Bacula Backup Project
Bacula backup project is about backing up the servers in the CIT living lab. The Bacula server is
running on Debian a Linux distribution. Bacula is an open source program.
Bacula allows the server to:
- manage backups
- recovery of computer data across a network of computers of different kinds
- verify computer data across a network of computers of different kinds
The server currently backups thirteen different servers
and will continue to grow as more servers are added to the server room.
Backup Process:
- Increment backups Monday thru Saturday
- Full backup on Sunday
Disaster Recovery:
- backups are copied to an external drive
- external drive is taken off-site daily
Backups are a vital part in any disaster recovery plan to insure continuity of the
data and to be able to restore the server back.
Business Professionals of America Printers
Set up Printers for BPA Event
CIT 402 Lab Building
The labs the students use get changed every time a new revision of the software comes out.
The project consists of updating those labs and setting up ET007 for the students to use each week.
This helps the professor by taking some of the work load off of her for her to come up with more labs.
The project team members also experience setting up labs for the students
CopSSH trouble on Dnet Server
Troubleshoot problem with CopSSH on the Dnet server
Debian 5.0 install as VM on XenServer
Installed two Debian 5.0 VMs to serve as the proxy server and NFS ISO share
Dell OpenManage Server Admin
Dell OpenManage is a set of systems management applications built using industry standard protocols and specifications.
It is not a product within itself, but rather a brand name for the suite of products in the portfolio… the product used
for this project is OpenManage Server Administrator.
Encryption Protocols Project
This project is a Java-based networking project designed to allow students to obtain a hands-on experience with
encryption hashes and algorithms. This project is planned to become a learning tool of CIT 43100 Security
Protocols classes for students to use in labs, and to be maintained by the Living Lab.
Ghost
The Ghost team uses Symantec Ghost to keep a fresh image of the lab machine build. Each week, the Ghost team
updates the previous image and pushes the updated image to all of the lab machines.
Living Lab Web Site Project:
The site is in need of updating and adding some new features.
The following has been accomplished:
- Mission and Vision statements added to home page
- News alerts brought current
- Current projects rewritten and placed on past projects page
- New Current projects formatted and placed on current projects page
- New images shot and added to web site
- Posters reformatted for planned poster page
Map Network of Rooms Et005 and Et007
Create a network map for Et005 and Et007.
Nagios configuration/notification enhancements
Nagios monitors your entire IT infrastructure to ensure systems, applications, services, and business processes
are functioning properly. In the event of a failure, Nagios can alert technical staff of the problem,
allowing them to begin remediation processes before outages affect business processes, end-users, or customers
NFS ISO Share
Network File Storage is what it sounds like… a file storage repository made available to other devices on the
same network. In the case here, the NFS was set up to provide .iso files to other devices on the CIT lab infrastructure.
There was already a NFS ISO share set up on the network, but it was removed and needed to be rebuilt/added again.
OpenManage Server Administrator(OMSA) allows system administrators to manage individual servers in two ways:
from an integrated, Web browser-based graphical user interface (GUI)
and from a command line interface (CLI) through the operating system. Server Administrator is designed for
system administrators to manage systems locally and remotely on a network.
Oracle server setup
The oracle server setup was created to test the security of the Oracle server and Operation System.
One computer will include the patched version of the Oracle database and the Windows OS, the other one will have the unpatched version of Oracle database and the unpatched Windows OS. The project will then use a variety of techniques to see what differences there may be when attempting to gain unauthorized access to these two systems.
The methods can include:
- A standard penetration test:
- discover, Interrogate, Compromise, and elevate Man-in-the-Middle MITM)
- attacks against traffic to and from an Oracle client
- Hijacking or cloning a Wireless Access Point (similar to a MITM attack) A policy review and attempt at password cracking of each server and Oracle instance
- Administrator unauthorized access
- (Internal) Database user unauthorized access
- Cross database permissions violation
- Post mortem detection of possible intrusions, including:
- Forensic analysis of each server
- Firewall logs
- Operating system and Oracle application logs
- Netflow data
Purdue School of Engineering and Technology Career Services Database
Create database for Career Services Department to help them run queries for the different
faculty members/departments requesting this information.
Create user interface to allow students to fill out web forms for internships and CO-OPs.
Secure Media Sanitization
- Record the serial numbers for the hard drives
- Wipe the data from more than 160 hard drives
- Complete Media Destruction forms
Squid Proxy Server
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and can serve as a gateway by utilizing the
collection of firewall rules available through its configuration options. It reduces bandwidth and improves response
times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes
a great server accelerator.
The function in which was chosen used squid in the CIT environment to provide an access controlled
proxy/firewall for network traffic between the vhost machines and the Internet. Its intended configuration is
to provide a transparent and dynamic proxy/firewall solution for the CIT lab.
The primary objectives selected for this implementation are as follows:
- ALLOW connections from the 4 vhost machines ONLY
- ALLOW only outgoing packets from the LAN or eth0 (internal interface)
- ALLOW only established connections to return
- DISALLOW incoming connections to eth1 (external interface)
Server room cleanup
Organized and surplused supplies in the server room. sorted out what was useful and what wasn’t.
Sharepoint
This project consists of building the sharepoint server. We were building this server for us to keep track of
all the projects working on living lab. The server was set up and configured for other groups outside
the living lab to be able to use it. The project is still a work in progress.
Wiki Documentation Migration
The documentation from previous semester’s projects are not consistent in their location on the Wiki or
their format. The project’s goal is to format the Wiki documentation and to organize them into a single
location.
Woody Warehouse Project:
The project needed a test server with small business applications capabilities.
The server needed to have database capabilities and web deployment tools
The following packages were chosen:
- Windows Server 2008 R2
- SQL Server 2008 R2 Express
- Web Deploy Tool 2.0
XenCenter Client Upgrade
XenCenter Management Client is the administrative interface to the XenServer hosts/pool here in the CIT lab.
It runs on Windows OS, and is used to communicate with the XenServers over TCP/IP port 443.
At the beginning of this semester(Fall ’10), the XenCenter client was a XP VM in the vhost pool.
This was an undesirable
setup, as multiple ‘admins’ needed access to XenServers and VMs concurrently. As a result, the decision was made
to create a Windows Server 2008 XenCenter Client machine as a replacement, which would allow multiple connections
concurrently.
Now, the access to the XenServers and VMs is done through a XenCenter Client run on a Windows Server 2008 VM.
- New iSCSI Virtual Disk Storage
- Add iSCSI storage to XenServer Pool