DOCSLIB.ORG

An Implementation and Evaluation of PCI DSS 3.0 for E-Commerce in a Testing Environment

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
An Implementation and Evaluation of PCI DSS 3.0 for E-Commerce in a Testing Environment LETTERKENNY INSTITUTE OF TECHNOLOGY A thesis submitted in partial fulfilment of The requirements for the Master of Science in Computing in Information Systems and Software Security Letterkenny Institute of Technology ________________________________________________________________ An Implementation and Evaluation of PCI DSS 3.0 for E-Commerce in a Testing Environment Author: Supervisor: Kelly McWeeney Mr. John McGarvey Submitted to Quality and Qualifications Ireland (QQI) Dearbhú Cáilíochta agus Cáilíochtaí Eireann) March 2015 1 Declaration I hereby certify that the material, which I now submit for assessment on the programmes of study leading to the award of Master of Science in Computing in Enterprise Application Development, is entirely my own work and has not been taken from the work of others except to the extent that such work has been cited and acknowledged within the text of my own work. No portion of the work contained in this thesis has been submitted in support of an application for another degree or qualification to this or any other institution. Signature of candidate: __________________ Date: _________________ 2 Acknowledgments This thesis would not have been possible without the support of many people at the Letterkenny Institute of Technology. The author would like to acknowledge and express her sincere gratitude to her supervisor John McGarvey for his guidance and support. The author would also like to extend her gratitude to the Head of Computing Department Mr. Thomas Dowling, and all the staff in Letterkenny Institute of Technology. Finally the author would also like to thank Sean McWeeney, Darina McWeeney, Shane McWeeney, Enda Cassidy, Gary Cassidy and Anthony Caldwell for their support. 3 Abstract Threats to personal payment card information are continually on the rise. To implement a formal process for protecting this information PCI DSS was created. However credit card fraud is still rising. This leads to the question of whether or not PCI DSS is effective in protecting this data. This dissertation implements the 12 PCI DSS 3.0 requirements and tests the effectiveness in regard to the complexity of implementation. While there are clearly issues within the standard: existing ambiguities, speed of adapting to industry findings: the main issue with the standard is not with the standard itself but with a failure to comply and still accepting electronic payments. The self-assessment options as found in testing would have left many network vulnerabilities that would remain undiscovered without full standard implementation. 4 Table of Figures Figure 1: PCI Security Standards Council (2010) requirements evolution .............................. 15 Figure 2: Data Breach Statistics (Sullivan, 2013) ..................................................................... 20 Figure 3: Full Network Design for PCI DSS 3.0 Compliance Testing......................................... 26 Figure 4: Network Switches ..................................................................................................... 31 Figure 5: Ubuntu Hard Disk Partitions ..................................................................................... 31 Figure 6: Removal of Default PhpMyAdmin Users .................................................................. 32 Figure 7: Audit Ubuntu Server Checklist (Center of Internet Security, 2015) ......................... 33 Figure 8: Apache Server Confirmation ..................................................................................... 34 Figure 9: CIS Audit Apache Server Checklist (Centre of Internet Security, 2012) ................... 34 Figure 10: ClearOS Interfaces................................................................................................... 35 Figure 11: Smoothwall Configuration and Logging Options .................................................... 36 Figure 12: Implementation of RSA SSL..................................................................................... 37 Figure 13: TLS v1.2 configuration............................................................................................. 37 Figure 14: Successful MySQL SSL configuration ...................................................................... 38 Figure 15: php.ini configuration .............................................................................................. 39 Figure 16: Comodo Installation ................................................................................................ 40 Figure 17: Self-Assessment Versions ....................................................................................... 40 Figure 18: Wireshark TLS handshake ....................................................................................... 41 Figure 19: HTTPS Communications .......................................................................................... 42 Figure 20: Nikto Configuration................................................................................................. 42 Figure 21: Scan for Wireless Routers ....................................................................................... 43 Figure 22: De-Authorisation Packet Injection .......................................................................... 44 Figure 23: Wireshark capture of AES keys ............................................................................... 44 Figure 24: Failed Aircrack Attack ............................................................................................. 45 Figure 25: PCI DSS Requirement 11.3 ...................................................................................... 