ConsciousVibes.com = CVibes.net

Home | Links ( Motorcycles, Computers )

NYC College of Technology

CS 510: Computer Security (Spring 2007)

	Announcements
	Assignment Requirements
	Required Texts
	Assignments : Jump to: February, March, April, May
	Recommended Web Sites and Books
	Login to Blackboard : Need a CUNY Portal ID? Then Register Now

Announcements

Required for all Assignments

Required Text

Microsoft Windows XP Networking and Security Inside Out Ed Bott and Carl Siechert ISBN: 0-7356-2042-3 Publish date: 9/28/2005 Microsoft Press On-Line Forum Available from: Amazon.com - QuantumBooks.com - BarnesAndNoble.com

Reference Texts

Security in Computing, 3rd Edition Charles P. Pfleeger, Shari Lawrence Pfleeger ISBN: 0-13-035548-8 Publish date: Dec 2, 2002 Books by Charles P. Pfleeger and Shari Lawrence Pfleeger Prentice Hall Professional

Assignments

In Class

• The Class Web page is located at CVibes.net. (No www. !!!)
• Blackboard
  • Exams are administered via Blackboard
  • Make sure that you know your CUNY Portal user name and password. If you don't already have a CUNY Portal ID, then Register Now.
  • Log into Blackboard to verify that you have access.
• What is computer security?
• Backup Your Data
  • How often?
  • What do you backup?
  • Verify that media is readable

Read

• Security in Computing, 3rd Edition, Chapter 1, pages 1 to 22. o
• Computer Security at WikiPedia.com
• Securing the cloud
  Digital security, once the province of geeks, is now everyone's concern. But there is much more to the problem -- or the solution -- than mere technology.
• Principle of Least Privilege:
  The principle of least privilege requires that a user be given no more privilege/access than necessary to perform a job.
• Applying the Principle of Least Privilege to User Accounts on Windows XP
• HOW TO: Create a Custom Default User Profile

In Class

• Threats caused by Malware (Spyware, Adware, Virus, Trojan horse, rootkit, ActiveX, JavaScript)
• Teacher guilty in Norwich porn case
• RootkitRevealer is a rootkit detection utility. Its output lists Registry and file system API discrepancies that may indicate the presence of a user-mode or kernel-mode rootkit.
• Internet Explorer vs Mozilla Firefox
• Protect against JavaScript exploits: and use the NoScript add-on.
• Reference Web sites: Webopedia.com and WikiPedia.org
• Firewalls (ports: open, closed, stealthed, inbound traffic, outbound traffic)
• Use ShieldsUp! to test your firewall.
• NAT (Network Address Translation) is a firewall
• Verify that the CD's and DVD's you burn/write are 100% readable using CD-DVD Speed. (Use the ScanDisc option)
• Universal Imaging Utility (UIU) , from the programmers who created Ghost, is used in combination with SysPrep to create Ghost images that are compatible with a variety of computer types.

February

Read

• Finish reading Chapter 1 in Security in Computing, 3rd Edition. o
• EFS (Encrypting File System)
• Protecting against EFS based attacks
  (Trojan utilizes Encrypting File System (EFS) to Protect Itself)
• Knowledge Base Articles on EFS
• Listen to the Security Now! Netcast/Podcast with Leo Laporte and Steve Gibson.
  I recommend that you start from episode #1 and work your way up.

In Class

• Physical Computer Security
• What is Social Engineering? Why is it a security risk?
• CERT Coordination Center is good place to learn about the security issues that face our computer systems.
• How and Why You Should Stealth Port 113 on Your Router

Assignment 1: Due: Wed. February 7, 2007, 8PM

Do

• Chapter 1 Exercises, Questions 1-21 from Security in Computing, 3rd Edition (pgs. 32-33). Due at 8 PM.
• Submit a typed hardcopy at the beginning of class.
• Use this Microsoft Word Answer Sheet to record your answers.
• Print out your assignments before you come to class.
• Print a 2nd copy for yourself to use during class. (Computers will be turned off.)
• Do NOT type your answers in all uppercase.
• Make sure that the correct Assignment number is on your paper.
• E-mail your assignment only if you are going to be absent, and before 4PM.

• Use ShieldsUp! to test your firewall.
  • Submit a typed hardcopy of the following:
    1. The results of your first tests. e.g. Which of your ports were open or closed, if any.
    2. The results of your tests, after you've closed any open ports, and "stealthed" any closed ports.

In Class

• Broadband Reports is a good place to learn about issues that affect specific networking hardware and software, and to get help.
• Microsoft Shared Computer Toolkit

Read

• UNSW Mac caught serving fake Microsoft patch
• Samsung Web site hosts password stealing trojan
• 'Human firewall' a crucial defence

• Study for Exam 1

Exam 1

Covering:

• Chapter 1 of Security in Computing, 3rd Edition
  • All the terminology from the chapter. (All the words and phrases that are bold.)
  • Chapter 1 Exercises, Questions 1-21 (pgs. 32-33)
• Principle of Least Privilege

Important! The test will be administered via Blackboard. Make sure that you can access your Blackboard account at least 2 days before, and on the day of the exam, before class.

Quiz 1 is Due

(Distributed after Exam on 2/14/2007)

• You must enter all of your answers for Quiz 1 into Blackboard by 7PM 2/15/2007.
• Your answers will only be accepted and graded by submitting them via Blackboard.
• This Quiz will not be accessible after 7PM 2/15/2007. So you must log into Blackboard and start the quiz before 7PM. As long as you've started the quiz by 7PM, you'll have an hour to complete it.
• Bring your test paper and answers to class tonight.
• If you do your best, you should get 90% or better on this quiz, since you have your notes and the book to double check all of your answers, before entering them into Blackboard.
• Pay attention to your grammar and spelling.
• Complete the quiz on paper before logging into Blackboard, so that all you have to do is copy your answers into Blackboard.
• If you have a technical issue with the quiz, e-mail me so that I can reset your attempt.

In Class

• Exam 1 Q & A (Question & Answer)
• File Systems: FAT-32 vs NTFS
• Access Control List (ACL)

Read

• Chapter 1 in Microsoft Windows XP Networking and Security Inside Out.
• Mistakes People Make that Lead to Security Breaches

In Class

• Encryption
• PDF (Portable Document Format) is encapsulated PostScript
• Microsoft Windows Defender Integer Overflow in Parsing PDF Files Lets Remote Users Execute Arbitrary Code
• New Zero-Day Word Vulnerability Surfaces
• ATM Hack Uncovered
• Pretty Good Privacy (PGP)
• Hushmail messages, and their attachments, are encrypted using Open PGP standard algorithms.

Read

• Chapter 2 in Microsoft Windows XP Networking and Security Inside Out.

Assignment 2: Due: Mon. February 26, 2007, 8PM

• Do Assignment 2 (Encryption)
  Submit a typed hardcopy at the beginning of class, 8 PM.
  (E-mail your assignment only if you are going to be absent, and before 6PM.)  
  • Justify your answers by describing the various tests you performed and the results you obtained for those tests.
  • You must include your [substitution key] for each question.
  • Print two copies of your assignment before you come to class at 8PM. One that you hand in and the other you use for when we go over the assignment in class.
  • Hint for #1:
    • The last word of the encrypted text is more than three characters. In fact it is a 5 letter word.
    • n = E
  • Hint for #2:
    • The first encrypted word is a 5 letter word.
  • Hint for #3:
    • The first encrypted word is a 3 letter word.
    • The second word is a 4 letter word.
    • And, u = O
  • Hint: Caesar Cipher Decoder Strips

Read

• Chapter 2 in Microsoft Windows XP Networking and Security Inside Out.

In Class

• Dolphin Stadium Site Infected With Malware
• Blocking Unwanted Parasites with a Hosts File
  • You can use a HOSTS file to block ads, banners, 3rd party Cookies, 3rd party page counters, web bugs, and even most hijackers.
  • Listen to SecurityNow, Episode 45.
• Detecting, Analyzing, and Exploiting Intranet Applications using JavaScript
• Symantec Ghost Solution Suite : Documentation
• Who is a hacker?
• CompTIA Security+ Certification
• CompTIA Network+ Certification
• Practical Aspects of Modern Cryptography, Winter 2006: Lecture Slides and Video Archives

Read

• Time Change to Bring Computer Glitches

Read

• Chapter 3 in Microsoft Windows XP Networking and Security Inside Out.

Links

• Security Certifications
  • Certified Information Systems Security Professional (CISSP)
  • CISSP Certification Details
  • International Information Systems Security Certification Consortium
  • Security Certification Essentials
  • Microsoft's IT Training and Certification Resources
• Ethernet Numbers

March

In Class

• Firewalls
  • Network Address Translation (NAT) (pg 7)
  • An Internet standard that enables a local-area network (LAN) to use one set of IP addresses for internal traffic and a second set of addresses for external traffic.
  • A NAT device usually uses a single IP address to communicate with the Internet
  • The NAT device translates each private IP address into its public address, never exposing your computers’ addresses to the outside network.
  • Packet Filtering
  • block or allow transmissions depending on the content of each packet that reaches the firewall.
  • Stateful-Inspection Packet Filtering (p. 11)
  • Three-Way Handshake via TCP/IP (SYN : SYN-ACK : ACK)
  • Firewall makes sure that the incoming packet has the correct port for the client that request the information.
  • Application Filtering
• Bootable Live CD's can be used to:
  • Test hardware
  • Troubleshoot network
  • Recover files from hard disc drive
  • Scan system for viruses and rootkits
• Seven Threats to Your Computer's Security . . . p. 29
  • Threat #1: Physical Attacks
  • Threat #2: Pilfered Passwords
  • Threat #3: Nosy Network Neighbors
  • Threat #4: Viruses, Worms , and Other Hostile Programs
  • Threat #5: Outside Intruders and Trojan Horse Takeovers
  • Threat #6: Invasions of Privacy
  • Threat #7: E-Mail Threats
• Microsoft Management Console (MMC)

Links

• Bootable Live CD's / DVD's
  • What is a LiveDistro?
  • What are ISO Image Files and how do I use Them?
  • KNOPPIX Live CD
  • Bart's Preinstalled Environment (BartPE) bootable live windows CD/DVD
• Is Symantec's Vista Security Assessment Credible?
• Windows Secrets Newsletter

In Class

• Chapter 3 in Microsoft Windows XP Networking and Security Inside Out.
• Exam 2 Review

Links

• 2007 A Hacking Odyssey: Part 1 - Reconnaissance
• 2007 A Hacking Odessey: Part 2 - Network Scanning & Nmap

Exam 2

Covering:

• Chapters 1, 2, & 3 (up to p. 63) of Microsoft Windows XP Networking and Security Inside Out.
• Chapter 1 of Security in Computing, 3rd Edition
  • All the terminology from the chapter. (All the words and phrases that are bold.)
  • Chapter 1 Exercises, Questions 1-21 (pgs. 32-33)

Important! The test will be administered via Blackboard. Make sure that you can access your Blackboard account at least 2 days before, and on the day of the exam, before class.

Quiz 2 is Due

(Distributed after the Exam on 3/12/2007)

• You must enter your answers for Quiz 2 into Blackboard by 6PM 3/14/2007.
• Your answers will only be accepted and graded by submitting them via Blackboard.
• This Quiz will only be accessible from 6AM 3/13/2007 to 6PM 3/14/2007. So you must log into Blackboard and start the quiz before 6PM 3/14/2007. As long as you've started the quiz by 6PM, you'll have an hour to complete it.
• Bring your test paper and answers to class tonight.
• Try your best to get 90% or better on this quiz, since you have your notes and the book to double check all of your answers, before entering them into Blackboard.
• Pay attention to your grammar and spelling.
• Complete the quiz on paper before logging into Blackboard, so that all you have to do is copy your answers into Blackboard.
• If you have a technical issue accessing or completing the quiz, e-mail me so that I can reset your attempt, if necessary.

In Class

• Exam 2, Q & A
• Ensuring the Security of Files ... (p. 63)
  • Using NTFS Permissions
  • Sharing Files Over a Network (p. 65)

Links

• CNBC's Big Brother, Big Business takes an enlightening and sometimes disturbing look at how the growth of the information society may be eroding the freedoms many people take for granted.
• Port knocking : A system for stealthy authentication across closed ports.
• TrueCrypt : Free open-source disk encryption software for Windows XP/2000/2003 and Linux

Read

• Chapter 4 in Microsoft Windows XP Networking and Security Inside Out.

