[Fedora-directory-devel] enumerating security problems

[Seth Nickell]

http://directory.fedora.redhat.com/wiki/Security_Problems

I'm building up a list of general, problematic security
vulnerabilities that are common across computer networks today.
Hopefully we'll be able to explain how to target many of these on the
realsecurity website (so I have a bias for problems that can be
tackled using the DS/CS/smartcard combo, but we should open it up
beyond that too). Would love for other people to jump in and add some
(or discuss them in this thread).

Here's what I've jotted down thus far:

Problem: People choose passwords that are easily guessable/crackable
Attack vector: passwords are cracked and the systems compromised

Problem: People post important passwords around their workplaces
Attack vector: anyone gaining physical access to a building can
harvest large numbers of passwords AND account names (usernames are
usually derived from the person's name which is also present around
their workplace), and use them covertly remotely at a later time

Problem: People forget their passwords and have to get them reset
frequently Attack vector: as the frequency of password resets
increases, it is natural for, e.g. help desk personel to become lax in
when and why they will re-issue a password. This increases
vulnerability to social engineering. If resetting passwords is a big
deal and an unusual event, this is much less likely to occur. But that
is only feasible if people don't forget their passwords.

Problem: Computer screens are rarely locked when unattended Attack
vector: By gaining physical access to a computer not only can a
variety of keylogging and other intrusive programs be installed, not
only can data be taken, but immediate access to other resources is
often granted (from open ssh logins to file shares). This is
particularly problematic on modern operating systems featuring a
"keychain" which caches passwords for a login. Once the computer is
unlocked access to a variety of remote resources is typically also
granted.

Problem: Stored data and sent messages, even highly sensitive ones,
are rarely encrypted Why? Its a PITA to encrypt things, maintain a set
of keys/certs between systems, etc

Problem: Its relatively easy to learn secret information such as
passwords through social engineering, and this is typically all that
is required to gain access to a computer system

Problem: Computers are not updated and contain many security
vulnerabilities This is often ameliorated by the presence of a
firewall, but it does render the inside of the network extremely soft
once penetrated

-Seth