47 5 Table of Acronyms Acronym Meaning Acronym Meaning ACL Access Control Lists NAT Network Address Translation AES Advanced Encryption Standard NIC Network Interface Controller CDE Card Data Environment NIST National Institute of Standards and Technology CIS Centre for Internet Security OS Operating System DMZ De-Militarised Zone PCI Payment Card Industry DPA Data Protection Act PCI DSS Payment Card Industry Data Security Standard EAPOL Extensible Authentication Protocol over SHA Secure Hash Algorithm LAN GUI Graphical User Interface SDLC Systems Development Life Cycle IDS Intrusion Detection Systems SSL Secure Sockets Layer IP Internet Protocol TLS Transport Layer Security ISO International Organization for VLAN Virtual Local Area Network Standardization IEC International Electro-Technical VM Virtual Machine Commission MD5 Message Digest Algorithm WPA Wi-Fi Protected Access 6 Table of Contents Acknowledgments...................................................................................................................... 3 Abstract ...................................................................................................................................... 4 Table of Figures .......................................................................................................................... 5 Table of Acronyms ..................................................................................................................... 6 1. Introduction ...................................................................................................................... 12 1.1 Purpose ................................................................................................................................. 12 1.2 Background ........................................................................................................................... 13 1.3 Outline of Report .................................................................................................................. 13 1.4 Research Question ................................................................................................................ 13 1.5 Research Objectives .............................................................................................................. 13 2. Literature Review ............................................................................................................. 14 2.1 Introduction .......................................................................................................................... 14 2.2 The History and Evolution of PCI DSS ................................................................................... 14 2.2.1 The Founding and Early Conceptions of the PCI Model ................................................ 14 2.2.2 PCI DSS 2.0 .................................................................................................................... 15 2.2.3 PCI DSS 3.0 .................................................................................................................... 16 2.3 The Importance of the Payment Card Industry Data Security Standard .............................. 17 2.3.1 Protecting Data ............................................................................................................. 17 2.3.2 Implications of Non-Compliance ................................................................................... 18 2.3.3 Lack of Understanding .................................................................................................. 18 2.4 PCI DSS and Legislation ......................................................................................................... 19 2.5 Data Breaches ....................................................................................................................... 19 2.6 Implementing the Standard .................................................................................................
Load more

Recommended publications
  • Clearcenter Marketplace Whitepaper
    ClearOS Marketplace – Developer White Paper March 2013 Version 1.1 © ClearCenter 2012 ClearOS Marketplace – Developer White Paper Table of Contents Introduction To ClearOS...................................................................................................................................... 3 ClearFoundation............................................................................................................................................................................................................................................. 3 ClearCenter........................................................................................................................................................................................................................................................ 3 What Constitutes an App?................................................................................................................................... 4 Function............................................................................................................................................................................................................................................................... 4 Packaging............................................................................................................................................................................................................................................................ 4 Maintenance....................................................................................................................................................................................................................................................