Links

• Disabling XP's default connection to AdHoc WiFi nodes
• Protect your laptop from ad hoc wireless networks
• Wireless Client Update for Windows XP with Service Pack 2
• Computer Virus Hijacks Modem
• A default, in computer science, refers to a setting or value automatically assigned to a computer program or device, outside of user intervention. Such settings are also called presets, especially for electronic devices.
  Default values are generally intended to make a device (or control) usable "out of the box". A common setting, or at least a usable setting, is typically assigned.
• Don't Discard Your Privacy Along With Old Drives
  • When disposing of old drives and discs, be sure to destroy the data they hold.
• Darik's Boot and Nuke (DBAN)
  • boot floppy or CD that securely wipes the hard disks of most computers
• Limitations of the FAT32 File System in Windows XP

In Class

• How to: Disable AutoPlay
• Prevent the Last Logged-in User Name From Being Displayed
• Reserving a Letter for the CD-ROM Drive
• What are ISO Image Files and how do I use Them?
• Microsoft Management Console (MMC) : Preconfigured consoles (aka Snap-ins)
  • compmgmt.msc (Computer Management Console)
  • gpedit.msc (Local Group Policy Editor)
  • services.msc
  • lusrmgr.msc (Local Users and Groups Manager)

Links

• Create an Indestructible Shared PC
• Microsoft Shared Computer Toolkit for Windows XP
• Targeting the servers :
  (AIG had a server stolen with 930,000 customer records on the system. )
• Windows XP System Tools: Microsoft Management Console (MMC)

Read

• Read Chapter 5: Securing a Shared Computer in Microsoft Windows XP Networking and Security Inside Out
• The Virus That ate DHS (Department of Homeland Security)
• Feds mandates 'secure' Windows set-up

In Class (Lab #1)

• Adding a user account with the net user command
  • with and without a password
• NET Command

Links

• Protect Your Windows Network: From Perimeter to Data
• NSA Security Configuration Guides for Operating Systems
• Researchers hack Wi-Fi driver to breach laptop
• Microsoft details network hack in Windows
• How to configure Microsoft DNS and WINS to reserve WPAD registration

Read

• Read Chapter 6: Preventing Data Loss, in Microsoft Windows XP Networking and Security Inside Out
• How I’d Hack Your Weak Passwords

In Class

• Change Access Control Lists (cacls.exe)
• TrueCrypt : Free open-source disk encryption software for Windows XP/2000/2003 and Linux
• Dateline: To Catch an ID Thief (Watch the entire episode)

April

• Study for Exam 3
• Read Chapter 6: Preventing Data Loss

• Study for Exam 3
• Read Chapter 6: Preventing Data Loss

• Study for Exam 3
• Read Chapter 6: Preventing Data Loss

Exam 3

Covering:

• Chapters 3 (from p. 63), 4, 5 of Microsoft Windows XP Networking and Security Inside Out.
• Chapter 1 of Security in Computing, 3rd Edition
  • All the terminology from the chapter. (All the words and phrases that are bold.)
  • Chapter 1 Exercises, Questions 1-21 (pgs. 32-33)
• Important! The test will be administered via Blackboard. Make sure that you can access your Blackboard account at least 2 days before, and on the day of the exam, before class.

Read

• Windows Animated Cursor Handling vulnerability - CVE-2007-0038
• An inside look into building and releasing MS07-017
• Cyber officials: Chinese hackers attack 'anything and everything'

Quiz 3 is Due

• You must enter your answers for Quiz 3 into Blackboard before 9PM 4/13/2007.
• Your answers will only be accepted and graded by submitting them via Blackboard.
• This Quiz will only be accessible from 12:05AM Thurs. 4/11/2007 to 9PM Fri. 4/13/2007.
  • You must log into Blackboard and start the quiz before 9PM 4/13/2007.
  • As long as you've started the quiz by 9PM, you'll have an hour to complete it.
• Bring your test paper and answers to class on Monday.
• Try your best to get 100% on this quiz, since you have your notes and the book to double check all of your answers, before entering them into Blackboard.
• Pay attention to your grammar and spelling.
• Tip: Complete the quiz on paper before logging into Blackboard, so that all you have to do is copy your answers into Blackboard.
• If you have a technical issue accessing or completing the quiz, e-mail me so that I can reset your attempt, if necessary.

