) Kah

392 views • 37 slides
Deep Dive on the React Lifecycle @jcreamer898 http:/ /bit.ly/react-lifecycle 1 whoami

Deep Dive on the React Lifecycle @jcreamer898 http:/ /bit.ly/react-lifecycle 1 whoami

Deep Dive on the React Lifecycle @jcreamer898 http:/ /bit.ly/react-lifecycle 1 whoami Jonathan Creamer @jcreamer898 http:/ /bit.ly/react-lifecycle 2 whoami Currently Senior Front End Engineer at Lonely Planet Past JavaScript

1.01k views • 77 slides
Web Technologies in Java EE JAX-RS 2.0, JSON-P, WebSocket, JSF 2.2 $ whoami Luk Fry

Web Technologies in Java EE JAX-RS 2.0, JSON-P, WebSocket, JSF 2.2 $ whoami Luk Fry

Web Technologies in Java EE JAX-RS 2.0, JSON-P, WebSocket, JSF 2.2 $ whoami Luk Fry Software Engineer, JBoss, Red Hat AeroGear, (Arquillian, RichFaces) Interests HTML5, Web Components, AngularJS Living and

1.17k views • 83 slides
whoami BSEE, digital communica0ons Many years as a

whoami BSEE, digital communica0ons Many years as a

Beyond the Applica0on Cellular Privacy Regula0on Chris0e Dudley @longobord cdudley@scu.edu whoami BSEE, digital communica0ons Many years as a

602 views • 28 slides
Who Whos Really Attacking Y s Really Attacking Your our #WHOAMI Threat

Who Whos Really Attacking Y s Really Attacking Your our #WHOAMI Threat

Who Whos Really Attacking Y s Really Attacking Your our #WHOAMI Threat Researcher at Trend Micro- research and blogger on criminal underground, persistent threats,

792 views • 44 slides
Architecture of an NLP Deployment whoami 2 @texasmichelle Agenda 1 2 3 4 5 Evolution

Architecture of an NLP Deployment whoami 2 @texasmichelle Agenda 1 2 3 4 5 Evolution

Michelle Casbon QCon So Paulo May 9, 2018 Architecture of an NLP Deployment whoami 2 @texasmichelle Agenda 1 2 3 4 5 Evolution of NLP Components Guiding principles Implementations Future architectures 3 @texasmichelle

641 views • 39 slides
mimikatz 2.0 Benjamin DELPY ` gentilkiwi ` Our little story `whoami`, why am I doing this?

mimikatz 2.0 Benjamin DELPY ` gentilkiwi ` Our little story `whoami`, why am I doing this?

mimikatz 2.0 Benjamin DELPY ` gentilkiwi ` Our little story `whoami`, why am I doing this? mimikatz 2.0 & sekurlsa Focus on Windows 8.1 et 2012r2 Kerberos & strong authentication Questions / Answers And of course, some demos during

970 views • 30 slides
How the Great Firewall discovers hidden circumvention servers Roya Ensafi David Fifield

How the Great Firewall discovers hidden circumvention servers Roya Ensafi David Fifield

How the Great Firewall discovers hidden circumvention servers Roya Ensafi David Fifield Philipp Winter Nick Weaver Nick Feamster Vern Paxson Much already known about GFW Numerous research papers and blog posts Open access

916 views • 53 slides
The Margrave Tool for Firewall Analysis Tim Nelson (WPI), Christopher Barratt (Brown), Daniel J.

The Margrave Tool for Firewall Analysis Tim Nelson (WPI), Christopher Barratt (Brown), Daniel J.

The Margrave Tool for Firewall Analysis Tim Nelson (WPI), Christopher Barratt (Brown), Daniel J. Dougherty (WPI), Kathi Fisler (WPI) and Shriram Krishnamurthi (Brown) 1 and other dens of iniquity 2 I dont really know whats

1.28k views • 115 slides
Click to edit Master title style SCALING NETWORK MONITORING IN A LARGE ENTERPRISE BroCon 2016

Click to edit Master title style SCALING NETWORK MONITORING IN A LARGE ENTERPRISE BroCon 2016

Click to edit Master title style SCALING NETWORK MONITORING IN A LARGE ENTERPRISE BroCon 2016 Austin, TX Click to edit Master title style Who am I? I work for Amazons Worldwide Consumer Information Security group What are we going to

526 views • 38 slides
Network Security Architecture CS461/ECE422 Computer Security I Fall 2008 Reading Material

Network Security Architecture CS461/ECE422 Computer Security I Fall 2008 Reading Material

Network Security Architecture CS461/ECE422 Computer Security I Fall 2008 Reading Material Computer Security chapter 26. Firewalls and Internet Security: Repelling the Wily Hacker, Cheswick, Bellovin, and Rubin. New second

1.24k views • 50 slides
AFS Server Performance Comparisons Bo Tretta Kim Kimball Jet Propulsion Laboratory Information

AFS Server Performance Comparisons Bo Tretta Kim Kimball Jet Propulsion Laboratory Information

AFS Server Performance Comparisons Bo Tretta Kim Kimball Jet Propulsion Laboratory Information Services - FIL Service http://fil.jpl.nasa.gov SLAC AFS Best Practices Workshop March 24, 2004 JPLIS-FIL Server Performance Comparisons 1 n

701 views • 21 slides
Unveiling the Hidden Dangers of Public IP in 4G/LTE Networks Wai Kay Leong , Aditya Kulkarni, Yin

Unveiling the Hidden Dangers of Public IP in 4G/LTE Networks Wai Kay Leong , Aditya Kulkarni, Yin

Unveiling the Hidden Dangers of Public IP in 4G/LTE Networks Wai Kay Leong , Aditya Kulkarni, Yin Xu, Ben Leong Mobile Internet is Hot ot 2 Public IP Whats the deal? Subscribers want Public IP 3 M2M M2M Machine to Machine

555 views • 26 slides
Zentyal Linux small business server Julien Kerihuel Zentyal CTO 2013 [

Zentyal Linux small business server Julien Kerihuel Zentyal CTO 2013 [

Zentyal Linux small business server Julien Kerihuel Zentyal CTO 2013 [ jkerihuel@zentyal.com ] What is Zentyal? 2 of 26 Linux small business server www.zentyal.com 5/22/13 What is Zentyal? Linux server for SMBs Full-featured

369 views • 26 slides
Dangerous Pyrotechnic 'Composition': Fireworks, Embedded Wireless and Insecurity-by-Design

Dangerous Pyrotechnic 'Composition': Fireworks, Embedded Wireless and Insecurity-by-Design

Dangerous Pyrotechnic 'Composition': Fireworks, Embedded Wireless and Insecurity-by-Design (short paper) Andrei Costin , Aurlien Francillon EURECOM, Sophia Antipolis 23 July 2014 ACM WiSec'14 - Oxford, UK Agenda Introduction

468 views • 28 slides

More recommend