    [Show full text]
  • Technology Overview New Features Backupedge
    Technology Overview - BackupEDGE™ Introduction to the New Features in BackupEDGE 3.x Technology Overview BackupEDGE has a long history of providing reliable data protection for New Features many thousands of users. As operating systems, storage devices and BackupEDGE 3.x usage needs and tendencies have changed over the years, it has continuously met the challenge of providing inexpensive, stable backup and disaster recovery on a variety of UNIX and Linux platforms. Clients routinely find new and clever ways to utilize products. Storage devices have taken on new and exciting features, and incredible capacities. Products designed years ago had built-in limits that were thought to be beyond comprehension. Today, these limits are routinely exceeded. The need for data security is even more apparent. We’re constantly asking our To continue to meet the evolving needs of our clients, we are always clients what tools our asking what features of our products they find most useful, what products need to serve them improvements we can make, and what new requirements they have. better. We’ve used this knowledge to map out new product strategies designed to anticipate the needs of the next generation of users, systems and storage products. This has resulted in the creation of BackupEDGE 3.x, with a combination of internal improvements, new features and enhanced infrastructure designed to become the backbone of a new generation of storage software. Summary of Major Changes and Additions BackupEDGE 3.x features include: • Improvements to partition sizing, UEFI table cleanup after DR, and SharpDrive debugging (03.04.01 build 3). • Support for Rocky Linux 8.4 and AlmaLinux 8.4 (03.04.01 build 2).
    [Show full text]
  • Clearos and Marketplace by Clearcenter
    Fact Sheet ClearOS and Marketplace by ClearCenter ClearCenter is redefining the future of IT Management for small and medium sized organizations in a revolutionary way that is simple, secure and affordable. ClearCenter has created ClearOS — an firewalls, switches, routers, NAS/SAN open source operating system — that storage and servers. There was also the is uniquely tailored to fit the IT needs of need to buy and/or pay yearly main- ClearOS By the Numbers almost any environment. tenance agreements for software like • 10.3 million users ClearOS was designed to be simple, server Operating Systems, virtualization, • 400,000+ deployments secure and affordable. domains, directories or firewall updates. • 150+ countries Before ClearOS, most small IT shops ClearCenter has redefined the way IT • 7 years in development bought and maintained a rack full of shops deploy and manage core services. • 100+ Marketplace apps several hardware and software solutions Thanks to ClearOS, you can now replace from multiple vendors. everything in your rack with just one Typical deployments consisted of server and ClearOS. Before ClearOS Apps and Services vs. Individual Appliances ClearOS Marketplace apps include ClearOS built-in features combined with multiple firewalls, content filtering, easily accessible ClearOS Marketplace intrusion prevention and detention, apps completely replace all of the old weekly signature updates, dynamic VPN, piecemeal hardware, software, servers, reporting, bandwidth control, directories, security appliances and management domains, databases, FTP, file sharing, file components in your current rack. Now all scanning, print servers, backups, email, server, network and gateway functions on-premises/cloud storage and more. are run on a single piece of hardware pre- Use ClearOS and Marketplace apps senting a smaller attack surface.
    [Show full text]
  • File Integrity Monitoring for PCI DSS in 3 Easy Steps
    FileIntegrityMonitoringforPCIDSS in3EasySteps CimTrak is an advanced file and system integrity monitoring platform offering real-time change detection capabilities that map and align with nearly half of the PCI DSS technical requirements. Many PCI environments lack integrity management because it is often per- ceived as being too expensive, too hard to install and manage, and produces too much “noise.” PCI DSS and file integrity monitoring fit together like a hand and glove. Sections 10.5.5 and 11.5 are perfect examples where change detection controls are identified and required: PCI DSS 11.5 “Deployfileintegritymonitoringsoftwaretoalertpersonneltounauthorizedchangesofcriticalsystemfiles, configurationsfiles,orcontentfiles;andconfigurethesoftwaretoperformcriticalfilecomparisonsatleast weekly.” PCI DSS 10.5.5 “Usefileintegritymonitoringorchangedetectionsoftwareonlogstoensurethatexistinglogdatacannot bealteredwithoutgeneratingalerts…” 1-877-4-CIMCOR|CIMCOR.COM FILEINTEGRITYMONITORINGFORPCI Security professionals know unexpected changes can mean that something bad is happening to your systems. With new forms of malware continuously being unleashed daily, much of it is classified at zero-day, and requires a robust integrity solution to detect such threats. As these threats are unsignatured, many will find their way through perimeter defenses and attempt to take up residence in your ni - frastructure. Each day seems to bring news of the latest breach and compromise of payment card data. Proactively being alerted to un- expected and unauthorized changes can mean the difference between eliminating a threat quickly or losing your customer’s personal information. Many people have been fallen victim to the notion that there is only one FIM product on the market. Because of this, organizations suffer through the extremely high costs of ownership and operation, scalability limitations and general complexity believing they have no other available options.
