User Manual of the Pre-built Ubuntu 12.04 Virutal Machine
Contents
1. server You can access the MySQL database server by running the client side application usr bin mysql The following is a simple demo on how to use mysql mysql u root pseedubuntu mysql gt show databases mysql gt use db_name mysql gt show tables mysql gt select username user_email from table_name mysql gt quit 4 2 The Apache2 Http Server The apache2 http server was installed using apt get install It can be started by issuing the service apache2 start command The apache2 server is configured to listen on both 80 and 8080 ports All the web pages hosted by the server can be located under the var www directory For each SEED lab that uses the apache2 http server we have created one or several URLs Basically in the pre built VM image we use Apache server to host all the web sites used in the lab The name based virtual hosting feature in Apache could be used to host several web sites or URLs on the same machine A configuration file named default in the directory etc apache2 sites available contains the necessary directives for the configuration The following is a list of URLs that we have pre configured their corresponding directories are also listed www csrflabcollabtive com var www CSRF Collabtive www csrflabattacker com var www CSRF Attacker www sqllabcollabtive com var www SQL Collabtive SEED Labs 4 www xsslabcollabtive com var www XSS Col2. was written for Ubuntu 11 04 however it also works for the updated Ubuntu 12 04 Virtual Machine as well 3 Libraries and Software 3 1 Libraries and Applications Installed Besides the packages coming with the Ubuntu 12 04 installation the following libraries and applications are additionally installed using the apt get install command libnetl libnetli dev libpcat dev libpcap dev libattri dev vim apache2 php5 libapache2 mod php5 mysql server wireshark bind9 nmap netwox netwag openjdk 6 jdk snort xpdf vsftpd telnetd zsh ssh dpkg dev openssl The libcap 2 21 and libpcap1 2 0 have been compiled and installed from the source down loaded from the Internet 3 2 Softwares configuration Netlib netwox netwag Net wox is a network toolbox net wag is a GUI of net wox They can be found in usr bin The ICMP spoofing bug of netwox has been fixed It should be noted that running netwox netwag requires the root privilege Wireshark Wireshark isa network protocol analyzer for Unix and Windows It is located in usr bin Wireshark requires the root privilege to run Nmap Nmap isa free security scanner for network exploration and hacking It is located in usr bin Some functions of nmap require root privilege Firefox extensions Firefox is installed by default in Ubuntu 12 04 We have installed some useful extensions including LiveHTTPHeaders Tamper Data and Firebug They can be launched in the Tools menu i
3. SEED Labs 1 User Manual of the Pre built Ubuntu 12 04 Virutal Machine Copyright 2006 2014 Wenliang Du Syracuse University The development of this document is was funded by three grants from the US National Science Foundation Awards No 0231122 and 0618680 from TUES CCLI and Award No 1017771 from Trustworthy Computing Permission is granted to copy distribute and or modify this document under the terms of the GNU Free Documentation License Version 1 2 or any later version published by the Free Software Foundation A copy of the license can be found at http www gnu org licenses fdl html 1 Overview Using VirtualBox we have created a pre built virtual machine VM image for Ubunt uLinux version 12 04 This VM can be used for all our SEED labs that are based on Linux In this document we describe the configuration of this VM and give an overview of all the software tools that we have installed The VM is available online from our SEED web page Updating the VM is quite time consuming because not only do we need to udpate the VM image we have to make sure that all our labs are consistent with the newly built VM Therefore we only plan to update our VM image once every two years and of course update all our labs once the VM is changed 2 VM Configurations 2 1 Configuration of the VM The main configuration of this VM is summarized in the following If you are using VirtualBox you can adjust the configuratio
4. ion You can also use chkconfig to modify the configuration For example to start the server XYZ automatically during the system bootup run chkconfig XYZ on
