CIS - Computer Information Systems

CS - Computer Science

CMEM - Communications & Electronic Media

BIS - Business Information Systems

MATH - Computing

EET - Electrical Engineering/ Electronics Technology

Hands-On Assignments

CIS340 – Telecommunications and Networking

Fall 2003 - 3 cr - Dr. Kelley

MSU Combs Bldg - CB-320

+1-606-783-9358 (voice)

+1-309-210-1666 (msgs & faxes)

Office Hours MW 12:30-1:30, TR 4:00-6:00

CIS 340-1 – CB 301

MWF1 – 1:50-2:50

Fall Term:

August 18 - December 12, 2003

Syllabus - Schedule & Assignments -Hands-On Assignments

CIS 340 – Telecommunications and Networking

This List of Hands-On Activities is provided for instructional purposes only. Use at your own risk

All of the projects do assume that you have the skills listed below. If you don’t, ask for help!

1 You know how to install and configure application software with the aid of a wizard.

2. You understand the concepts of local and network file paths well enough to find all sorts of stray files on your computer.

3. You know how to run unzip utilities like http://www.powerarchiver.com/ and http://www.winzip.com/.

4. You know how to use the PrintScrn key (or Alt+PrntScrn keys) on your keyboard to capture screenshots.

5. You have a connection to the internet to download the necessary software and perform the project tasks.

6. You have access to more than one inter-networked computer.

Our emphasis is to see you have fun working hands-on with the concepts you will have learned about in your readings. The deliverable is in most cases a screenshot that documents that you have completed the assignment.

Mini-project work submission instructions and deadlines:

Complete both sets (Hands-On Set A and Hands-On Set B) of the mini-projects listed below.
Submit screenshots to support your assignment so as to show that the assigned tasks have been successfully completed in a SINGLE Word document, compressed as a .zip file named as follows:
The 10 Hands-On Mini-Projects of Set A (for 125 points) are due before midnight Wednesday October 8, 2003. Upload this set to the Blackboard Digital Drop box as lastname.initial.handson.setA.zip

4. Set B (for 125 points) is due before midnight Tuesday November 25, 2003. Upload this set to the Blackboard Digital Drop box as lastname.initial.handson.setB.zip. (Set B will be posted at a later date. )

BEFORE EACH SCREENSHOT, provide the following information. Use complete sentences throughout.
State the Objectives of the project (minimum of 3 lines of text);
State and answer any questions included in the project instructions in a section labeled Answers to Questions;
Include your Observations and Comments about the project. (minimum of 3-5 lines); and
Include a conclusion (minimum of 3-5 lines) stating in your own words what you learned from the mini-project.

Label each project as they are labeled below. In addition, label the accompanying parts of each project (Objectives, Answers to Questions, Observations and Comments, Conclusions) clearly.
J HAVE FUN! J

________________________________________________________________________________

Hands-on Mini-Project 1A – Networking-Related Job Descriptions (10 points)

________________________________________________________________________________

In this hands-on project you will become familiar with the networking-related employment opportunities available you your area.

You will also be expected to name the skills expected by employers for networking-related positions.

1. Go to http://www.comptia.org/certification/default.asp

2. Select CompTIA Network+ from the list of available certifications.

3. Click on the link “Why Network+ Is important. Prepare a numbered list of the reasons given.

4. Click “Future Job Functions.” Prepare a table listing the job title, the job description, the essential functions, and tasks of the position.

5. Include a screenshot documenting your visit to the CompTIA website.

________________________________________________________________________________

Hands-on Mini-Project 2A – Network+ Certification Objectives (10 points)

________________________________________________________________________________

In this assignment you will learn what CompTIA expects you to known when sitting for your Network+ certificate.

Go to http://www.comptia.org/certification/Network/objectives.asp
Prepare a table that lists the 4 Knowledge Domains tested in Network+, their percent weight on the exam, and the topics they address.
Include a screenshot documenting your visit to the CompTIA website.

