You are here: silicon.com > Resources > White Papers > Desktops, Laptops and OS > Desktop Client OS > Linux - Open Source

Linux - Open Source White Papers

An Experiment in Forensics Reveals Attackers' Techniques

Overview Around midnight of November 7, 2000, a Linux server was broken into. In and of itself, this event was nothing special -- systems get hacked all the time. What made this attack different were the forensic dissections that followed.
The Linux system in question had been setup by the Honeynet Project, a coalition of security professionals interested in learning and in sharing what they learn about scanning and attacks. To this end, an ID (Intrusion Detection) system was set up to collect network traces of scans and attacks, and monthly challenges, along the lines of "identify the scanning tool" or "name that hack". When a Linux system was attacked and thoroughly subverted only two and a half days after it was installed, the system itself became The Forensic Challenge.
The official results of the challenge can be viewed at the Honeynet Project Web site (see Resources). In this article, I go through my own process of analysis of the attack, and what the attacked installed or otherwise modified the victim system, with the added insights of Dave Dittrich, the Senior Security Engineer at the University of Washington. What the attacker did after the initial exploit is even more interesting than the attack itself.

Further White Paper Details
Publisher	Spirit.com	File Format	HTML
Date Published	May 2001	Downloads	12
Format	White Papers
Topics	Linux - Open Source, Anti-Hacking, SSL - TLS

Did you find this white paper useful? 1 out of 2 users found this white paper useful

Intel Tools for Thread-Oriented Development on Linux

Publisher:
Intel

Web Hosting Company Easily Deploys New Server Solution on a Multiplatform Network

Publisher:
Microsoft

Tags:
customer support services

Business Integration Technology Case Study: Novus International

Publisher:
Business Integration Technology

Live From Redmond: Visual WebGui: Silverlight for Line-of-Business Application

Publisher:
Microsoft Tips

Tags:
graphics applications

Live From Redmond: Visual WebGui: An Enterprise AJAX Application in 20 Minutes

Publisher:
Microsoft Tips

Tags:
programming languages

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Linux - Open Source White Papers

An Experiment in Forensics Reveals Attackers' Techniques

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific