Top: Publications: Papers

Intrusion_Detection

• A Simple Active Attack Against TCP
  Joncheray, Laurent; 1995; GZip'd Postscript; 90k ``This paper describes an active attack against TCP which allows re-direction (hijacking) of the TCP stream.
  http://firewall.com/papers/tcp_attack.ps.gz
• A Unix Network Protocol Security Study: NIS
  Hess, Safford, & Pooch; date unknown; GZip'd Postscipt; 20k ``Outlines NIS and its design faults regarding security.
  http://firewall.com/papers/nis_paper.ps.gz
• A Weakness in the 4.2BSD Unix TCP/IP Software
  Morris, Robert T; 1985; GZip'd Postscript; 10k ``This paper describes the much ballyhooed method by which one may forge packets with TCP/IP. Morris wrote this in 1985. It only took the media 10 years to make a stink about it!
  http://firewall.com/papers/bsd_tcpip_weakness_morris.ps.gz
• An Advanced 4.3BSD IPC Tutorial
  Berkeley CSRG; date unknown; GZip'd Postscript; 60k ``This paper describes the IPC facilities new to 4.3BSD. It was written by the CSRG as a supplement to the manpages.
  http://firewall.com/papers/ipc_tutorial.ps.gz
• An Evening with Berferd
  Cheswick, Bill; 1991; GZip'd Postscript; 32k ``A cracker from the Netherlands is "lured, endured, and studied."
  http://firewall.com/papers/berferd_cheswick.ps.gz
• COPS and Robbers
  Farmer, Dan; 1991; ASCII Text ``This paper discusses a bit of general security and then goes into detail regarding Unix system misconfigurations, specifically ones that COPS checks for
  http://firewall.com/papers/cops_dan_farmer.txt
• Covering Your Tracks
  Phrack Vol. 4, Issue #43; GZip'd Postscript; 16k ``A Phrack article describing the unix system logs and how it is possible to reduce the footprint and visibility of unauthorized access.
  http://firewall.com/papers/phrack_tracks.ps.gz
• Cracking Shadowed Password Files
  Phrack Vol. 5 Issue #46 GZip'd Postscript; 19k ``A Phrack article describing how to use the system call password function to bypass the shadow password file.
  http://www.deter.com/unix/papers/phrack_shadow_crack.ps.gz
• Design of a Secure Internet Gateway
  Cheswick, Bill; 1990; GZip'd Postscript; 17k ``Details the history and design of AT&T's Internet gateway.
  http://firewall.com/papers/gateway_cheswick.ps.gz
• Foiling the Cracker
  Klein, Daniel; GZip'd Postscript; 38k ``A Survey of, and Improvements to, Password Security. Basically a treatise on how to select proper passwords.
  http://www.deter.com/unix/papers/passwords_klein.ps.gz

[ 1 2 3 ]