1 / 13

Minuwet 2.0

Minuwet 2.0. Aruba and More. Minuwet 1.0. Provided sanity check on wireless computers 8,370 distinct users used it in March 2008 Saved lots of IT effort chasing people – they came to us Tied to the NAA Annoying to use, even once per week Hackers can trick it with firefox settings.

alma
Download Presentation

Minuwet 2.0

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Minuwet 2.0 Aruba and More

  2. Minuwet 1.0 • Provided sanity check on wireless computers • 8,370 distinct users used it in March 2008 • Saved lots of IT effort chasing people – they came to us • Tied to the NAA • Annoying to use, even once per week • Hackers can trick it with firefox settings

  3. Move to Aruba • Upgrade was necessary to get modern APs and to replace aging NAA • Minuwet replacement not as obvious • NAP isn’t ready, and it isn’t multiplatform • Decided to port Minuwet to support Aruba

  4. Minuwet Aruba + 2.0 • Main reason was Aruba support • Also good time to implement improvements I had wanted to make • Make less annoying to use • Support new features available Vista • Address hacking • Improve visual design

  5. Aruba Portion • Does not run on the ‘controller’ • Runs on one box (or cluster) and talks to all controllers • Queries Aruba for MAC, Userid, then upgrades session if appropriate

  6. Removing Annoyance Factor • Only have to download once • Runs right in browser, no need to click anything • Never will forget to run it again • ActiveX control for Internet Explorer • Mozilla extension for Firefox • Legacy version for other browsers

  7. Installation • Relatively easy to install • Those who can’t figure it out can ask consultants or friends • Only need to install once, only need help once • IE needs privileges to install… legacy solution for unprivileged users

  8. Internet Explorer

  9. FireFox

  10. Hackers • Minuwet 1.0 used standard web method to detect OS • Firefox can override the OS string, user setting • Minuwet 2.0 uses Javascript in a way users can’t easily override • Tried Java, but fewer browsers support it well • A good hacker could get around 2.0, but harder, now less reason since less annoying

  11. New for Vista • MS added support for 3rd parties to read firewall settings • Minuwet now enforces firewall on Vista

  12. Other Features • Blacklisting service – bad guys we refuse • Whitelisting server – good guys we admit • Records client OS type so we can plan service

  13. Summary • Faster/easier/less annoying than 1.0 • Security – harder to hack, less need to bother • Tougher on Vista – adds firewall requirement • Nice to Firefox as well as IE • Generous to PDAs

More Related