To complete this assignment, you will need to have completed the course modules through "Buffer Overflow."
Reminder: All work turned in for this class must prepared in a form that I can open with Microsoft Word 2016. Do not copy the homework text into your answers; I already know what the questions are, and putting superfluous filler into your answers just makes more work for me.
For this assignment and any others that require research you must answer in your own words and cite your references correctly. A cut-and-paste answer will earn a zero for the entire assignment and may earn a course grade of F for plagiarism.
Part 1: Explain what a honeypot is. In your explanation, give at least one advantage and one disadvantage of deploying a honeypot on a corporate network.
Part 2: An organization has a network architecture similar to that discussed in class, with a DMZ and an internal network. Should the organization's Active Directory server go in the DMZ or the internal network. Explain your answer in about a paragraph. (If you're not familiar with Active Directory, do some research!)
Part 3: Distinguish among packet filtering firewalls, stateful inspection firewalls, and proxy firewalls. A thorough answer will require at least a paragraph for each type of firewall.
Acme Corporation wants to be sure employees surfing the web aren't victimized through drive-by downloads. Which type of firewall should Acme use? Explain why your answer is correct.
Part 4: Explain why an organization's firewall should block incoming packets the destination address of which is the organization's broadcast address.
Part 5: Explain why an organization's firewall should block outgoing packets the source addresses of which are not in the organization's address space.
This section describes how your assignment will be graded. Except in the case of plagiarism, cheating, or copying, you cannot lose more than 100 points.
This assignment is worth 100 points in the "Assignments" category of the course grading plan.
Failure to follow instructions: Up to four points subtracted per part, 20 points for the entire assignment.
Grammar, spelling, and organization: Up to four points subtracted per part, 20 points for the entire assignment.
Incorrect citation or use of the works of others: Up to ten points subtracted per part, 50 points for the assignment as a whole. When you use the words or ideas of others, you need a citation in the text that ties to an entry in your "References" section. When you quote another's work, you need quotation marks. For an example, see An Example of Proper Writing in the "Required Reading" module.
Plagiarism, cheating, or copying another's work: A zero on the assignment and referral to the Student Conduct and Academic Integrity office for other penalties.
Late work: Late work will not be accepted by Desire2Learn and will be recorded as a zero.
| Part | Criteria | Points Available |
|---|---|---|
| 1 |
The definition of honeypot is absent, incorrect, or superficial: -10 There must be at least one advantage and one disadvantage; -5 each if absent, incorrect, or superficial. |
20 |
| 2 |
The description of placement of the Active Directory server is missing or incorrect: -10. The explanation of reasoning for placement is missing, incorrect, or superficial: -10 |
20 |
| 3 |
The description of each of the three types of firewall is missing, incorrect, or superficial: -5 each. The recommendation for Acme is missing, incorrect, or superficial: -5. |
20 |
| 4 | The explanation of why an organization's firewall should block incoming packets the destination address of which is the organization's broadcast address is missing, incorrect, or superficial: -20 | 20 |
| 5 | The explanation of why an organization's firewall should block outgoing packets the source addresses of which are not in the organization's address space is missing, incorrect, or superficial: -20 | 20 |