HACQIT Project Part 1

Introduction

Recall that the goals of the first part of the project (from the handout) is to gain basic familiarity with HACQIT, not to attack the cluster. Specifically, each team has (or should have!) a user account for the designated login server on the test enclave LAN. You are to log into these machines from CSIF lab machines using SSH. The login servers will also be equipped with another VPN product (likely FreeS/Wan) to connect to the cluster firewall. They will also have the lynx browser so that you can try out the critical application, a simple web-enabled message board running under ISS or Apache (as described above). Please familiarize yourselves with inserting messages.

What is Due

You must do:

  1. You must turn in a typescript, generated by using script(1), of a session on the login server. The typescript must contain the login banner (last login line) and the output of the following commands:
  2. hostname

    ifconfig -a

    more /etc/passwd

    (you may have to look around to find ifconfig; that is part of the project!)

    How to submit: use the handin program for hacqit1.

  3. You must post a message to the message board from your team. Please identify your team by placing the sum of the digits, reduced modulo 9, in your student IDs on the message board. For example, if your student ID is 123456789 and your partner's student ID is 111111111, you would put (1 + 2 + 3 + 4 + 5 + 6 + 7 + 8 + 9 + 1 + 1 + 1 + 1 + 1 + 1 + 1 + 1 + 1) mod 9 = 54 mod 9 = 0 in your message.

  4. How to submit: post the message to the message board on the HACQIT cluster. You need not turn anything in via handin.

Due Date

This is due on Tuesday, January 22, at noon.

 


ECS 153, Introduction to Computer Security
Winter Quarter 2002
Email: [email protected]