Keamanan

Jaringan
Pert
7Evolusi
: Keamanan
Jaringan
dan
Kinerja
Network Packet Analyzer
Komputer
Komputer
Komputer
Oleh : Siyamta

SEKOLAH TINGGI TEKNOLOGI STIKMA INTERNASIONAL MALANG

Jalan R. Panji Suroso 91 A, Malang, Telp 0341 416200, Fax 0341 473787
e-mail : info@stikma.ac.id
home page : http://www.stikma.ac.id

STT STIKMA Malang

Security (Form)
Pysical (Steal Hardware or Device,
Destroy Equipment, Server, Wiring)
Non Fisik (Data) example : Remove,
Corrouption of data, Deny Access, Steal of
Information)

STT STIKMA Malang

Security (Came From)

Internal
External

STT STIKMA Malang

Cracking Steps

Information gathering
Port scanner
Network enumeration
Gaining & keeping root / administrator
access
Using access and/or information gained
Leaving backdoor
Covering his tracks
STT STIKMA Malang

Security
Physical
- Dealing with theft and vandalism
- Managing system failure
Backup
Power protection

Non Physic [Software]

STT STIKMA Malang

Physical Solution

Individual computer locks

Room locks and keys
Combination locks
Tokens
Biometrics (fingerprint)
Monitoring with cameras

STT STIKMA Malang

Non Pysical Solution

Anti Virus
Setting Firewall

STT STIKMA Malang

Secure Network (1)

STT STIKMA Malang

Secure Network (2)

STT STIKMA Malang

Secure Network (3)

DMZ
[Demilitarized
Zone]
The DMZ acts
as a buffer
area

STT STIKMA Malang

Firewall

Packet filter
Stateful
Application proxy firewalls
Implementation:
iptables

STT STIKMA Malang

Firewalls Rules

STT STIKMA Malang

STT STIKMA Malang

PENS Network

STT STIKMA Malang

MRTG dan CACTI

STT STIKMA Malang

http://cacti.net

STT STIKMA Malang

Information Gathering

Ping
Netstat
Nbtstat
Tracert
Whois
All whois

STT STIKMA Malang

Perintah Ping

STT STIKMA Malang

Ping ke Server

STT STIKMA Malang

Check Connection

STT STIKMA Malang

Perintah Dasar
IPCONFIG - IP Configuration
NETSTAT - Display networking statistics
(TCP/IP)
PING - Test a network connection
TRACERT - Trace route to a remote host

STT STIKMA Malang

Netstat

STT STIKMA Malang

Melihat Jaringan Sekitar

Network View
Look@LAN

STT STIKMA Malang

Look@LAN (1)

STT STIKMA Malang

Look@LAN (2)

STT STIKMA Malang

Look@LAN (3)

STT STIKMA Malang

NetworkView (1)

STT STIKMA Malang

NetworkView (2)

STT STIKMA Malang

Port Scanning
PortScanner
GFILANGuard

STT STIKMA Malang

LANGuard

STT STIKMA Malang

LANGuard

STT STIKMA Malang

LANGuard

STT STIKMA Malang

http://www. allwhois. com

STT STIKMA Malang

Allwhois Yahoo.Com(1)

MarkMonitor.com - The Leader in Corporate Domain Management

For Global Domain Consolidation, Research & Intelligence,
and Enterprise DNS, go to: www.markmonitor.com
The Data in MarkMonitor.com's WHOIS database is provided by
MarkMonitor.com
for information purposes, and to assist persons in obtaining information
about or related to a domain name registration record. MarkMonitor.com
does not guarantee its accuracy. By submitting a WHOIS query, you
agree
that you will use this Data only for lawful purposes and that, under no
circumstances will you use this Data to: (1) allow, enable, or otherwise
support the transmission of mass unsolicited, commercial advertising or
solicitations via e-mail (spam); or (2) enable high volume, automated,
electronic processes that apply to MarkMonitor.com (or its systems).
MarkMonitor.com reserves the right to modify these terms at any time.
By submitting this query, you agree to abide by this policy.

STT STIKMA Malang

Allwhois Yahoo.Com (2)

Registrant:
Yahoo! Inc. (DOM-272993)
701 First Avenue
Sunnyvale CA 94089 US

Domain Name: yahoo.com

Registrar Name: Markmonitor.com
Registrar Whois: whois.markmonitor.com
Registrar Homepage:
http://www.markmonitor.com
STT STIKMA Malang

Allwhois Yahoo.Com (3)

Administrative Contact:
Domain Administrator (NIC-1382062) Yahoo! Inc.
701 First Avenue
Sunnyvale CA 94089 US domainadmin@yahoo-inc.com
+1.4083493300, Fax- +1.4083493301
Technical Contact, Zone Contact:
Domain Administrator (NIC-1372925) Yahoo! Inc. 701
First Avenue Sunnyvale CA 94089
US domainadmin@yahoo-inc.com +1.4083493300 Fax+1.4083493301
Created on..............: 1995-Jan-18.

STT STIKMA Malang

Allwhois Yahoo.Com (4)

Expires on......................: 2012-Jan-19.
Record last updated on..: 2006-May-17 11:10:55.

