Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

Security Documentation on ftp://ftp.uwo.ca/doc/nic/security

0 views

Skip to first unread message

USENET News System

unread,

Jan 15, 2007, 10:00:02 PM1/15/07

Security Documentation

$Date: 1997/05/28 14:00:45 $
$Author: reggers $

Archive-name: README
Last-modified: Wed May 28 10:00:29 EDT 1997
URL: http://www.uwo.ca/its/ftp/nic/security/README

These are various security documents, no particular order. All are excellent,
some are frightening. This is no where near complete. cert.org, which will
accept anonymous ftp, has more (including all reports of incidents). The ATT
documents came from research.att.com, most of the remainder from the CERT.

1995-96.html .......... Report to SCITS Security Group for 1995/96
AIXvsSATAN ............ Preparing your AIX System for SATAN
AUP.html .............. Acceptable Use Policy (actually an interpretation)
CERT.Security ......... CERT/CC Generic Security Information (July 2, 1992)
CRIMINAL.CODE ......... Canadian Criminal Code PART IX, s.342.1 (unauthorized
... use of computer) and PART X1, s.430 (mischief)
CRIMINAL.CODE.html .... Canadian Criminal Code PART IX, s.342.1 (unauthorized
... use of computer) and PART X1, s.430 (mischief)
CRIMINAL.CODE.attempt . Canadian Criminal Code: PART X11, s.463 thru s.467
... Attempts, Conspiracies, and Accessories to
CRIMINAL.CODE.ignorance Canadian Criminal Code: PART I, s.19
... Ignorance of the law
CRIMINAL.CODE.obscene . Canadian Criminal Code: PART V, s.163-163.1
CRIMINAL.CODE.privacy . Canadian Criminal Code: PART VI, Invasion of
... Privacy (s.183 thru s.196)
CRIMINAL.CODE.theft ... Canadian Criminal Code: PART IX, Theft of
... Telecommunication Service (s.326), Fortfeiture (s.327),
... Punishment for theft (s.334), Fraudulent
... concealment (s.341)
Canada.privacy ........ Telecommunications Privacy Principles
ITS-AUP.html .......... Form for signing the ITS AUP agreement.
Incidents/ ............ Directory of Reports filed for incidents at UWO
McGill.draft.policy ... McGill Computing Facilities Usage Policy (May, 1993)
McMaster.policy ....... McMaster Code of Conduct for Computer and Network Users
Purdue-ECN.policy ..... Purdue/ECN Policy on Access and Usage (Aug, 1992)
README ................ This file (an index of sorts)
UWO.conduct.code ...... University Policy 1.13 "CODE OF CONDUCT re UNIVERSITY
... DATA AND PHYSICAL RESOURCS" 29-Sep-1988
acceptable.use.ccs.orig
.... Acceptable Use Computing and Communications (old)
... Services' systems/resources. (UWO/CCS)
acceptable.use.csd .... Acceptable Use Computer Science (UWO/CSD)
acceptable.use.engrg .. Acceptable Use Engineering (Research Group)
acceptable.use.its .... Acceptable Use Information Technology
... Services' systems/resources. (UWO/ITS)
acceptable.use.sscl ... Acceptable Use policy for Social Sciences Computing
... Laboratory -- systems/resources. (UWO/SSCL)
berferd.ps ............ "An Evening with Berferd: In Which a Cracker
... is Lured, Endured, and Studied", by Bill Cheswick
... (ATT)
breaking-in.txt ....... Improving the Security of Your Site by Breaking Into it
cast.team ............. A proposal from ad hoc Response Team
ccs.security .......... Security on CCS' Academic Systems
ccss.html ............. Campus Computer Security Subcommittee
course.notes.ps ....... UWO/CCS Computer Security (Unix focus)
course.notes.txt ...... UWO/CCS Computer Security (Unix focus)
draft-ietf-ssh-handbook-03.txt
...... Site Security Handbook (Draft)
draft-ietf-ssh-overview-00.txt
...... Overview of the Site Security Handbook Working Group
draft-ietf-ssh-users-00.txt
...... Users' Security Handbook (Draft)
dragon.ps ............. "There Be Dragons", by Steven Bellovin (ATT)
fixes ................. Various patches/fixes for different problems
gateway.ps ............ "The Design of a Secure Internet Gateway", by
... Bill Cheswick (ATT)
grip.draft ............ Expectations for Security Incident Response (IETF)
ipext.ps .............. "Security Problems with the TCP/IP Protocol Suite",
... by Steven Bellovin (ATT)
kerblimit.usenix.ps ... "Limits of the Kerberos Authentication System",
... by Bellovin & Merritt (ATT)
oarnet.security.ps .... OARnet Security Procedures (Kannan Varadhan/Oarnet)
policy.best ........... Pointers to good policy documents
primer.ps ............. "Coping with the Threat of Computer Security
... Incidents: A Primer from Prevention through Recovery"
... by Russell Brand (as found on cert.org)
proposal.html ......... Proposal to UCC to establish a CCNST/CERT at UWO
proposal.ps ........... Proposal to UCC to establish a CCNST/CERT at UWO
proposal.txt .......... Proposal to UCC to establish a CCNST/CERT at UWO
rfc1244.txt ........... Site Security Handbook
rfc1281.txt ........... Guidelines for the Secure Operation of the Internet
rfc1320.txt ........... The MD4 Message-Digest Algorithm, Rivest/MIT &
rfc1321.txt ........... The MD5 Message-Digest Algorithm, Rivest/MIT &
rfc1507.txt ........... Distributed Authentication Security Service
rfc1508.txt ........... Generic Security Service Application Program Interface
rfc1509.txt ........... Generic Security Service API : C-bindings
rfc1510.txt ........... The Kerberos Network Authentication Service (V5)
security-task-force ... Task Force on Computer and Network Security at UWO
security.arg .......... Network/System Security at UWO (report to ARG)
security.cuc.ps ....... Network/System Security at UWO (report to CUC)
security.cuc.txt ...... Network/System Security at UWO (report to CUC)
security.misc ......... Random thoughts by Reg Quinton (UWO)
sunos.security ........ How to improve security on SunOS 4.1.3
ssh.draft ............. Site Security Handbook (IETF)
tcp_wrapper.ps ........ TCP Wrapper (Network monitoring, access control and
... booby traps). Wieste Venema 1992
unix-security.ps ...... "Improving Unix Security" by David Curry
us.code ............... Some United States Law on computer crime