________________________________________________________________________________

Hands-on Mini-Project 3A – MAC, IP, Gateway, DHCP, DNS Addresses (10 points)

________________________________________________________________________________

In this assignment you will learn how to obtain the MAC address of the network interface card (the “NIC”) installed on your computer, and the IP address your computer is using.

Start:Programs:Run:command:(Enter) to open a command-prompt interface.
CD \ to go to the root folder of your computer.
CLS to clear the screen.
Type ipconfig /all > myconfig.txt and hit Enter.
Type notepad myconfig.txt
Create a table in which you list the following items:

The Host Name of your computer
The MAC address of your NIC
The IP Address assigned to your NIC
Your Subnet Mask
The IP Address for your Default Gateway
The IP Address for your DHCP Server
The IP Addresses for your primary (and secondary) DNS servers.
Add a column to your table in which you explain the purpose of each item listed in the table.

Include a screenshot like the one below documenting your work.

________________________________________________________________________________

Hands-on Mini-Project 4A – Hard-Coding An IP Address, Gateway, and DNS (10 points)

________________________________________________________________________________

In this assignment you will determine what protocols your NIC is currently configured to support.

Start:Control Panel:Network Connections
From the General Tab, select Internet Protocol (TCP/IP)
Make a list of the items used by your connection.
Click the Properties button and enter the following information:

IP Address: 192.168.0.12
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.0.1
Primary DNS: 147.133.1.1
Secondary DNS: 147.133.1.10

Provide two screenshots like the one below documenting your work.
Click CANCEL to let your computer revert to its original settings.

________________________________________________________________________________

Hands-on Mini-Project 5A – The ping and tracert Commands (10 points)

________________________________________________________________________________

In this mini-project you will learn how to use he “ping” and “tracert” command to troubleshoot your NIC and establish network device connectivity and determine the route taken by TCP/IP data packets when traversing the internet network from anywhere in the world!

Start:Run:command:(Enter) to open a command prompt window.
CD \ to return to the drive root.
CLS to clear the screen
Type ping 127.0.0.1. Provide a screenshot of what you see, and explain what it means.
Go to http://visualroute.visualware.com/
Provide your email address and submit a request for a login.
Use the Login ID and password information provided by the email you will receive
Enter your IP address in the Enter Host/URL box provided and submit the “tracert your.net.ip.address” request
The program will trace the packet hops and routes from Dulles VA (Washington DC Area) to your computer.
Click the Snap button and provide a screenshot of the resulting notepad popup.
Report the number of hops, and the city route taken from Dulles VA to your computer.
In which city of the world is the web server for http://www.thewest.com.au/ located? Provide a screenshot of the packet path.
In which city of the world is the web server for http://www.estadao.com.br/ located? Provide a screenshot of the packet path.
In which city of the world is the web server for http://www.guug.de/ located? Provide a screenshot of the packet path.

________________________________________________________________________________

Hands-on Mini-Project 6A – The arp Command (10 points)

________________________________________________________________________________

In this mini-project you will establish a static binding between a MAC address and an IP address so as to be enable your NIC to talk to another network device directly.

Start:Run:command to open a command prompt window.
Type CD \ and hit enter.
Type CLS and hit enter.
Type arp /?
Use one of the arp commands and switches displayed to display the current arp table your NIC knows about.
Use one of the arp commands and switches to establish a static link route between your NIC and the network printer having:

1. Printer’s IP address: 147.133.57.190

2. Printer’s MAC address: 08-00-09-7a-0a-b9

Use one of the arp commands and switches to display the updated arp table your NIC now knows about.
Use one of the arp commands and switches to remove the static entry you just created from your NIC’s arp table.
Provide a screenshot of your commands after their execution, similar to the screen below:

________________________________________________________________________________

Hands-on Mini-Project 7A - SnadBoy's Password Revelation (15 points)

________________________________________________________________________________

Most Windows applications hide and display network login password fields in textboxes that mask characters and keystrokes with **********'s. This little fun drill uses SnadBoy's Revelation to view the hidden contents of these star'd textboxes, typically passwords.

