Skip to content

KarlKode/AppliedLabProject

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

182 Commits
backdoor
backdoor
 
 
bufferoverflow
bufferoverflow
 
 
client
client
 
 
core
core
 
 
files
files
 
 
presentation
presentation
 
 
report
report
 
 
review
review
 
 
web
web
 
 
.gitignore
.gitignore
 
 
.gitignore.orig
.gitignore.orig
 
 
README.md
README.md
 
 
assignment.pdf
assignment.pdf
 
 
book.pdf
book.pdf
 
 
config_serv.txt
config_serv.txt
 
 
evaluation_criteria_project.pdf
evaluation_criteria_project.pdf
 
 
group2.txt
group2.txt
 
 
hardening.txt
hardening.txt
 
 
imovies_users.dump
imovies_users.dump
 
 
ms_asl_intro.pdf
ms_asl_intro.pdf
 
 
network_diagram.png
network_diagram.png
 
 
preparation.md
preparation.md
 
 
review.pdf
review.pdf
 
 
startup_vms.sh
startup_vms.sh
 
 
sysseclab_net_diagram.pdf
sysseclab_net_diagram.pdf
 
 
system_documentation.pdf
system_documentation.pdf
 
 
system_documentation.tex
system_documentation.tex
 
 
systemdescription.pdf
systemdescription.pdf
 
 
systemdescription.tex
systemdescription.tex
 
 

Repository files navigation

AppliedLab

Repository for http://www.infsec.ethz.ch/education/as2013/appliedlab

Servers

Firewall

  • Some linux shit
  • OpenVPN

Web server

  • Debian
  • Iptables
  • Nginx
  • Python
  • Flask
  • ZeroRPC
  • SSH access for connections from firewall

CACore/Database

  • Debian
  • Iptables
  • Python
  • ZeroRPC
  • OpenSSL
  • MySQL
  • SSH access for connections from firewall

Archive/Backup

  • Debian
  • Iptables
  • SSH access for connections from firewall and CACore
  • Syslog server

Web server

  • Only accessible via HTTPS
  • Identifies each visitor with a session cookie or something like that

CACore API

User management

credential_login(user_id, password)

  • Check legacy db for valid username/password combination
  • Returns a session id and user data on success, raises exception otherwise

validate_session(session_id)

  • Validate the session id
  • Returns the corresponding user id on success, raises exception otherwise

kill_session(session_id)

  • Kills the session
  • Returns True

cert_login(...)

  • How does this work?
  • Returns a session id and user data on success, raises Exception otherwise

update_data(session_id, field, new_data)

  • Create a update request for the users data
  • Revokes all certificates for the current users data
  • Returns True on success, raises exception otherwise

Certificate

get_crl()

  • Returns the Certificate revocation list

create_certificate(session_id)

  • Create a new public/private keypair and sign it with the CA key
  • Returns public and private keys and the signed certificate

revoke_certificate(session_id, cert)

  • Revokes the certificate if it belongs to the user that coresponds to the session_id
  • Returns True on success, raises exception otherwise

Admin

cert_login(...)

  • Same as user certLogin, but only for CA administrators
  • Returns an admin_session_id on success, raises exception otherwise

get_status(admin_session_id)

  • Returns the current status of the CA (# issued certs, current serial number, ...)

Backup stuff

  • LOL DUNNO HAHAHAHAHAHAHAHAHAA

Logging

  • Syslog server

About

Repository for http://www.infsec.ethz.ch/education/as2013/appliedlab

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages