Security and TCP/IP Servicess
- Using TCP/IP Services
- TCP
- IP
- UDP
- Telnet (telent venus.nmhu.edu 79)
- FTP
- SMTP
- IP Names
- IPv6 addresses some of the security related limitations of IPv4 (32-bit address -> 128-bit address)
- IPSEC - adds encryption, authentication, & key management (at the network layer)
- AUTHENTICATION HEADER - adds authentication info to the IP datagram (calculated using MD5 or SHA-1)
- ENCAPSULATING SECURITY PAYLOAD - adds integrity and confidentiality to IP datagrams
- INTEROPERABILITY
- TCP Wrappers - moves network services to another location and puts the tcpd in its place and the changes are recorded in /etc/inetd.conf:
telnet stream tcp nowait root /usr/sbin/in.telnetd becomes
telnet stream tcp nowait root /usr/sbin/tcpd /usr/sbin/in.telnetd