Part I
Read Chapter 8 of How to Do Everything: Ubuntu by Jeffrey T. Orloff. You may need to modify slightly for your distro. You might also have trouble finding… try au: Jeffrey T. Orloff and choose I-share libraries.
1) Implement the section in Chapter 8 titled “Installing Antivirus Software”.
2) Take screen shots.
3) If necessary, report what went wrong.
Download the “virus” from [login to view URL] – try it on both your win7 machine and your Linux machine.
Part II
Explore the window 2008/2012 security configuration wizard - [login to view URL] In particular, look at the services your machine is running, use the wizard and configure your server for just the roles we defined (AD-DS and DNS), then go back and look at the services again. Any changes?
Part III
Read Chapter 1 of Group Policy: Fundamentals, Security, and the Managed Desktop by Jeremy Moskowitz. In Chapter 1, start at “Our own group policy examples.” You might need to refer back to earlier sections of Chapter 1, although Moskowitz writes with a fair amount of redundancy. We are not going to be using an Admin machine; instead, we will work directly on our DC.
Please read the entire section; however, implement a policy at the domain level: “Applying Group Policy Objects to the Domain Level”. (Don’t worry at this point about the site and OU examples Moskowitz presents.) Also, the example may not work exactly as advertised – for example, I don’t have an option to choose “Personalization”. Instead, create your own policy – I used “Display” and enabled “Remove Display in Control Panel”. Once you have your new policy in place, log on to your Win7 machine and get a screen shot showing your policy in place.
Part IV
Run some vulnerability scanning software on your Linux machine – in particular, follow the howto at [login to view URL] (There is a link at the top to a book chapter which you might find useful.) You may need to install some packages (using the add/remove software tool) to follow the instructions. I am less interested in snort than in OSSEC, so you might want to follow the tutorial at [login to view URL] for installing apache, php and MySQL – you can ignore the part about virtual hosting if you wish, as well as information about configuring php.ini. Do create the test php file and look at it in Apache. Install the OSSEC wui as described in [login to view URL]:Install. Take a screenshot of your success.