Download and install SnadBoy's Revelation 2.0 from http://www.snadboy.com/.
Start a SnadBoy session from your Start:Programs:SnadBoy's Revelation v2:Revelation menu.
Fire up your messaging application (MS-Outlook) and select the Tools:Accounts menu.
Select the Mail tab.
Select a mail account from the list and click the Properties button.
Click the Servers tab.
While holding down your mouse button, drag the SnadBoy View Tool over the ***'d Password textbox to reveal the password.
Provide a screenshot of your installation of SnadBoy in action.
Go to http://www.onclick.com/cis405/2003/fall/examples/cookies/cookiedemo.htm and enter a login and password.
Use SnadBoy to reveal your password!
Provide a screenshot of your installation of SnadBoy revealing your ****’d login password!

________________________________________________________________________________

Hands-on Mini-Project 8A – Network Web Servers and Session State Cookies (15 points)

________________________________________________________________________________

This practice drill looks at the cookies your browser uses to remember who you are and where you've been. Cookies are a cute name for small text files that maintain the information state of your web session between page views. Cookies are sent by web servers over the network. The information stored in a cookie could include, for example, your credit card information. Cookies when misused pose a significant security risk. Cookies can be manipulated on a local computer before reconnecting to a remote server, potentially causing unexpected or unauthorized results on the server. Also, compromised cookies processed by a poorly designed website could for example cause a shipment of goods to be sent to one location and be billed to your credit card account.

To view the cookies currently stored on your system, do the following:

Start Windows Explorer or search My Computer for files and directories named "cookies." Alternatively, in Internet Explorer select the menus, tabs, and buttons Tools:Internet Option:General:Settings:View Files.
Double-click a sampling of the cookie files to see what type of information they contain. The information in the cookie is read from your hard drive and passed to the web-server every time a POST HTTP command is sent to the web-server that originally set the cookie through a previously viewed webpage. Usually the cookie is merely a key to information already on the server.
Provide a screenshot of the current cookies on your computer, sorted in reverse order by expiration date. Tip: Click the Expires column heading once or twice to sort the cookies by expiration date.
Fire up Internet Explorer
From the Tools:Internet Options… dialog, set your Security setting to LOW
From the Tools:Internet Options… dialog, set your Privacy setting to Accept All Cookies
Go to http://www.onclick.com/cis405/2003/fall/examples/cookies/cookiedemo.htm and enter a login and password.
Set the Cookies by clicking the Set Cookies! Button.
Provide a screenshot of the cookies on your computer showing the new added cookie!
Remove the cookies from your computer.
Return the Tools:Internet Options… settings for the Security and Privacy settings to their original setting.

________________________________________________________________________________

Hands-on Mini-Project 9A - Shared Network Folders (15 points)

________________________________________________________________________________

In this nifty little project you will configure a file share on a Windows network. Shared drives are a veritable menace to network administrators because they defeat server-based directory (and file) access and group and user permission matrix controls.

Open My Documents in Windows Desktop.
Select drive C: and then the menu File:New:Folder.
Rename the New Folder "dangerous."
Go to your Control Panel and use the Network icon to enable file sharing on your computer (check the "I want to share files and folders" checkbox)
Right-click the dangerous folder and then select Properties...
Click the Sharing and Security tab.
Check Share this folder on the network. Use a share name of sneaky.
Check Allow Network Users to Change My Files
Click Apply, then OK.
Create a new word document named CorpSecrets.doc and save it to the dangerous folder.
From another computer on the network, browse to sneaky through Network Neighborhood (on Windows 9x computers), or My Network Places (on Windows 2000/XP).
Provide a screenshot showing the file CorpSecrets.doc in the folder sneaky as being accessible on the remote networked computer.
From the remote computer, double-click to view, modify, and/or File:Save CorpSecrets.doc to another folder or floppy disk on the remote computer.
Save any changes, return to the original computer with the share, check the file for any modifications (or new spying instructions!).
Remember to remove the share once you’re finished with the mini-project by removing the network share and deleting the folder dangerous!

________________________________________________________________________________

Hands-on Mini-Project 10A - Promiscuous NIC Packet Sniffers (20 points)

________________________________________________________________________________

Sniff’em captures network data being sent over a network. With the right expertise, time, and translation equipment, the captured information can be viewed and compromised by unintended recipients.

Download and install the trial version of Sniff’em from http://www.sniff-em.com/download.shtml. The Trial version only captures outgoing data, it does not display or record incoming data.
Reboot your system when prompted.
When you launch the program (Start:Programs:Sniffem:Sniffem), configure your settings as follows:
First, On the Sniff’em menu bar, click Tools and then Settings. In the first screen, choose the adapter you want to use for your session.
Leave the General button alone. You should not need to change any of the General settings.
Next, click the Capture button and then click the Stop capture after filling buffer radio button.
For purposes of this mini-project, uncheck the Unlimited option in the Limit size text field of the window.
Click the OK button.
If you don’t already have a free email account with either Hotmail or Yahoo!, open your browser and set one up now for the purpose of this mini-project.
Important!: Close your internet browser and then restart it.
Return to Sniff’em and click Capture and then click Stop and then click Start.
Go to your browser and complete a simple search using the website http://www.google.com/
Return to your browser and log in to your free mail account. Send yourself a test message. Include a meaningful subject line and a sentence or two of meaningful text.
Try experimenting with your Instant Messenger chat software, or sending an email from your real email account.
Now return to Sniff’em and select Stop from the Capture menu.
Click View, then click Buffer decoding. This shows you a broad overview of decoded network uses and captures. The left panel displays each source IP along with its corresponding decoded protocols. The upper-right panel shows the packet lists for each protocol chosen, and the lower-right shows each packet’s contents. If necessary, click the "+" to the left of all the items on the left panel to expand them.
Select one of the protocols listed. You will see the Packet List populate with the packets associated with that protocol. When you click on each of these you will see the buffer contents in the Buffer View Panel. Spend some time looking at these buffers. You should be able to make out the short network exchange session that you just captured, including the contents of the google.com session and the email that you sent to yourself. You’re seeing only half the traffic, the outbound portion. Remember the trial version of Sniff’em only tracks outbound traffic.
Once you find the start of the contents of your google.com session and of your email session, right-click the packets in the Packet list, then mark and tag them.
Click View. Click Capturing from the View menu. What do you see in the upper-right Packet List area?
Provide at least two screenshots showing that you found the packets related to your short google.com and email (or chat) sessions.
Have fun! Don’t forget to document your work carefully with Screenshots, and write down your observations in detail!

________________________________________________________________________________

Hands-on Mini-Project 1B - ODBC Networked Database SQL Bridges (10 points)

________________________________________________________________________________

Network connectivity to shared databases is often provided through proprietary interfaces. A popular shim used to connect to SQL Server and Access databases is the ODBC (Open Database Connectivity) SQL (Structured Query Language) bridge you will install in this mini-project. You will complete this assignment in two phases. First, you will create a shared folder. Next, you will setup a simple Microsoft Access database in the shared folder. Then you will configure a networked computer to connect to the shared folder using an ODBC bridge.

A. Create a shared folder

1. Create a folder c:\shared

2. Right-click c:\shared and set the Sharing and Security.. settings to Share this folder on the network with a name of shared.

B. Create a simple Access database

1. Start:Control Panel: Network Connections.

2. Start:All Programs:Microsoft Access.

2. File:New Database:Blank Database

3. Save warehouse.mdb to c:\shared.

4. Double-click Create Table in Design View

5. Create tbl_parts with5 fields: part_number (text), part_description (text), part_qty_on_hand (number), part_cost (number), and part_price (number).

6. Click the red X box on the upper right of the table to save it and close it.

Part C. Create the ODBC connection to the shared folder from a networked computer

1. Click Start:Control Panel:Administrative Tools: Data Sources (ODBC).

2. Click the System DSN tab

3. Click the Add button, and select Microsoft Access Driver (*.mdb) from the list.

4. Click Finish.

5. Specify dsnWarehouseMDB as the data source name, and select your c:\shared\warehouse.mdb as the database to connect to.

6. Click OK, and OK again. You have created your ODBC bridge, dsnWarehouseMDB.

Part D. Documentation and Questions

7. Provide a screenshot showing your warehouse.mdb in the c:\shared folder.

8. Provide a screenshot showing the dsnWarehouseMDB ODBC connection in your ODBC Data Source Administrator.

9. Answer the question: Will the ODBC installation have to be repeated on every station on the network needing access to warehouse.mdb? Why or why not?

________________________________________________________________________________

Hands-on Mini-Project 2B - Network Security Management Console Snap-Ins (10 points)

________________________________________________________________________________

1. Start:Run:mmc

2. File:Add/Remove Snap-In:Standalone

3.Add...Security Configuration and Analysis:Close:OK

4. Right click on the Security Configuration and Analysis item

5. Select Choose Open Database from the pop-up menu

6. Type in security.sdb as the new database name and press OPEN.

7. Select setup.security.inf as the security configuration file to import and press OPEN.

8. Right-click the Security Configuration and Analysis scope item again

9. Select Analyze Computer Now

10. In the dialog, type the security.log file path, and then click OK

11. Wait a few minutes to let your computer perform the security analysis.

12. Provide screenshots of your Security Console

12. Report the names of the Restricted Groups on your computer.

________________________________________________________________________________

Hands-on Mini-Project 3B - Login Account Lockout Policy (10 points)

________________________________________________________________________________

One of the ways to protect a network is to enforce a lockout policy based on an arbitrary number of incorrect logins. The idea is to discourage an unauthorized login obtained by repeatedly guessing a weak password until the correct one is identified.

1. Start:Programs:Administrative Tools: Local Security Policy

2. Expand Account Policies

3. Select Account Lockout Policy

4. Double-click account lockout threshold

5. Change the Account Lockout Threshold to 3, and click OK

6. You will be prompted to accept the values for Account Lockout Duration and Reset Account Lockout Counter After 7. Double click the Account Lockout Duration and the The Reset Account Lockout to 15 minutes.

8. Provide a screenshot showing your account lockout modifications.

9. Reset your lockout settings to their original settings (0, not applicable).

________________________________________________________________________________

Hands-on Mini-Project 4B - Exporting Event Log Documentation Files (10 points)

________________________________________________________________________________

One of the important functions of a network administrator is to document the status of the network under their responsibility on an ongoing basis. Practiced administrators in particular should be sufficiently familiar with the daily function of their systems so as to be able to recognize immediately any unusual patterns of activity on their network. In this mini-project you will export the Event log for your computer in a folder in such a manner that you will be able to later compare information obtained over several days, and recognize event frequency and event patterns. To complete this assignment, you will collect two Event Logs obtained on different days, and compare them.

1. Start:Programs:Control Panel:Computer Management

2. Expand the Even Viewer.

3. Right-click the Application menu item and Select Save Log file As.

4. Save the file when prompted to c:\logfiles\eventlog_YYYY_MM_DD.evt.

5. Repeat the Event Log Save two days later, again saving the logfile as c:\logfiles\eventlog_YYYY_MM_DD.evt.

6. Right-click the Even Viewer list item and select Open Log File.

7. Set the Log Type to Application, and the display name to eventlog_YYYY_MM_DD.evt.

8. Repeat the Open Log File steps for the second event log file.

9. Provide a screenshot showing your two recovered Event Log files stored on disk

10. Create a table in which you itemize the Information, Warning, and Error events reported by each of your log files.

11. Which events occur with the most frequency? Which events are the greatest cause of concern?

12. Suggest a solution for 3 of the Errors flagged in your table.

________________________________________________________________________________

Hands-on Mini-Project 5B - Using the AT Command To Schedule Activity (10 points)

________________________________________________________________________________

One of the common activities of network administrators is to fire off applications on a regular daily or weekly time schedule. On Unix/Linux commands, this functionality is provided by the crontab file. On windows machines, we will use the AT command.