5. isplay resolution In order to adjust the display resolution in VirtualBox we have installed guest addi tions from the terminal not from the menu in VirtualBox This is done with the following 3 commands sudo apt get install virtualbox ose guest utils sudo apt get install virtualbox ose guest x1ll sudo apt get install virtualbox ose guest dkms After installing the required additions you can adjust the display resolution at System Settings Dis plays Monitor SEED Labs 5 6 Configure Your VM securely 6 1 Change the password For the sake of security and your own convenience we suggest that you change the account password To change the Ubuntu s account password You need to login as root and issue the passwd username command To change MySQL s root password You can do it as following mysql u root pseedubuntu Once in the prompt do this mysql gt update user set User NewRootName Password NewPassword where user root mysql gt flush privileges 6 2 Configure automatically start service It s more convenient to start some commonly used service automatically during the system boot up although most people do not want to start some server that they do not use Currently most of the service except the Apache and MySQL servers we need for SEED labs are configured not to start automatically You can use chkconfig to get the current configurat
6. labtive www soplab com var www SOP www soplabattacker com var www SOP attacker www soplabcollabtive com var www SOP Collabtive www soplab com 8080 var www SOP Configuring DNS The above URL is only accessible from inside of the virtual machine because we have modified the etc hosts file to map each domain name to the virtual machine s local IP address 127 0 0 1 You may map any domain name to a particular IP address using the etc hosts For example you can map http www example com to the local IP address by appending the following entry to etc hosts file 127 0 0 1 www example com Therefore if your web server and browser are running on two different machines you need to modify the etc hosts file on the browser s machine accordingly to map the target domain name to the web server s IP address 4 3 Other Servers DNS server The DNS server bind9 is installed It can be started by running service bind9 start The configuration files are under etc bind Ftp server The vsftpd very secure ftp daemon server is installed It can be started by running service vsftpd start Telnet server The telnetdserver is installed It can be started by running service openbsd inetd start SSH server The openssh server is installed It can be started by running service ssh start 5 Miscellanious Configuration Time zone Currently the time zone is set to be New York adjust that to the time zone of your location D
7. n Firefox Elgg web application Elgg is a very popular open source web application for social network and we use it as the basis for some of Web security labs It should be noted that to access Elgg the apache2 http server and the MySQL database server must be running Collabtive web application For some labs especially those related to web security we need a non trivial web application For that purpose we have installed the Collabtive web application Several versions of Collabtive are installed most of them were modified from the original version to introduce different vulnerabilities It should be noted that to access Collabtive the apache2 http server and the MySQL database server must be running SEED Labs 3 Java We have installed openjdk 6 jdk the OpenJDK Development Kit JDK 6 for Java The com mands javac and java are available to compile and run java source code 4 Pre Installed Servers Some of the SEED labs may need additional services that are not installed or enabled in the standard Ubuntu distribution We have included them in our pre built VM Note You need root privilege to start a server 4 1 The MySQL Server The database server MySQL is installed It can be started by running service mysql start Cur rently there are two accounts in the MySQL server The usernames and passwords are listed below 1 root seedubuntu 2 apache apache web applications use this account to connect to the mysql
8. n according to the resources of your host machine e g you can assign more memory to this VM if your host machine has enough memory e Operating system Ubuntu 12 04 with the Linux kernel v3 5 0 37 generic e Memory 1024M RAM e Disk space Maximum 80G disk space We have created two accounts in the VM The usernames and passwords are listed in the following 1 UserID root Password seedubuntu Note Ubuntu does not allow root to login directly from the login window You have to login as a normal user and then use the command su to login to the root account 2 UserID seed Password dees 2 2 Network setup Currently the Network connection is set to NAT i e your VM is put in a private network which uses your host machine as the router The VMs in such a setting can connect to the Internet via the NAT mechanism and they are not visible to the outside their IP addresses are not routable from the outside e g VirtualBox assigns 10 0 2 15 to each VM under NAT configuration This setting is sufficient for most of our SEED labs SEED Labs 2 If you want your VMs to be visible to the outside e g you want to host a HTTP server in a VM and you want to access it through the Internet then you can refer to the instruction Network Configu ration in VirtualBox for SEED Labs under the following link http www cis syr edu wedu seed Documentation Ubuntul1_04_VM VirtualBox_MultipleVMs pdf The instruction
Download Pdf Manuals
Related Search