Homework #4
CMPS 122, Spring 2004
| Assigned: | May 17th |
| Due: | Monday, May 24th at 11:59 PM |
Please read the homework guidelines for information about how to work on the assignment and how to submit it.
- Some large web sites use devices called "load balancers" to distribute traffic evenly among several equivalent servers. In such a system, the servers that handle Web requests are all "equal," and sufficient state is shared to allow any request to go to any server in the cluster. What is the security advantage to this configuration? Are there any disadvantages?
- A distributed denial-of-service attack requires zombie processes running on numerous machines to perform a piece of the attack. These zombies must act simultaneously for the attack to be effective. If you were a system administrator looking for zombies on your computers, what would you look for? Could you find them before the attack was launched?
- It has been claimed that lack of diversity in the Internet is a major vulnerability for modern computer systems. Why does the predominance of a single operating system pose a threat? Does the predominance of a few browsers pose a threat as well? How might any threat be countered?
- I have a high-speed network connections coming into my home, and I also have a wireless network access point. Like most people, I don't use most of my bandwidth—my long-term average usage is under 1KB/sec over a week out of a maximum of about 125KB/sec. List three distinct reasons why I might still want to prevent an outsider from obtaining free network access by intruding into my wireless network.
- Should a network administrator put a firewall in front of a honeypot? Why or why not?
NOTE: some of these questions are derived from a computer security text by Pfleeger & Pfleeger.
Last updated 17 May 2004 by Ethan L. Miller (elm at ucsc d0t edu)
