Index

2 Outline

3 General Principles - Defense in Depth

4 Defense in Depth

5 General Principles - Don't Trust Remote Site

6 IP

7 IP

8 IP

9 UDP

10 TCP

11 TCP

12 ICMP

13 Types of attacks:

14 Security of data communications on the 'net

15 How can we attack thee? let me count the ways...

16 TCP SYN Attack

17 TCP SYN Attack - Defense

18 TCP Spoof Attack

19 TCP Spoofing Attacks - What to do?

20 TCP Sequence Guessing Attack

21 TCP Sequence Guessing Attack - What To Do?

22 TCP Session Hijacking, Sniffing

23 Port Scanning

24 Infrastructure Attacks

25 Packet Filtering

26 Packet Filtering - What's Safe?

27 Packet Filtering - What's Safe?

28 Problem Children

29 Problem Children - Talk

30 Problem Children - IRC

31 Problem Children - Identd

32 Problem Children - FTP

33 Problem Children - RPC Services (Sun or DCE)

34 Problem Children - Rlogin, Rsh

35 Problem Children - X

36 Problem Children - UDP

37 Problem Children - ICMP

38 Problem Children - Multicast

39 Packet Filtering Considerations

40 Packet Filtering Considerations

41 Packet Filtering Considerations