• Home

  • Technology

  • hashdays 2012 Lightning Talk - Holistic Server Security

If you can't read please download the document

hashdays 2012 Lightning Talk - Holistic Server Security

Embed Size (px)

Citation preview

Holistic Server Security

hashdays 2012

Lightning Talk by Sean Rtschi

Why are you doing this to us?

Overview

Why are you doing this to us?

Who am I?

Network

Hardening

Patch Management

Log Reviews

Backup Management

Last thoughts

Outro

Who am I?

Sean Rtschi

Security Consultantscip AG: www.scip.ch

Web: www.5e4n.ch

Twitter: @0xSR

Previous experience as
System Engineer

No previous experience as a
speaker at a con

This presentation was thrown together very quickly, so don't expect any miracles

Network

Network

Start filtering here anything that stops here doesn't bother the servers

Network segmentation

Use firewalls according to concept

Do firewall rule reviews remember Marcs talk from yesterday?

Don't overcomplicate things KISS

Hardening

Hardening

Read the documentation

Research if you don't understand config options

Use ACLs on multiple levels reduce to the max

Do periodic reviews one per month/year

Did I mention you should read the documentation?

Patch Management

Patch Management

Keep to vendor patch cycles

Keep up to date if there are no vendor cycles remember Jonathans talk?

Categorise patches

Test patches in important environments if you have time

Research if patches add/change/remove config options remember the hardening?

Enforce patching on clients

Log Reviews

Log Reviews

Automate reviews and corresponding actions Remember the Selfdefending Databases talk?

Consider correlations

Escalation process

Do manual checks periodically

Many programs use different log formats

Periodically review the log formats

Backup Management

Backup Management

Dedicated machine

Automate backups

RAID is not a backup

Restrict backup machine access to necessity

If possible, restrict remote access to the backup machine

Make sure that the backups can be restored
periodic tasks

Consider backup medium storage and encryption

Last thoughts

Last thoughts

Malware protection

Hardware disposal

High availability

Redundancy

Capacity planning

User management

Awareness training

Etc...

Outro

Outro

Thanks to Infosec Reactions for the pics

Come speak to me if you have any further thoughts on this topic


Breaking SAP portal (HashDays)

Breaking SAP portal (HashDays)

Software
Holistic Education for Holistic Behaviourweb.univ-pau.fr › ~bricage › slidesplanches › HSSengineering... · 2011-05-28 · Holistic!Education!for!Holistic!Behaviour ENGINEERING

Holistic Education for Holistic Behaviourweb.univ-pau.fr › ~bricage › slidesplanches › HSSengineering... · 2011-05-28 · Holistic!Education!for!Holistic!Behaviour ENGINEERING

Documents
LIGHTNING HOW LIGHTNING HURTS US

LIGHTNING HOW LIGHTNING HURTS US

Documents
Protection against lightning Lightning Arrestor

Protection against lightning Lightning Arrestor

Engineering
Such a weird Processor: messing with opcodes (...and a little bit of PE) (Hashdays 2011 : complete slides, with notes)

Such a weird Processor: messing with opcodes (...and a little bit of PE) (Hashdays 2011 : complete slides, with notes)

Technology
hashdays 2011: Christian Bockermann - Protecting Databases with Trees

hashdays 2011: Christian Bockermann - Protecting Databases with Trees

Technology
2016: THE YEAR OF LIGHTNING - Salesforce.com · 2018-01-09 · 2016: THE YEAR OF LIGHTNING. Introducing Sales Cloud Lightning . and Service Cloud Lightning. ... apps. Lightning connects

2016: THE YEAR OF LIGHTNING - Salesforce.com · 2018-01-09 · 2016: THE YEAR OF LIGHTNING. Introducing Sales Cloud Lightning . and Service Cloud Lightning. ... apps. Lightning connects

Documents
Lightning research in Colombia: Lightning parameters

Lightning research in Colombia: Lightning parameters

Documents
LIGHTNING FIRES AND LIGHTNING STRIKESLightning Fires, 1/08 1 NFPA Fire Analysis and Research, Quincy, MA Lightning Fires and Lightning Strikes 31,400 lightning fires, on average, were

LIGHTNING FIRES AND LIGHTNING STRIKESLightning Fires, 1/08 1 NFPA Fire Analysis and Research, Quincy, MA Lightning Fires and Lightning Strikes 31,400 lightning fires, on average, were

Documents
Technical Data Lightning · Specifications Buck Dimensions Technical Data Lightning Lightning LS Lightning LS2 Lightning LS1 Puts The Power In Your Hand Only 75 Square Feet Only 31

Technical Data Lightning · Specifications Buck Dimensions Technical Data Lightning Lightning LS Lightning LS2 Lightning LS1 Puts The Power In Your Hand Only 75 Square Feet Only 31

Documents
Lightning Protection Lightning Protection Application Guide

Lightning Protection Lightning Protection Application Guide

Documents
LIGHTNING FIRES AND LIGHTNING STRIKES

LIGHTNING FIRES AND LIGHTNING STRIKES

Documents
hashdays 2011: Sniping Slowloris - Taking out DDoS attackers with minimal harm to your users

hashdays 2011: Sniping Slowloris - Taking out DDoS attackers with minimal harm to your users

Technology
hashdays 2011: Tobias Ospelt - Reversing Android Apps - Hacking and cracking Android apps is easy

hashdays 2011: Tobias Ospelt - Reversing Android Apps - Hacking and cracking Android apps is easy

Technology
Holistic Grazing Planning and Reciprocal grazing ...vsf-international.org/wp...Holistic-management-and... · Introduction to the Holistic Management Approach Holistic Management Planned

