LISA 98 - M3 Tutorial, Monday, December 7

12TH SYSTEMS ADMINISTRATION CONFERENCE (LISA '98) - Dec 6-11, 1998 - Marriott Copley Place Hotel, Boston, Massachusetts

MONDAY

M3 UNIX Security Tools: Use and Comparison
Matt Bishop, University of California, Davis

Who should attend: UNIX System, Network, and Security Administrators who need to better understand the various security tools currently available.

The goal of this course is to assist UNIX security administrators, and other interested users, in locating and using publicly available programs to improve the security of their system. This course will compare the uses and drawbacks of several different programs, with an emphasis on when to use which.

Topics include:

   Tool checking and analysis: what to look for, how to analyze a tool, checking downloaded tools for security problems

   Static analysis tools: file system auditing tiger, COPS)

   Network analysis and security tools: monitors (nfsbug, nfswatch), ISS, SATAN, Gabriel, Courtney

   Tools for privilege: managing shells (lsu)

   Tools for logging and log analysis tools (swatch, logcheck)

   Libraries (msystem, trustfile)

   Tools for authentication: proactive password changers (shadow, crack)

Matt Bishop began working on problems of security in computer systems and UNIX systems in particular at Purdue where he earned his doctorate. He subsequently worked at the Research Institute for Advanced Computer Science at NASA and taught courses in operating systems, computer security and software engineering at Dartmouth College. Matt chaired the first USENIX Security Workshop and plays an active role in identifying and thwarting security threats. Matt has been on the faculty at UC Davis since 1993.


		Conference Index Events Calendar USENIX home