Securing the Linux Web Server via the Linux Netfilter/Iptable Firewall: Information Security Education
Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Firewalls are one of the core components of a network security implementation. In the case of Linux, the commonest firewall technique is the Netfilter/Iptable. In this work we investigated the Linux Netfilter/Iptable firewall technology. This work was carried out as part of the virtual war hack lab project at Lulea University of Technology. The virtual war hack lab project aims at providing lab access to distance information security students. In a traditional course in information security, laboratory exercises and assignments are typically conducted in an isolated computer lab where security problems that may occur are unable to affect other computers on campus. Besides, this does not make it feasible for students (particularly distance students) to practice information security anytime anywhere. To somewhat overcome this challenge, the virtual war hack laboratory has been innovated at the Lulea University of Technology, which will allow information security students to get familiar with security terminologies and tools via the Internet. Extending this lab experiences to distance students through virtualisation will inevitably call for proper means of securing the servers. A web server in a virtualized environment can sometimes pose problems as far as defense is concern as virtual users do not have access to the hardware resources the service provider is offering. This work teaches the use of Netfilter/Iptable firewall in securing the Linux web server (apache) in a virtualized environment.
Place, publisher, year, edition, pages
2013. , 60 p.
Technology, Information Security Education, Netfilter/Iptables, Virtual Labs, Web Servers
IdentifiersURN: urn:nbn:se:ltu:diva-44828Local ID: 2938f22a-b8c9-4670-80c4-9866167ae702OAI: oai:DiVA.org:ltu-44828DiVA: diva2:1018107
Subject / course
Student thesis, at least 30 credits
Information Security, master's level
Validerat; 20130117 (global_studentproject_submitter)2016-10-042016-10-04Bibliographically approved