Lecture 07 - Security in Ordinary OS

Question 1

Root User

Answer 1

System principal with unrestricted access

Question 2

Setuid

Answer 2

Switching to root user for system services

Question 3

Labeling State

Answer 3

Ad hoc system for associating processes with identities

Question 4

Primary Group

Answer 4

Main group defined in /etc/passwd for users

Question 5

Authentication Process

Answer 5

Login, password encryption, and user identity setup

Question 6

UID Transitions

Answer 6

Complex transitions among UIDs in UNIX

Question 7

UNIX Objects Representation

Answer 7

Files representing various system objects in UNIX

Question 8

Mode Bits

Answer 8

Permissions for owner, group, and others in UNIX

Question 9

File Permissions

Answer 9

Control read, write, execute access for owner, group, others

Question 10

Chroot

Answer 10

Confining a process to a specific file system subtree

Question 11

Confused Deputy Problem

Answer 11

Misuse of authority by a program, like overwriting system files

Question 12

Mount Vulnerabilities

Answer 12

Security issues related to mounting filesystems

Question 13

/tmp Vulnerability

Answer 13

Potential attacks by creating files in shared spaces like /tmp

Question 14

Snort

Answer 14

Free Intrusion Detection System detecting network attacks

Question 15

Nessus

Answer 15

Security scanner probing system and app vulnerabilities