Question

1. How do exploits relate to vulnerabilities?

1. Using the Internet, find and read the SANS/FBI Top 20 Vulnerabilities. Discuss at least 2 of the Top 20. Discuss the threat group, category and potential risks and steps to mitigate the vulnerability.

3. Jailbreaking your iPhone – is it ethical and/or legal?
   
   Please answer all these three questions in your own words.

Answer 1

1.

• Apache Web Server

Avoid opening up the ports . Use SSL TLSv1.3 certificate for public and private key data transmission between the client and the server.

Use port scanner to scan the ports - Dont use familiar ports like 8080 for TCP use some random ports and keep changing it after every week or month.

Web Server should be always behind a strict firewall that doesn;t allow the world (internet 0.0.0.0/*) allow all rule to access the web server directly instead use reverse proxy server like Nginx for enhanced security. The connections tcp will be dropped when the tcp connections becomes stale.

Use cloudflare or Ddos mitigation tools - Datadog monitoring to analyze sudden traffic spikes or ip flooding attacks etc. Use robots or captcha checker when required.

Try to detect bot traffic or geo location of the client write the rules to give them very limited access.

2. SSH remote access :

Prevent snooping or attacker trying to access remote servers : Create Key pair - putty gen random key generator and pair with the SSH putty authentication .pem pair.

Try to rotate the keys for every 3 or 4 days and access the remote servers using ssh .

Use random ports like 13412, 15821 ,16234 ssh ports to prevent guess kind of attacks.

The threat groups are primarly from china , russia , ukraine and korea. They use advanced reflector kind of attacks.