Assignment 3 Solutions

Lot's of good work on this assignment, here is the list of all passwords for students...

11721040:melonolem:0:0:A Student:/root:/bin/sh
15051956:otamot:0:0:A Student:/root:/bin/sh
27017953:carrot6:0:0:A Student:/root:/bin/sh
35595024:smithtims:0:0:A Student:/root:/bin/sh
36271005:password8:0:0:A Student:/root:/bin/sh
37250008:secret6:0:0:A Student:/root:/bin/sh
37861002:catac:0:0:A Student:/root:/bin/sh
38080008:dogod:0:0:A Student:/root:/bin/sh
39129002:godog:0:0:A Student:/root:/bin/sh
40790024:taco4:0:0:A Student:/root:/bin/sh
41169020:dragon6:0:0:A Student:/root:/bin/sh
41192022:sseug:0:0:A Student:/root:/bin/sh
42349001:luckykcul:0:0:A Student:/root:/bin/sh
43453000:elppa:0:0:A Student:/root:/bin/sh
45077005:mirror6:0:0:A Student:/root:/bin/sh
45576022:cricket7:0:0:A Student:/root:/bin/sh
45970985:repeat6:0:0:A Student:/root:/bin/sh
47414982:rekcah:0:0:A Student:/root:/bin/sh
50891985:smilelims:0:0:A Student:/root:/bin/sh
74080995:wolf4:0:0:A Student:/root:/bin/sh
76409994:genius6:0:0:A Student:/root:/bin/sh
76873017:noom:0:0:A Student:/root:/bin/sh
78058997:rabbit6:0:0:A Student:/root:/bin/sh
78321015:fire4:0:0:A Student:/root:/bin/sh
79179990:readydaer:0:0:A Student:/root:/bin/sh
79691010:steak5:0:0:A Student:/root:/bin/sh
79956017:peacecaep:0:0:A Student:/root:/bin/sh
80532039:rorrim:0:0:A Student:/root:/bin/sh
81220014:quick5:0:0:A Student:/root:/bin/sh
81278996:wols:0:0:A Student:/root:/bin/sh
81307993:hard4:0:0:A Student:/root:/bin/sh
82214016:enteretne:0:0:A Student:/root:/bin/sh
83313015:tricky6:0:0:A Student:/root:/bin/sh
83556019:hidden6:0:0:A Student:/root:/bin/sh
84688019:roodkcab:0:0:A Student:/root:/bin/sh
85051019:super5:0:0:A Student:/root:/bin/sh
88641030:burn4:0:0:A Student:/root:/bin/sh
92294016:reseteser:0:0:A Student:/root:/bin/sh

Many of the text book problems had fairly open solutions, so I will only list answers to specific problems that have clear solutions.

12.10.2

a) 6.8212 * 10^11 seconds b) 2.2192 * 10^9 seconds c) 1112 seconds

12.10.4 First 3 passwords are bad, 4th is good.

2.8.1

	alicerc	bobrc	cyndyrc
Alice	ox	r
Bob	r	ox
Cyndy	r	rw	orwx

	alicerc	bobrc	cyndyrc
Alice	ox	r	r
Bob		ox
Cyndy	r	rw	oxrw

4.11.5 a) Discretionary, b) Originator, c) Mandatory, d) Originator

5.8.2 a) neither, b) neither, c) read, d) read, e) write




Questions:

Student ID: 47414982
Score: 103/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 27017953
Score: 103/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 15051956
Score: 103/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - 
(+5 ) BONUS Question 2.4 - 

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(1/2) 2.8.1 - Owning a file does not imply other permissions are set.

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 - 




Questions:

Student ID: 85051019
Score: 92/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 38080008
Score: 92/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 37250008
Score: 92/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 


(5/7) Question 2.1 - The method would be effective, if a difficult password is chosen.
(1/3) Question 2.2 - This would require some way of identifying each user.
(2/3) Question 2.3 - I do not think salt would be effective, as the salt would be known to the attacker.
() BONUS Question 2.4 - 

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(2/2)2.8.1

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(1/3) 18.6.5 - This answer is not clear to me.
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 - 




Questions:

Student ID: 41192022
Score: 98/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 40790024
Score: 98/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 88641030
Score: 98/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 


(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - Excellent idea to use multiple passwords, one for each quote.
() BONUS Question 2.4 - 

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(1/2) 2.8.1 - Several incorrect entries.