    [Show full text]
  • Debian \ Amber \ Arco-Debian \ Arc-Live \ Aslinux \ Beatrix
    Debian \ Amber \ Arco-Debian \ Arc-Live \ ASLinux \ BeatriX \ BlackRhino \ BlankON \ Bluewall \ BOSS \ Canaima \ Clonezilla Live \ Conducit \ Corel \ Xandros \ DeadCD \ Olive \ DeMuDi \ \ 64Studio (64 Studio) \ DoudouLinux \ DRBL \ Elive \ Epidemic \ Estrella Roja \ Euronode \ GALPon MiniNo \ Gibraltar \ GNUGuitarINUX \ gnuLiNex \ \ Lihuen \ grml \ Guadalinex \ Impi \ Inquisitor \ Linux Mint Debian \ LliureX \ K-DEMar \ kademar \ Knoppix \ \ B2D \ \ Bioknoppix \ \ Damn Small Linux \ \ \ Hikarunix \ \ \ DSL-N \ \ \ Damn Vulnerable Linux \ \ Danix \ \ Feather \ \ INSERT \ \ Joatha \ \ Kaella \ \ Kanotix \ \ \ Auditor Security Linux \ \ \ Backtrack \ \ \ Parsix \ \ Kurumin \ \ \ Dizinha \ \ \ \ NeoDizinha \ \ \ \ Patinho Faminto \ \ \ Kalango \ \ \ Poseidon \ \ MAX \ \ Medialinux \ \ Mediainlinux \ \ ArtistX \ \ Morphix \ \ \ Aquamorph \ \ \ Dreamlinux \ \ \ Hiwix \ \ \ Hiweed \ \ \ \ Deepin \ \ \ ZoneCD \ \ Musix \ \ ParallelKnoppix \ \ Quantian \ \ Shabdix \ \ Symphony OS \ \ Whoppix \ \ WHAX \ LEAF \ Libranet \ Librassoc \ Lindows \ Linspire \ \ Freespire \ Liquid Lemur \ Matriux \ MEPIS \ SimplyMEPIS \ \ antiX \ \ \ Swift \ Metamorphose \ miniwoody \ Bonzai \ MoLinux \ \ Tirwal \ NepaLinux \ Nova \ Omoikane (Arma) \ OpenMediaVault \ OS2005 \ Maemo \ Meego Harmattan \ PelicanHPC \ Progeny \ Progress \ Proxmox \ PureOS \ Red Ribbon \ Resulinux \ Rxart \ SalineOS \ Semplice \ sidux \ aptosid \ \ siduction \ Skolelinux \ Snowlinux \ srvRX live \ Storm \ Tails \ ThinClientOS \ Trisquel \ Tuquito \ Ubuntu \ \ A/V \ \ AV \ \ Airinux \ \ Arabian
    [Show full text]
  • OCLUG Distro Talk 2015-12-03
    2015 Distro Talk Linux in all of its gory distros Linux Distros • Linux comes in a variety of distribu7ons, some well known, others very obscure. • A quick check of Distrowatch shows 272 distros with their page hit ranking1 – There are undoubtedly at least as many more. 1 As of 2015-11-30 anyway 2015-12-03 OCLUG Presentaon 2 The full Distrowatch rank list 2015-12-03 OCLUG Presentaon 3 Top 10 Distribu7ons Rank Distribuon 1 Mint 2 Debian 3 Ubuntu 4 openSUSE 5 Fedora 6 Mageia 7 Manjaro 8 CentOS 9 Arch 10 elementary 2015-12-03 OCLUG Presentaon 4 CentOS COMMUNITY ENTERPRISE OPERATING SYSTEM 2015-12-03 OCLUG Presentaon 5 Official Defini7on • The CentOS Linux distribu7on is a stable, predictable, manageable and reproducible plaorm derived from the sources of Red Hat Enterprise Linux (RHEL). hps://www.centos.org/about/ 2015-12-03 OCLUG Presentaon 6 Well… • That is the current propaganda, now that RedHat has taken over the reins of the project • CentOS started out as something similar to Scien7fic Linux, essen7ally a way to get RedHat without having to deal with all the licensing and support costs – More on this later 2015-12-03 OCLUG Presentaon 7 What’s in a name? • As noted on the sec7on 7tle, CentOS stands for Community ENTerprise Operang System • As the name implies, it is an enterprise-class operang system • This translates as stable, long term support and older versions of packages 2015-12-03 OCLUG Presentaon 8 What’s in a name? • It is a community-supported, free version of RHEL (RedHat Enterprise Linux) • You can find it deployed on the web
    [Show full text]
  • Debian and Its Ecosystem
    Debian and its ecosystem Stefano Zacchiroli Debian Developer Former Debian Project Leader 20 September 2013 OSS4B — Open Source Software for Business Prato, Italy Stefano Zacchiroli (Debian) Debian and its ecosystem OSS4B — Prato, Italy 1 / 32 Free Software & your [ digital ] life Lester picked up a screwdriver. “You see this? It’s a tool. You can pick it up and you can unscrew stuff or screw stuff in. You can use the handle for a hammer. You can use the blade to open paint cans. You can throw it away, loan it out, or paint it purple and frame it.” He thumped the printer. “This [ Disney in a Box ] thing is a tool, too, but it’s not your tool. It belongs to someone else — Disney. It isn’t interested in listening to you or obeying you. It doesn’t want to give you more control over your life.” [. ] “If you don’t control your life, you’re miserable. Think of the people who don’t get to run their own lives: prisoners, reform-school kids, mental patients. There’s something inherently awful about living like that. Autonomy makes us happy.” — Cory Doctorow, Makers http://craphound.com/makers/ Stefano Zacchiroli (Debian) Debian and its ecosystem OSS4B — Prato, Italy 2 / 32 Free Software, raw foo is cool, let’s install it! 1 download foo-1.0.tar.gz ñ checksum mismatch, missing public key, etc. 2 ./configure ñ error: missing bar, baz, . 3 foreach (bar, baz, . ) go to 1 until (recursive) success 4 make ñ error: symbol not found 5 make install ñ error: cp: cannot create regular file /some/weird/path now try scale that up to ≈20’000 sources releasing ≈3’000
    [Show full text]
  • Microlite Backupedge 3.X (03.04.01) Users Guide
    User Guide - Release 03.04.01 Microlite BackupEDGE 2 - Contents Release 03.04.01 Information in this document is subject to change without notice and does not represent a commitment on the part of MICROLITE CORPORATION. The software described in this document is furnished under a license agreement or nondisclosure agreement. The software may be used or copied only in accordance with the terms of the license agreement. This document is copyright material and may not be copied or duplicated in any form. © Copyright 1987-2021 by Microlite Corporation. All rights reserved. The following applies to all contracts and subcontracts governed by the Rights in Technical Data and Computer Software Clause of the United States Department of Defense Federal Acquisition Regulations Supplement. RESTRICTED RIGHTS LEGEND: USE, DUPLICATION OR DISCLOSURE BY THE UNITED STATES GOVERNMENT IS SUBJECT TO RESTRICTIONS AS SET FORTH IN SUBDIVISION (C)(1)(II) OF THE RIGHTS AND TECHNICAL DATA AND COMPUTER SOFTWARE CLAUSE AT DFAR 252-227-7013. MICROLITE CORPORATION IS THE CONTRACTOR AND IS LOCATED AT 2315 MILL STREET, ALIQUIPPA PA 15001-2228 USA. BackupEDGE, BackupEDGE SS, RecoverEDGE, Fast File Restore, Instant File Restore, One Touch Restore, SharpDrive, BootableBackups and Transparent Media are trademarks of Microlite Corporation. All other trademarks, registered trademarks, and copyrights are those of their respective owners. BackupEDGE 3.x User Guide - Revision 03.04.01 Build 3 - updated September 10, 2021 Microlite Corporation 2315 Mill Street https://www.microlite.com - Web Aliquippa, PA 15001-2228 USA ftp://ftp.microlite.com - FTP (724) 375-6711 - Technical Support [email protected] - Support (724) 375-6908 - Fax [email protected] - Sales Microlite BackupEDGE of Contents Table Release 03.04.01 Contents - 3 Contents 1 Introduction.................................................................................................