Holistic Grazing Planning and Reciprocal grazing ...vsf-international.org/wp...Holistic-management-and... · Introduction to the Holistic Management Approach Holistic Management Planned

Documents
LIGHTNING & LIGHTNING PROTECTION - ITS … · lightning & lightning protection its heartland conference march 27, 2013 bud vansickle lightning protection institute ... lpi 175: lightning

LIGHTNING & LIGHTNING PROTECTION - ITS … · lightning & lightning protection its heartland conference march 27, 2013 bud vansickle lightning protection institute ... lpi 175: lightning

Documents
Electricity Lightning Lightning, Electricity Lightning ...kestrel.nmt.edu/~sessions/phys189/ab_ch11.pdfElectricity Lightning Thunderstorms Tornadoes Electricity Fundamentals of electricity

Electricity Lightning Lightning, Electricity Lightning ...kestrel.nmt.edu/~sessions/phys189/ab_ch11.pdfElectricity Lightning Thunderstorms Tornadoes Electricity Fundamentals of electricity

Documents
Lightning Protection Systems - Akihito Shigenoakihito-shigeno.com/files/Lightning_20Protection_20Systems_202005.pdf · Lightning Protection Systems I. What is Lightning/Lightning

Lightning Protection Systems - Akihito Shigenoakihito-shigeno.com/files/Lightning_20Protection_20Systems_202005.pdf · Lightning Protection Systems I. What is Lightning/Lightning

Documents
LIGHTNING - downloads.leica-microsystems.com TCS SP8/Publicatio… · LIGHTNING White Paper, September 2018 | 5 LIGHTNING - Adaptive Deconvolution The LIGHTNING deconvolution approach

LIGHTNING - downloads.leica-microsystems.com TCS SP8/Publicatio… · LIGHTNING White Paper, September 2018 | 5 LIGHTNING - Adaptive Deconvolution The LIGHTNING deconvolution approach

Documents
Lightning: Principles, Instruments and Applications · Lightning: Principles, Instruments and Applications Review of Modern Lightning Research Lightning represents a natural phenomenon

Lightning: Principles, Instruments and Applications · Lightning: Principles, Instruments and Applications Review of Modern Lightning Research Lightning represents a natural phenomenon

Documents
hashdays 2011: Jean-Philippe Aumasson - Cryptanalysis vs. Reality

hashdays 2011: Jean-Philippe Aumasson - Cryptanalysis vs. Reality

Technology
HOLISTIC EDUCATION: IMPLEMENTING AND MAINTAINING A ... · HOLISTIC EDUCATION: IMPLEMENTING AND MAINTAINING A HOLISTIC TEACHING PRACTICE ... IMPLEMENTING AND MAINTAINING A HOLISTIC

HOLISTIC EDUCATION: IMPLEMENTING AND MAINTAINING A ... · HOLISTIC EDUCATION: IMPLEMENTING AND MAINTAINING A HOLISTIC TEACHING PRACTICE ... IMPLEMENTING AND MAINTAINING A HOLISTIC

Documents
hashdays 2011: Felix 'FX' Lindner - Targeted Industrial Control System Attacks - Lessons from Stuxnet

hashdays 2011: Felix 'FX' Lindner - Targeted Industrial Control System Attacks - Lessons from Stuxnet

Technology
CONTINUING STUDIES INTO NEW LIGHTNING PHENOMENA Documents/Scientific... · Keywords: Lightning phenomena, lightning hazards, lightning protection 1. INTRODUCTION Lightning presents

CONTINUING STUDIES INTO NEW LIGHTNING PHENOMENA Documents/Scientific... · Keywords: Lightning phenomena, lightning hazards, lightning protection 1. INTRODUCTION Lightning presents

Documents
HOLISTIC NATURAL HEALTH & HEALING & HOLISTIC NUTRITION ... · HOLISTIC NATURAL HEALTH & HEALING & HOLISTIC NUTRITION & SPORTS NUTRITION We offer a highly sophisticated Sports Certification

HOLISTIC NATURAL HEALTH & HEALING & HOLISTIC NUTRITION ... · HOLISTIC NATURAL HEALTH & HEALING & HOLISTIC NUTRITION & SPORTS NUTRITION We offer a highly sophisticated Sports Certification

Documents
HOLISTIC APPROACHES - SDERA · HOLISTIC APPROACHES Holistic approaches recognise that Recognise that children’s learning is integrated and interconnected when ... holistic learning

HOLISTIC APPROACHES - SDERA · HOLISTIC APPROACHES Holistic approaches recognise that Recognise that children’s learning is integrated and interconnected when ... holistic learning

Documents
Main catalog hélita lightning protection systems External ... · ABB External lightning protection | 1 Lightning mechanism and location 2 Lightning protection technologies 3 Lightning

Main catalog hélita lightning protection systems External ... · ABB External lightning protection | 1 Lightning mechanism and location 2 Lightning protection technologies 3 Lightning

Documents
hashdays 2011: Andrei Costin - Hacking Printers: 10 years of public research and lessons learned

hashdays 2011: Andrei Costin - Hacking Printers: 10 years of public research and lessons learned

Technology
hashdays 2011: Ange Albertini - Such a weird processor - messing with x86 opcodes (and PE files too...)

hashdays 2011: Ange Albertini - Such a weird processor - messing with x86 opcodes (and PE files too...)

Technology
BEST PRACTICES WITH POWER - MikroTikmum.mikrotik.com/presentations/ZA13/chris.pdf · BEST PRACTICES WITH ... Lightning. Lightning. Lightning. Lightning. Power Protection Surge What

BEST PRACTICES WITH POWER - MikroTikmum.mikrotik.com/presentations/ZA13/chris.pdf · BEST PRACTICES WITH ... Lightning. Lightning. Lightning. Lightning. Power Protection Surge What

Documents