ITSA Day 1999

Schedule of Events

Click the following topics for an abstract on each session as well as links to PowerPoint presentations and helpful resources.

Time Topic Speaker Company
8:30am “A Cyber University”

Keynote Address – Introduction

“The Future of UF Networking and Security”

Betty Capaldi, UF Provost

Earl Robbins, UF CIO

UF
9:00am Securing Routers Against Hackers and Denial of Service Attacks Lou Ronnau Cisco Systems
10:00am Implementing and Configuring Microsoft Windows NT for Secure Environments Chris Cantrell Network Associates, Inc.
11:00am Computer Security and Computer Crime – Legal Considerations – A Primer on Applicable State and Federal Law Tom Sadaka Assistant Florida State Prosecutor
Lunch
1:30pm Current Best Practices for Improving Unix Security Jim Hranicky and Dan Roscigno
2:30pm Current Best Practices for Improving Windows Security Rob Bird and Jodi Neely-Ritz
3:30pm Current Best Practices to Improve Netware Security Philip Chase and Iain Moffat
8:30 — Keynote Address – “A Cyber University”

Betty Capaldi, UF Provost

8:30 — Keynote Speaker – “The Future of UF Networking and Security”

Earl Robbins, UF CIO

The 21st Century will provide the University of Florida with
numerous networking challenges, some of which will be
bandwidth, security, and quality of service. Every technical
publication highlights the need for more emphasis in these
areas. The Office of the CIO will address these challenges for
UF by providing an administrative and support fabric within
which the colleges, centers, and other UF entities can weave
long term relationships, mutual support, and mutual learning
into a UF community that will readily meet these challenges.

9:00 — Session 1 – “Securing Routers Against Hackers and Denial of Service Attacks”

Lou Ronnau, Cisco Systems, Inc.

A description of common attacks and how they can be prevented
with proper router configuration. Attacks that are unaffected
by a router configuration will also be discussed.

Click here for presentation slides.

10:00 — Session 2 – “Implementing and Configuring Microsoft Windows NT for Secure Environments”

Chris Cantrell, Network Associates, Inc.

In today’s networks, many Microsoft Windows NT servers are
implemented and maintained with little or no security. Network
Administrators are challenged to ensure they implement and
maintain services while not sacrificing security. This
presentation will focus on many simple, but powerful tasks
which will lead to implementing and maintaining Microsoft
Windows NT 4.0 servers in any secure environment. You will see
a live demonstration of a baseline NT installation, security
configuration tasks, and live security scans and vulnerability
analysis.

Click here for presentation slides.

11:00 — Session 3 – “Computer Security and Computer Crime – Legal Considerations – A Primer on Applicable State and Federal Law.”

Tom Sadaka, Assistant Florida State Prosecutor

The Florida Computer Crime Act and its application to system
administrators will be discussed. If you are the victim, what
laws can be applied. System administrator rights, and the
rights and responsibilities of security personnel, under
federal search and seizure law as applied to computers will be
discussed. The application of the Electronic Communications
Privacy Act and the Privacy Protection Act will also be
covered in this discussion.

1:30 — Session 4 – “Current Best Practices for Improving Unix Security”

Jim Hranicky and Dan Roscigno

A moderate but continuous investment of time is required to gain
improvement in system security. Follow the “Current Best Practices”
discussed in this session and make them part of your routine. Topics
covered include access control, OS and application security, auditing
and network security.

2:30 — Session 5 – “Current Best Practices for Improving Windows Security”

Rob Bird and Jodi Neely-Ritz

It requires little investment to gain vast improvements in
Windows NT security. Follow the Windows NT security guidelines
discussed in this session and make them part of your Windows
NT management routine. Topics that will be covered include
Windows NT risk analysis, User Manager and access control, NT
kernel and application security, Event Viewer and other
auditing tasks, and network security as it specifically
relates to Windows networking.

Follow these links for presentation slides: Part
I
Part II.

3:30 — Session 6 – “Current Best Practices to Improve Netware Security”

Philip Chase and Iain Moffat

Netware security can be tremendously improved with little effort or
expense. Follow the Netware security guidelines discussed in
this session and make them part of your routine. Topics that
will be covered include console security, OS and file system
security, NDS security, client security, account management,
and how to close SMTP relays.

Click
here for presentation materials.