    [Show full text]
  • GNU/Linux Distro Timeline LEAF Version 10.9 Skolelinux Lindows Linspire Authors: A
    1992 1993 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 Libranet Omoikane (Arma) Gibraltar GNU/Linux distro timeline LEAF Version 10.9 Skolelinux Lindows Linspire Authors: A. Lundqvist, D. Rodic - futurist.se/gldt Freespire Published under the GNU Free Documentation License MEPIS SimplyMEPIS Impi Guadalinex Clonezilla Live Edubuntu Xubuntu gNewSense Geubuntu OpenGEU Fluxbuntu Eeebuntu Aurora OS Zebuntu ZevenOS Maryan Qimo wattOS Element Jolicloud Ubuntu Netrunner Ylmf Lubuntu eBox Zentyal Ubuntu eee Easy Peasy CrunchBang gOS Kiwi Ubuntulite U-lite Linux Mint nUbuntu Kubuntu Ulteo MoLinux BlankOn Elive OS2005 Maemo Epidemic sidux PelicanHPC Inquisitor Canaima Debian Metamorphose Estrella Roja BOSS PureOS NepaLinux Tuquito Trisquel Resulinux BeatriX grml DeadCD Olive Bluewall ASLinux gnuLiNex DeMuDi Progeny Quantian DSL-N Damn Small Linux Hikarunix Damn Vulnerable Linux Danix Parsix Kanotix Auditor Security Linux Backtrack Bioknoppix Whoppix WHAX Symphony OS Knoppix Musix ParallelKnoppix Kaella Shabdix Feather KnoppMyth Aquamorph Dreamlinux Morphix ZoneCD Hiwix Hiweed Deepin Kalango Kurumin Poseidon Dizinha NeoDizinha Patinho Faminto Finnix Storm Corel Xandros Moblin MeeGo Bogus Trans-Ameritech Android Mini Monkey Tinfoil Hat Tiny Core Yggdrasil Linux Universe Midori Quirky TAMU DILINUX DOSLINUX Mamona Craftworks BluePoint Yoper MCC Interim Pardus Xdenu EnGarde Puppy Macpup SmoothWall GPL SmoothWall Express IPCop IPFire Beehive Paldo Source Mage Sorcerer Lunar eIT easyLinux GoboLinux GeeXboX Dragora
    [Show full text]
  • Clearos 7 on HPE Proliant Servers Configuration Guide
    ClearOS 7 on HPE ProLiant Servers Configuration Guide Abstract This guide describes the steps required to configure and begin managing the ClearOS server. It assumes the user is familiar with software installation principles and has a basic understanding of computer hardware and networking. Part Number: 880769-002 Published: October 2017 Edition: 1 © Copyright 2017 Hewlett Packard Enterprise Development LP Notices The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. Confidential computer software. Valid license from Hewlett Packard Enterprise required for possession, use, or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor's standard commercial license. Links to third-party websites take you outside the Hewlett Packard Enterprise website. Hewlett Packard Enterprise has no control over and is not responsible for information outside the Hewlett Packard Enterprise website. Acknowledgments ClearCenter and ClearOS are either registered trademarks or trademarks of ClearCenter Inc. in the United States and/or other countries. Linux® is the registered trademark of Linus Torvalds in the U.S. and other countries. Microsoft® and Windows® are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Contents Introduction to ClearOS..........................................................................5 Configuring ClearOS: Process overview.............................................