In Class

• Exam 3 Q & A
  • Bring your Quiz 3 question sheet and a hardcopy of your answers.
• Tool turns unsuspecting surfers into hacking help
• FAQ: JavaScript insecurities
• Hackers broaden reach of cross-site scripting attacks
• Intro to Web Code Injection aka Cross-site Scripting (SecurityNow! Episode #85)

Read

• 2006 Operating System Vulnerability Summary
• Top ten things ten years of professional software development has taught me

Links

• Port Authority Database by GRC.com (Usage: grc.com/port=# , e.g. grc.com/port=53)
• U3
• PortableApps.com

Assignment 3 : Due: Wed. April 18, 2007 at 8PM

• Do an honest assessment of your personal computer to determine your backup needs, then answer the following: (Word)
  1. How much data do you have to back up?
  2. What is your most important goal?
  3. How much are you willing to spend?
  4. How important is your data?
  5. What level of hassle are you willing to endure?
     
• See pages 181 to 183 for more details on each of the above questions.
• Submit a typed hard copy containing your answers at the beginning of class.
• E-mail your assignment only if you are going to be absent, and before 6PM.

In Class

• Protecting Your Data & Backing Ups

Links

• Cross-Site Scripting (XSS)
  • SecurityNow! Episode 85: Intro to Web Code Injection
  • SecurityNow! Episode 86: Cross-Site Scripting
• RAID Tutorial
• Drive Imaging
  • Norton Ghost for Home users
  • Symantec Ghost Solution Suite for Businesses
  • Acronis True Image
• Use the [ ScanDisc ] option of Nero CD-DVD Speed to verify the CDs and DVDs you backup to are 100% readable with no errors.
• Blocking Unwanted Parasites with a Hosts File
• Open Web Application Security Project (OWASP)

Read

• Read Chapter 7 in Microsoft Windows XP Networking and Security Inside Out.

In Class

Briefcase helps keep your files updated when you use two computers by automatically synchronizing multiple copies of individual files. For example, if you use a desktop computer at home, and a laptop computer on the road, you can use Briefcase to synchronize the files that you work with both at home and on the road. Because Briefcase automatically keeps track of the relationships between multiple copies of a single file, you don't need to remember where each copy of a file is located, or which copy of the file you modified most recently.

Lab #2

• Using Briefcase to Keep Files Synchronized
• Create a Briefcase folder on your USB Flash Drive in the \Data\ directory
  • Right-click > New > Briefcase
  • Change the name to "Briefcase Test 1"
• Create a Microsoft Word Document in E:\CS510-Chin\
  • Change the name to "Test 2007-04a.doc"
• Drag files and/or directories you want to synchronize to the Briefcase
  • Drag "Test 2007-04.doc" to "Briefcase Test 1"
• Modify source file
  • Make some changes to "E:\CS510-Chin\Test 2007-04a.doc"
  • =rand()
• Update file in Briefcase
  • Right-click > Update all
    
• Automatic Updates
  • Use Windows Update to download and install security patches to your Windows Server 2003
  • Enable Automatic Updates

Links

• Langa Letter: Little-Known Options For Syncing Files In Windows
• Briefcase overview
• How To Use the Briefcase Feature in Windows XP
• Briefcase for Windows Tips
• Disable Briefcase Replication for Microsoft Access
• Briefcase Frequently Asked Questions (FAQ)

Read

• Read Chapter 12 in Microsoft Windows XP Networking and Security Inside Out.

In Class

• SQL Injection vulnerabilities (SecurityNow #87)
• Remote Access using VPN.

Lab #3

• Download Microsoft Baseline Security Analyzer
• Use MBSA to check the status of your Windows Server 2003

Links

• Windows Update Catalog
  • Download Windows update files for multiple computers and other versions of Windows.
• Microsoft Baseline Security Analyzer (o)
  • Use MBSA to detect common security misconfigurations and missing security updates on your computer systems.
• LogMeIn (Secure Remote Access via VPN, 256-bit encryption)

Lab #4

• HOW TO: Create a Custom Default User Profile in the Windows Server 2003 Family
• HOW TO: Create a Custom Default User Profile
• Customize the Default User Profile in Windows XP
• DogPile.com Search

Links

• Most Dangerous Internet Sites
• Carnivore is a surveillance tool for data networks.
• Breaking into a VPN
• Info Security Products Guide
• Visual Basic .NET 2005 Express - A "From the Ground Up" Tutorial