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 - 




Questions:
Student ID: 79691010
Score: 96/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 43453000
Score: 96/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 84688019
Score: 96/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 36271005
Score: 96/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 


(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - 
(+2) BONUS Question 2.4 - 

(3/5) 12.10.2 - I think you made some miscalculations
(1/2) 12.10.4 - . is not a letter or number.
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(0/2) 2.8.1 - Several mistakes, and you forgot the ownership flag

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 - 




Questions:
Student ID: 80532039
Score: 104/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 11721040
Score: 104/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 37861002
Score: 104/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 39129002
Score: 104/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - 
(+5) BONUS Question 2.4 - 

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(2/2)2.8.1

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 - 




Questions:
Student ID: 81278996
Score: 96/96
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 45970985
Score: 96/96
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 81307993
Score: 96/96
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 


(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - 
(+2) BONUS Question 2.4 - I need more details, if you want more bonus points.

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(2/2)2.8.1

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(0/3) 24.11.2 - You should be able to come up with another solution, for your stated requirement.
(4/4) 24.11.9 - 
(2/4) 24.11.10 - More detailed answer needed.




Questions:

Student ID: 83556019
Score: 79/99
(7/7) Question 1.1 - 
(1/3) Question 1.2 - More details.

Student ID: 83313015
Score: 79/99
(7/7) Question 1.1 - 
(1/3) Question 1.2 - More details.

Student ID: 50891985
Score: 72/99
(0/7) Question 1.1 - 
(1/3) Question 1.2 -  More details.


(7/7) Question 2.1 - 
(1/3) Question 2.2 - Explain, what data would you store on the server side?
(1/3) Question 2.3 - You only listed one method, and did not suggest a specific type of encryption.
() BONUS Question 2.4 - 

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(1/2) 2.8.1 - You neglected to use the ownership flag.

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(1/3) 4.11.5 - No justification, and incorrect answers.

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(0/5) 7.8.3 - No answer given.
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(1/3) 24.11.2 - I do not understand your answer.
(4/4) 24.11.9 - 
(0/4) 24.11.10 - No answer given. 




Questions:

Student ID: 35595024
Score: 91/99
(0/7) Question 1.1 - Password was "smithtims"
(3/3) Question 1.2 - 

Student ID: 42349001
Score: 91/99
(0/7) Question 1.1 - Password was "luckykcul"
(3/3) Question 1.2 - 

Student ID: 79956017
Score: 91/99
(0/7) Question 1.1 - Password was "peacecaep"
(3/3) Question 1.2 - 

Student ID: 78058997
Score: 98/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - 
() BONUS Question 2.4 - 

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - Good.
(4/4) 12.10.13 - 

(1/2) 2.8.1 - Many incorrect entries

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 - 




Questions:

Student ID: 76409994
Score: 93/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 74080995
Score: 93/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 79179990
Score: 83/99
(0/7) Question 1.1 - No password provided.
(0/3) Question 1.2 - No analysis given.


(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(1/3) Question 2.3 - I do not see how hashing the password on server side would help... your other solution seems to conflict with what you said in 2.2.
() BONUS Question 2.4 - 

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(1/2) 2.8.1 - Several incorrect entries

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(2/3) 4.11.5 - without explaination, part d) is not correct.

(3/5) 5.8.2 - first 2 are incorrect.

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 - 




Questions:

Student ID: 45576022
Score: 102/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 78321015
Score: 102/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 41169020
Score: 102/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 76873017
Score: 102/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - 
(+5) BONUS Question 2.4 - Be sure to thank Jeff for your bonus points.

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - Good
(4/4) 12.10.13 - 

(2/2)2.8.1

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(3/3) 4.11.5 - 

(5/5) 5.8.2 - 

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(2/4) 24.11.10 - You need to define 'user', and give more details.




Questions:

Student ID: 45077005
Score: 100/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 82214016
Score: 100/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 92294016
Score: 100/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 

Student ID: 81220014
Score: 100/99
(7/7) Question 1.1 - 
(3/3) Question 1.2 - 


(7/7) Question 2.1 - 
(3/3) Question 2.2 - 
(3/3) Question 2.3 - 
(+5) BONUS Question 2.4 - Very good job.

(5/5) 12.10.2 - 
(2/2) 12.10.4 - 
(2/2) 12.10.6 - 
(4/4) 12.10.13 - 

(0/2) 2.8.1 - Incorrect tables.

(3/3) 4.11.3 - 
(4/4) 4.11.4 - 
(2/3) 4.11.5 - Justification not correct for a/c.

(4/5) 5.8.2 - e) can write

(4/4) 6.8.2 - 
(6/6) 6.8.11 - 

(5/5) 7.8.3 - 
(3/3) 7.8.7 - 

(3/3) 18.6.1 - 
(4/4) 18.6.3 - 
(4/4) 18.6.4 - 
(3/3) 18.6.5 - 
(4/4) 18.6.7 - 

(3/3) 19.8.1 - 

(3/3) 24.11.2 - 
(4/4) 24.11.9 - 
(4/4) 24.11.10 -