    [Show full text]
  • Protect Your Business on HPE Proliant Microserver Gen10 With
    Solution brief Protect your business HPE ProLiant MicroServer Gen10 with ClearOS for network protection Gateway Network Server The HPE ProLiant MicroServer Gen10 Your files—and your • Low acquisition costs, fast setup, and ease features AMD Opteron™ X3000 series of use graphics capability and support for 4K business—might be at risk display resolution—4X denser than • A compact, whisper-quiet,1 and cool design 1080p FHD—for greater image clarity, As a home office or small business proprietor, that fits perfectly into home and small office more vibrant, varied, and realistic colors, you might think cybercriminals wouldn’t and much higher frame rates. environments pay much attention to you. But it’s just the opposite. Most larger businesses already have • Up to 32 GB storage—2X more than the advanced protections in place, making them previous generation harder to penetrate. So, a cybercriminal may Then, the ClearOS open source Linux® see your business as an easy target. server operating system (OS) allows you to customize your server from its built-in An ideal, low cost gateway management application marketplace with just a few solution You can take that target off your back with mouse clicks. With over 100 applications the HPE ProLiant MicroServer Gen10 with to choose from—and growing—ClearOS ClearOS™. The HPE ProLiant MicroServer helps you protect your files and applications Gen10 is a great IT solution for businesses from network attacks, malware, viruses, just starting out or with small IT budgets. and phishing scams aimed at tricking It offers optimized compute for offices with up your employees into giving out sensitive to 25 staff members, including these benefits: information.
    [Show full text]
  • Debian, Ubuntu, and 101 Other Derivatives
    Debian, Ubuntu, and 101 other derivatives Stefano Zacchiroli Debian Project Leader 20 November 2010 Ubuntu Party — Toulouse, France Stefano Zacchiroli (Debian) Debian, Ubuntu & co. Ubuntu Party, Toulouse 1 / 27 Outline 1 Debian What’s so special about it? 2 Ubuntu Relationship with Debian Debian $ Ubuntu collaboration 3 Free Software The distro ecosystem Stefano Zacchiroli (Debian) Debian, Ubuntu & co. Ubuntu Party, Toulouse 2 / 27 Outline 1 Debian What’s so special about it? 2 Ubuntu Relationship with Debian Debian $ Ubuntu collaboration 3 Free Software The distro ecosystem Stefano Zacchiroli (Debian) Debian, Ubuntu & co. Ubuntu Party, Toulouse 3 / 27 Debian: once upon a time Fellow Linuxers, This is just to announce the imminent completion of a brand-new Linux release, which I’m calling the Debian Linux Release. [. ] Ian A Murdock, 16/08/1993 comp.os.linux.development make GNU/Linux competitive with commercial OS easy to install built collaboratively by software experts 1st major distro developed “openly in the spirit of GNU” GNU-supported for a while trivia: named after DEBra Lynn and IAN Ashley Murdock Stefano Zacchiroli (Debian) Debian, Ubuntu & co. Ubuntu Party, Toulouse 4 / 27 Debian: the operating system completely Free Software ñ DFSG ñ contrib, non-free a dozen architectures alpha, amd64, arm(el), hppa, i386, ia64, mips(el), powerpc, s390, sparc 2 non-Linux ports upcoming features miscellanea. ports, stability, packaging system, documentation, old hw support, smooth upgrades, i18n/l10n, the testing suite, runs anywhere, The largest GNU/Linux distro technical policy, a lot of packages, porting platform ... 29’000 packages (Squeeze) Stefano Zacchiroli (Debian) Debian, Ubuntu & co.
    [Show full text]