Toorcon 7

URLs to Check

Jay Beale - Bastille

  • PCs are a target of opportunity, window of vuln before patches applied
  • always reacting to incidents, metasploit injects into running dlls
  • need for Hardening: 1) least privilege 2) minimalism
  • lots of templates, easy to do, bastille just puts it all in one: an EDUCATIONAL product
  • can create and copy policy files over to other systems to enforce and score/weight
  • has “audit” function - definible by anyone (bastille -a)
  • good no-touch inspection of security of system, will not make changes in audit mode
  • weighted score - psychological power, an incentive, and competitiveness

Andrea Bittau - Single Pkt Frag Attack

 
cons/tc7.txt · Last modified: 2005/12/29 10:54 by bw
 
Recent changes RSS feed Creative Commons License Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki