Scribd Logo
Upload

Welcome to Scribd!

  • CT037 Tutorial6

    Uploaded by

    Vasan Suryaßoyzz
    3 views1 page

    Original Title

    CT037_TUTORIAL6.doc

    Copyright

    © © All Rights Reserved

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    3 views1 page

    CT037 Tutorial6

    Uploaded by

    Vasan Suryaßoyzz

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 1

    TUTORIAL 6

    A student suspects there is vulnerability on a system in a university public access


    laboratory. She tests this by trying to exploit the vulnerability. She succeeds, and
    obtains privileges that she would not normally have. She reports both the hole and
    her exploiting it to the system staff, who in turn report it to the manager of the
    laboratory. The manager files charges of breaking into the computing system against
    the student. The student has to appear before the Student Judicial Authority – she’s in
    trouble!

    • Did the student act ethically by testing the system for the security hole before
    reporting it?

    • Did the manager act ethically by filing charges against the student?

    • The manager told the system staff not to bother fixing the hole, because the
    action taken by the SJA would deter any further break-ins through that hole.
    Was the manager’s action appropriate?

    Form a group of 5 and discuss the scenario above.


    Submit you answers at the end of the tutorial.

    You might also like