Re: Lab setup for security learning



Wouldn't iptables on linux and ICF on windows suffice for the
firewall. Or should one test against something like zone alarm since
it would be harder than a native firewall? A hardware firewall is not
an option we have? Could you give me a little more detail on point d?

Thanks
Ankur

On 1/12/07, Francois Yang <francois.y@xxxxxxxxx> wrote:
Here are my suggestions.
a. can you setup vmware on one or two of the current machines?
that will give you the options to mess with the guess OS and roll back
if you break anything without having to reload everytime. will save
you alot of time. Also if will allow you to setup alot more Os's to
play with rather than being limited to the three you currently have.

b. You might have to add, hardware/software firewall/router if
possible to mimic real life.

d. I would say, setup a network where you can simulate how an attacker
could own a box on the same network and how they would do it from the
outside thru a service such as http.

I think something like this should be a good start.


On 1/12/07, Ankur Jindal <divinepresence@xxxxxxxxx> wrote:
> Hello all
> Me and a couple of friends wish to set up a lab of our own for
> learning network security. I'd like some suggestions about the setup
> of the lab with respect to
>
> a) The number of machines (We only have 3)
> b) Networking components (we have a 4 port switch and a 4-port hub)
> c) OS/Softwares (Win XP, Fedora Core 2, Backtrack (for all testing),
> windows disassemblers etc.)
> d) Setup architecture (both physical and software)
>
> Any suggestions for above are welcome. I'd appreciate it if you can
> provide any links/docs/tutorials etc.
>
> Thanks
> Ankur
>
> ---------------------------------------------------------------------------
> This list is sponsored by: ByteCrusher
>
> Detect Malicious Web Content and Exploits in Real-Time.
> Anti-Virus engines can't detect unknown or new threats.
> LinkScanner can. Web surfing just became a whole lot safer.
>
> http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
> ---------------------------------------------------------------------------
>
>


---------------------------------------------------------------------------
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
---------------------------------------------------------------------------