http://directory.fedora.redhat.com/wiki/Security_Problems I'm building up a list of general, problematic security vulnerabilities that are common across computer networks today. Hopefully we'll be able to explain how to target many of these on the realsecurity website (so I have a bias for problems that can be tackled using the DS/CS/smartcard combo, but we should open it up beyond that too). Would love for other people to jump in and add some (or discuss them in this thread). Here's what I've jotted down thus far: Problem: People choose passwords that are easily guessable/crackable Attack vector: passwords are cracked and the systems compromised Problem: People post important passwords around their workplaces Attack vector: anyone gaining physical access to a building can harvest large numbers of passwords AND account names (usernames are usually derived from the person's name which is also present around their workplace), and use them covertly remotely at a later time Problem: People forget their passwords and have to get them reset frequently Attack vector: as the frequency of password resets increases, it is natural for, e.g. help desk personel to become lax in when and why they will re-issue a password. This increases vulnerability to social engineering. If resetting passwords is a big deal and an unusual event, this is much less likely to occur. But that is only feasible if people don't forget their passwords. Problem: Computer screens are rarely locked when unattended Attack vector: By gaining physical access to a computer not only can a variety of keylogging and other intrusive programs be installed, not only can data be taken, but immediate access to other resources is often granted (from open ssh logins to file shares). This is particularly problematic on modern operating systems featuring a "keychain" which caches passwords for a login. Once the computer is unlocked access to a variety of remote resources is typically also granted. Problem: Stored data and sent messages, even highly sensitive ones, are rarely encrypted Why? Its a PITA to encrypt things, maintain a set of keys/certs between systems, etc Problem: Its relatively easy to learn secret information such as passwords through social engineering, and this is typically all that is required to gain access to a computer system Problem: Computers are not updated and contain many security vulnerabilities This is often ameliorated by the presence of a firewall, but it does render the inside of the network extremely soft once penetrated -Seth
