Beruflich Dokumente
Kultur Dokumente
Chapter 4
Network Security
Rainier Pimentel
Chap 4 – Net Sec – Lab 1
200.1.3.1/24 200.1.3.1/24
200.1.3.1/24 200.1.3.2/24
200.1.4.100/24
200.1.1.100/24
200.1.1.1/24 200.1.4.1/24
Rainier Pimentel
Minimum Password Length
Rainier Pimentel
FOUR Primary Classes Of Attacks
1. Reconnaissance
2. Access
3. Denial of Service
4. Worms, Viruses, and Trojan Horses
Reconnaissance
Reconnaissance is the unauthorized discovery
and mapping of systems, services, or
vulnerabilities.
Reconnaissance is similar to a thief surveying a
neighborhood for vulnerable homes to break
into.
a. reconnaissance
b. access
c. DoS
d. worm
e. virus
f. Trojan horse
Rainier Pimentel
Users are unable to access a company server. The system
logs show that the server is operating slowly because it is
receiving a high level of fake requests for service. Which
type of attack is occurring?
a. reconnaissance
b. access
c. DoS
d. worm
e. virus
f. Trojan horse
Rainier Pimentel
Worms, Viruses, and Trojan Horses
Malicious software can be inserted onto a host to damage or corrupt a
system, replicate itself, or deny access to networks, systems, or services
Simulation: VIRUS
• Create a batch file that will
automatically restart or shutdown or
logoff a computer
• Save the batch file as
love.txt_____________________.bat
• Send the file by email
Rainier Pimentel
An IT director has begun a campaign to remind users to
avoid opening e-mail messages from suspicious sources.
Which type of attack is the IT director trying to protect
users from?
a. DoS
b. DDoS
c. virus
d. access
e. reconnaissance
Rainier Pimentel
An IT director has begun a campaign to remind users to
avoid opening e-mail messages from suspicious sources.
Which type of attack is the IT director trying to protect
users from?
a. DoS
b. DDoS
c. virus
d. access
e. reconnaissance
Rainier Pimentel
Stages of an Attack
• Today’s attackers have a abundance of targets. In fact
their greatest challenge is to select the most
vulnerable victims. This has resulted in very well-
planned and structured attacks. These attacks have
common logistical and strategic stages. These stages
include;
– Reconnaissance
– Scanning (addresses, ports, vulnerabilities)
– Gaining access
– Maintaining Access
– Covering Tracks
Tools of the Attacker
Rainier Pimentel
Password Recovery: Configuration Register
15 14 13 12 11 10 9 8 7 6 5 4 3 2 1 0
0 0 1 0 0 0 0 1 0 0 0 0 0 0 1 0
Binary Number
Rainier Pimentel
Password Recovery: Configuration Register
0x2102 tells the router to load from flash & NVRAM. It uses bits 13, 8 and 1.
2102
2 1 2
15 14 13 12 11 10 9 8 7 6 5 4 3 2 1 0
0 0 1 0 0 0 0 1 0 0 0 0 0 0 1 0
• Ignores break
• Boots into ROM if initial boot fails
• 9600 console baud rate default value for most platforms
Rainier Pimentel
Password Recovery: Configuration Register
2142
2 1 4 2
15 14 13 12 11 10 9 8 7 6 5 4 3 2 1 0
0 0 1 0 0 0 0 1 0 1 0 0 0 0 1 0
• Ignores break
• Boots into ROM if initial boot fails
• 9600 console baud rate
• Ignores the contents of Non-Volatile RAM (NVRAM)
(ignores configuration)
Rainier Pimentel
Password Recovery: Configuration Register
2100
2 1
15 14 13 12 11 10 9 8 7 6 5 4 3 2 1 0
0 0 1 0 0 0 0 1 0 0 0 0 0 0 1 0
Rainier Pimentel
The password recovery process begins in which operating
mode and using what type of connection? (Choose two.)
a. ROM monitor
b. boot ROM
c. Cisco IOS
d. direct connection through the console port
e. network connection through the Ethernet port
f. network connection through the serial port
Rainier Pimentel
The password recovery process begins in which operating
mode and using what type of connection? (Choose two.)
a. ROM monitor
b. boot ROM
c. Cisco IOS
d. direct connection through the console port
e. network connection through the Ethernet port
f. network connection through the serial port
Rainier Pimentel
END
Rainier Pimentel
Configure a Router to Support SDM
2620-R3#config t
2620-R3(config)#ip http server
2620-R3(config)#ip http secure-server
2620-R3(config)#ip http authentication local
2620-R3(config)#ip http timeout-policy idle 600 life
86400 requests 10000
2620-R3(config)#exit
Rainier Pimentel
Configure a Router to Support SDM
Rainier Pimentel