Domain servers in listed order:

NS4.YAHOO.COM
NS5.YAHOO.COM
NS1.YAHOO.COM
NS2.YAHOO.COM
NS3.YAHOO.COM

---------------------------------------------------------For Global Domain Consolidation, Research & Intelligence,

and Enterprise DNS, go to: www.markmonitor.com
---------------------------------------------------------STT STIKMA Malang

Allwhois (IKC-1)
Registration Service Provided By: GEGAR
TECHNOLOGIES
Contact: +62.00000000
Website: http://gegar.com
Domain Name: ILMUKOMPUTER.COM
Registrant:

Romi Satria Wahono

Romi Satria Wahono (romi@romisatriawahono.net)

Jakarta null,00000

ID Tel. +62.00000000
STT STIKMA Malang

Allwhois (IKC-2)
Creation Date: 15-Apr-2003
Expiration Date: 15-Apr-2007
Domain servers in listed order:

ns1.ilmukomputer.com

ns2.ilmukomputer.com
Administrative Contact:

Romi Satria Wahono

Romi Satria Wahono (romi@romisatriawahono.net)

Jakarta null,00000

ID Tel. +62.00000000
STT STIKMA Malang

Allwhois (IKC-3)
Technical Contact:

Romi Satria Wahono

Romi Satria Wahono (romi@romisatriawahono.net)

Jakarta null,00000

ID Tel. +62.00000000
Billing Contact:

Romi Satria Wahono

Romi Satria Wahono (romi@romisatriawahono.net)

Jakarta null,00000

ID Tel. +62.00000000
STT STIKMA Malang

Allwhois (IKC-4)
Status:LOCKED

Note: This Domain Name is currently Locked.

In this status the domain

name cannot be transferred, hijacked, or

modified. The Owner of this

domain name can easily change this status

from their control panel. This

feature is provided as a security measure

against fraudulent domain name hijacking.
STT STIKMA Malang

Allwhois (IKC-5)
The data in this whois database is provided to
you for information
purposes only, that is, to assist you in obtaining
information about or
related to a domain name registration record.
We make this information
available "as is", and do not guarantee its
accuracy. By submitting a
whois query, you agree that you will use this
data only for lawful
STT STIKMA Malang

Allwhois (IKC-6)
Purposes and that, under no circumstances will you use
this data to:
(1) enable high volume, automated, electronic processes
that stress or load this whois database system providing
you this information; or
(2) allow, enable, or otherwise support the transmission
of mass unsolicited, commercial advertising or
solicitations via fascimile, electronic mail, or by
telephone. The compilation, repackaging, dissemination
or other use of this data is expressly prohibited without
prior written consent from us. The registrar of record is
PublicDomainRegistry. We reserve the right to modify
these terms at any time. By submitting this query, you
agree to abide by these terms.
STT STIKMA Malang

Wireless Security (1)

WEP Wired Equivalency Privacy
802.11i security and WPA Wifi Protected
Access
801.11 authentication
EAP (Extensible Authentication Protocol)
Cisco LEAP/PEAP authentication
Bluetooth security use mode3

STT STIKMA Malang

Wireless Security (2)

Wired Equivalent Privacy (WEP) the first generation security standard

for wireless. Attackers quickly discovered that WEP encryption was easy to
break. The encryption keys used to encode the messages could be detected
by monitoring programs. Once the keys were obtained, messages could be
easily decoded.
Wi-Fi Protected Access (WPA) an improved version of WEP. It was
created as a temporary solution until the 802.11i (a security layer for
wireless systems) was fully implemented. Now that 802.11i has been
ratified, WPA2 has been released. It covers the entire 802.11i standard.
Lightweight Extensible Authentication Protocol (LEAP), also called
EAP-Cisco a wireless security protocol created by Cisco to address the
weaknesses in WEP and WPA. LEAP is a good choice when using Cisco
equipment in conjunction with operating systems like Windows and Linux.
Wireless Transport Layer Security (WTLS) is a security layer used in
mobile devices that employ the Wireless Applications Protocol (WAP).
Mobile devices do not have a great deal of spare bandwidth to devote to
security protocols. WTLS was designed to provide security for WAP devices
in a bandwidth-efficient manner.

STT STIKMA Malang

STT STIKMA Malang

Wireless Security Setting

Limit signal bleed

WEP
Location of Access Point
No default SSID
Accept only SSID
Mac filtering

Audit
DHCP
STT STIKMA Malang

Wireless Security Model

STT STIKMA Malang

Setting Access Point (1)

STT STIKMA Malang

Setting Access Point (2)

http://192.168.1.245 [ default LynkSys

Wireless-G 802.11 G]
Password : admin

STT STIKMA Malang

Setting Access Point (3)

STT STIKMA Malang

Setting Access Point (4)

STT STIKMA Malang

Setting Access Point (5)

STT STIKMA Malang

Setting Access Point (6)

STT STIKMA Malang

Setting Access Point (7)

STT STIKMA Malang

Setting Access Point (8) [MAC]

STT STIKMA Malang

Addresses In TCP

STT STIKMA Malang

Relationship
of
layers
and
addresses
in TCP/IP

STT STIKMA Malang

Pysical Addresses

STT STIKMA Malang

IP
Address

STT STIKMA Malang

IT Dept
Security

STT STIKMA Malang

Etika Hacking

STT STIKMA Malang

Hacker, Cracker, Security

STT STIKMA Malang

Hacker Definition

STT STIKMA Malang

Hacker dan Cracker

STT STIKMA Malang

Honeypots [1]

STT STIKMA Malang

Honeypots [2]

STT STIKMA Malang

Saran!!!

STT STIKMA Malang

Referensi
http://www.cisco.com
Budi Rahardjo, Bahan Mata Kuliah
Keamanan Sistem Lanjut, ITB, 2004
Dhoto, Training Network Security, PENS
ITS, 2006.
http://www.cacti.net
http://www.honeypots.org

STT STIKMA Malang

Thanks 4 u
attention
STT STIKMA Malang