May

In Class

• Strong Passwords

Lab #5

• NTFS & Share Permissions

Read

• Vulnerability in RPC on Windows DNS Server Could Allow Remote Code Execution
  • Microsoft Security Response Center (MSRC)
  • FAQ: Here's the deal on the Windows DNS bug: Who's at risk, what can you do, when a patch is coming
• Tech Magazine Loses June Issue, No Backup
• 12 Ways to be a Security Idiot
• Chase discards tapes with data on 2.6M Circuit City customers
• Apple patches hack challenge's QuickTime bug
• VPN FAQ by DSLReports.com

Read

• Read Chapter 8 in Microsoft Windows XP Networking and Security Inside Out.
  • (Setting Up a Secure Home or Small Business Network)
• TSA Loses Hard Drive With Personnel Info
• Lean and Mean: 150,000 U.S. layoffs for IBM?
• Do We Really Need a Security Industry?

Links

• Jikto: With Jikto, JavaScript on a Web site can turn PCs into a bug-hunting tool.
• RFID Guardian Project
• Personal Firewall Reviews
• nonadmin : a community site for PC users who want to run without administrator privileges (also known as least-privileged user accounts or limited-user accounts).
• Aaron Margosis' "Non-Admin" WebLog
• UACBlog: The User Account Control (UAC) Weblog.

Read

• Diary of a Network Administrator
• TJX thieves exploited wireless insecurities - The hi-tech attackers that stole information on at least 45.6 million credit and debit cards from retail giant TJX Companies initially got in through a unsecured wireless connection, the Wall Street Journal reports.

Links

• Windows XP Security Checklist by LabMice.net
• Intrusion detection system
• Wireshark : Formerly Ethereal. Network protocol analyzer. Open Source. The tool of choice for network troubleshooting, protocol development, and education. Same developers, same code, different name.
• Protocol Analyzers, Diagnostics, Logging

Read

• AOL's Password Puzzler

In Class

• Data Execution Prevention (DEP)
• How DEP can protect your PC
• SecurAble - Quickly determine which state-of-the-art security features are offered by your system's processor chip.

Security Authentication Consists of

• Something you know
• Username, Password, pass phrase, PIN
• Something you have
• Smart card, dongle, RFID
• Something you are
• Finger print, hand scan, retina scan, voice recognition, face recognition

Access Control Lists (ACLs)

Use (/e) to "Edit" the ACL so that existing entries are not lost.

This is the syntax for CACLs.exe to use as not to loose any existing ACLs.

 cacls c:\download.ec /E /G Users:c

This command will edit (/e) the ACLs, rather than replace them, and recursively apply them (/t) to subdirectories.

In Class

• Blink Personal Edition is now availabe for free.
• The Microsoft VHD Test Drive Program provides customers with an enhanced server-based software evaluation experience that’s faster, better supported and more flexible. You can now access the entire catalog of pre-configured Microsoft and partner products and solutions in the VHD format and start evaluating and testing today from microsoft.com/vhd.
• Virtual PC vs. Virtual Server: Comparing Features and Uses

Final Exam Review

• Bring questions!!!

Links

• Maurice Ashley Teaches Chess (Available for $3.75 from Cyber Deals)

Final Exam

Don't be late, or you won't have enough time to complete the exam.

Comprehensive Exam consisting of 45 - 50 questions covering subjects from the previous 3 exams, plus additional material. Including but not limited to the following:

• Chapter 1 of Security in Computing, 3rd Edition (Exam 1)
  • All the key words (terminology that was bold in the chapter)
  • Exercise questions for the end of the chapter
  • Applying the Principle of Least Privilege to User Accounts
  • The four kinds of threats
  • What are the three things that a malicious attacker must have?
• Chapters 1, 2, 3, 4 & 5 of Microsoft Windows XP Networking and Security Inside Out (Exams 2 & 3)
  • What are the "Seven Threats to Your Computer’s Security"?
  • Hosts file
  • Custom Default User Profile (Lab #4)
    • Why? When? How?
  • Access Control Lists (ACLs)
  • NTFS & Share Permissions
    • See: Basic NTFS Permissions (Table 5-1) on p. 141 in MWXPN&SI
  • Administrative Shares
• Causes of Data Loss
• Password complexity requirements
• Data Execution Prevention (DEP)
• Buffer overflow / Buffer overrun
• Intrusion Detection Systems (IDS)

---

Have a Great Summer!!

---

Recommended Web Sites and Books