Next Meeting
Mtg. Schedule
Presentations
Talks / Presentations
Local
Remote
Meeting Notes
Meeting 44 - Jul.12.05
Meeting 43 - Jun.14.05
Meeting 42 - May.10.05
Meeting 41 - Apr.12.05
Meeting 40 - Mar.08.05
Meeting 39 - Feb.08.05
Meeting 38 - Jan.11.05
Meeting 37 - Dec.14.04
Meeting 36 - Nov.09.04
Meeting 35 - Oct.12.04
Meeting 34 - Sep.14.04
Meeting 33 - Aug.10.04
Meeting 32 - Jul.13.04
Meeting 31 - Jun.08.04
Meeting 30 - May.11.04
Meeting 29 - Apr.13.04
Meeting 28 - Mar.09.04
Meeting 27 - Feb.10.04
Meeting 26 - Jan.13.04
Meeting 25 - Dec.09.03
Meeting 24 - Nov.11.03
Meeting 23 - Oct.14.03
Meeting 22 - Sep.09.03
Meeting 21 - Aug.12.03
Meeting 20 - Jul.08.03
Meeting 19 - Jun.10.03
Meeting 18 - May.13.03
Meeting 17 - Apr.08.03
Meeting 16 - Mar.11.03
Meeting 15 - Feb.11.03
Meeting 14 - Jan.14.03
Meeting 13 - Dec.10.02
Meeting 12 - Nov.12.02
Meeting 11 - Oct.08.02
Meeting 10 - Sep.10.02
Meeting 9 - Aug.13.02
Meeting 8 - May.14.02
Meeting 7 - Apr.09.02
Meeting 6 - Mar.12.02
Meeting 5 - Feb.12.02
Meeting 4 - Jan.08.02
Meeting 3 - Dec.11.01
Meeting 2 - Oct.23.01
Meeting 1 - Sep.06.01
December 11, 2001
Protective Life
Hosted by Todd Bailey at Protective Life - 28 in attendanceAfter some Chapter Business and a discussion of Current Security Events, we moved into our program:
Joe Popinski spoke to us on Network Security Reviews Made Easy, giving a six step process for running the assessment. A handout was provided detailing the six steps. I know that I will benefit from some of the "thinking like a business project" aspects, rather than having Network Security Assessment be "something the security geeks do".
Chris Green gave a great presentation on Network Security Assessment Tools, sharing some experiences regarding how he uses the tools at UAB.
Marty Bostick ended our meeting with a talk on SQL Server Insecurity, including a demonstration which exploited a vulnerable SQL Server. If an SQL server is set up using all "default" configurations, the userid "sa" is available with no password! In addition, improperly coded HTML forms leave SQL-based scripts open to "SQL Injection Attacks". Marty discussed removing unnecessary stored procedures, such as "xp_cmdshell", and making sure that your firewall doesn't allow open access to port 1433, the SQL service port. After discussing these issues, Marty attached to an SQL server and used the above methods to open a "NetCat" window, allowing himself to telnet in to the server and get a DOS prompt, as Administrator! He has promised a follow-up document.