1. Use notepad.exe to create a text file named c:\logfiles\mylogfile.txt. List your day's TODO list in the file.

2. Start:Run:Cmd

3. cd\

4. cls

5. Obtain your computer's Host Name with the command: ipconfig /all

6. Provide a screenshot showing your computer's current time obtained with the command: net time \\your-host-name

7. Set HH:MM to 10 minutes later: at \\your-host-name HH:MM /interactive "c:\logfiles\mylogfile.txt"

8. Enter at at the command prompt and provide a screenshot of your newly scheduled job in queue.

9. Wait for the 10 minute window to elapse, and obtain a screenshot showing mylogfile.txt in notepad.exe

10. Explain how a systems administrator could use the AT command to view daily system backup log files.

________________________________________________________________________________

Hands-on Mini-Project 6B - PGP eMail Encryption And Sender Authentication (10 points)

________________________________________________________________________________

In this mini-project you will setup Outlook to send encrypted and authenticated email messages based on public and private encryption keys. Our functionalty will be limited in actually sending the message because the encryption software requires a license, but you will get the general idea.

1. Go to http://www.pgpi.org/download and install the PGP for Windows 8.0 Freeware (or the version for your OS).

2. When prompted by the installation utility, say that you need keyrings because you're a New User.

3. Restart your computer when prompted.

4. Click Later if prompted for a PGP Authorization key

5. Provide a name, email account, and passphrase when prompted to generate your encryption keys.

6. Start Outlook, and then from the PGP menu select Launch PGPKeys.

7. If your key does not appear listed, select Keys:New Key from the popup window that appears.

8. From Outlook, select PGP:Options, and then click the Email tab.

9. Check the checkboxes Encrypt new messages by default, and Sign new messages by default.

10. Create a new eMail message in which you specify yourself as the email address recipient.

11. Provide your passphrase when prompted, and try to send the message. Provide a screenshot.

12. From the PGP menu, select LaunchPGPKeys.

13. Select your key at select Keys:Export... from the menu to export your public key to disk

14. Save your .asc to c:\My Documents\Security\, and provide a screenshot showing your .asc file on disk.

15. Send your public key to a friend as an email attachment. Disable he PGP buttons before sending.

16. From the PGP menu, select LaunchPGPKeys, then click the Files tab.

17. Provide a screenshot showing the physical location of your public an private keys on your computer.

________________________________________________________________________________

Hands-on Mini-Project 7B - Installing MSOffice Service Packs (10 points)

________________________________________________________________________________

In this mini-project you will update updates for the Microsoft Office Suite. Obtaining and applying product fixes and patches is one of the most common responsibilities of entry-level systems administrators. To actually complete the updates, you must have an MS-Office CD-ROM or DVD available. However, you don't need the disk to do enough to complete all the required steps in this assignment.

1. Go to http://office.microsoft.com/officeupdate/

2. Click the Office Update: Check For Updates Link.

3. Provide a screenshot showing the updates available for your computer.

4. If you have an MS-Office CD-ROM available, download the updates, and apply them.

________________________________________________________________________________

Hands-on Mini-Project 8B - Choke Routers, Bastion Hosts, and DMZs (10 points)

________________________________________________________________________________

Given the network diagram below, and the text found in "How to Build and Run a Firewall," By Simon Bisson (http://www.itp-journals.com/nasample/t1803.pdf) in about 10-12 lines of text explain the purpose of (a) the choke router, (b) the bastion host, and (c) the DMZ in the secured network shown below:

Network diagram showing a local area network connected to the internet using a choke router, a bastion host, and a DMZ. Source: http://www.intrusion.com/products/images/prodnetdiag/vpnfw_diagr0102.gif

________________________________________________________________________________

Hands-on Mini-Project 9B - Honeypot Server Installation (10 points)

________________________________________________________________________________

In this practice set you will use BackOfficer Friendly, a honeypot, that is, a trap that invites intruders by impersonating a Back Orifice server (an underground and nefarious Back Office server hijacker--herein the jest on our friendly "officer" version).

Honeypots behave to the outside world as if they were resident of a server that has been secretly hijacked. In reality it gathers and logs information about the various techniques used to compromise networks. For example, it can provide fake FTP (file server), HTTP (web-server), and SMTP (mail server) services. BackOfficer Friendly can identify not only the IP address the intruder's sweep and probes came from, but also record the options the attacker attempted to invoke. Our version runs on your Windows system and notifies you whenever someone tries to access one of these services on your system.

1. Download, unzip and install a copy of BackOfficer Friendly for Windows on your machine by downloading the software from http://online.securityfocus.com/tools/2222 to C:\Program Files\backofficer Note: The UNIX OS claim is incorrect, the software actually is for Windows computers.

2. Install the honeypot by double clicking nfrbofl.exe, found in your install directory. Use C:\Program Files\backofficer as your installation directory.

3. When prompted, make sure you click No on the question "Do you want BackOfficer to start listening to the network every time you start Windows?" Caution: The default is Yes!

4. Click Yes to "Do you want BackOfficer Friendly to start listening to the network now?" This will put BackOfficer Friendly on Stake-out Duty. You should now see a nfrbof.exe runable in your install directory, a file named the same as the installation utility except without an ending "l" in its name).

5. Click OK on the tiny "Install Complete" popup window. BackOfficer Friendly runs as background application on your Windows machine, with a small icon in the system tray indicating its presence. The BackOfficer Friendly window only appears when there is an alert.

6. To access the BackOfficer Friendly Window, double click on the BackOfficer Friendly icon in the system tray:

7. Click Options on the menu bar and view the Options menu. Note the types of silent bait and trap patrolling scans can be performed with this utility: FTP, Telnet, SMTP (mail--send), HTTP (web-server), POP3 (mail-receive), IMAP2 (mail). Select Telnet so that it has a checkmark by it.

8. Obtain your computer's IP address (Start:Run:ipconfig or Start:Run:winipcfg depending on your version of Windows).

9. Now try to Telnet to your machine from another machine, or have a friend do so. What happens when a connection attempt is made? This is easy to do: on the second machine, fire up Internet Explorer and type telnet:://147.133.34.240 in the URL address bar.

10. Provide a screenshot of what happens when BackOfficer senses the telnet connection attempt from the second network computer as documentation that you have completed in this hands-on assignment.

11.To shutdown BackOfficer Friendly, select File:Exit from the application menu. If you want to restart it later, double-click nfrbofl.exe in your install directory.

12. To remove BackOfficer Friendly from your computer use the Add/Remove Programs icon in Control Panel.

________________________________________________________________________________

Hands-on Mini-Project 10B - Tomcat WebServer Installation (35 POINTS)

________________________________________________________________________________

In this hands-on mini-project you will complete the installation of your Tomcat webserver. The mini-project will be completed in two parts. First you will install the supporting Java infrastructure. Then you will install and configure the Tomcat webserver to let you retrieve your very own webpage from a networked computer from anywhere in the world!

Part A. Install the Java SDK support infrastructure (10/35 POINTS)

1. Download the J2SE v 1.4.2_02 or greater SDK from http://java.sun.com/j2se/1.4.2/download.html

2. Accept the software license agreement when prompted.

3. Save the j2sdk-1_4_2_02-windows-i586-p-iftw.exe installation files to c:\sun\java.

4. Run the Windows Iinstaller by double-clicking the .exe you just downloaded.

5. Change the installation directory to C:\sun\java\ when asked for an install folder.

6. Once the installation has completed, Start:Control Panel:System