ITECH1002/5002 Network Operating Systems

School o Science! Inormation Technology an" Engineering

Topic 10 #a$ sheet %&eek 11'( )ario*s Topics
O$+ecti,es(
1- In,estigate .icrosot/s 0rowse Ser,ice
2- In,estigate ile system compression
1- In,estigate .icrosot/s encrypte" ile system%es'
2reliminary
3elete the )irt*al0o4 settings
To ens*re yo* are working with a clean )irt*al Operating System images yo*
sho*l" in,oke the 56eresh Images7 Start .en* shortc*t prior to starting
)irt*al0o4-
3isc*ssion
.icrosot 0rowser Ser,ice
.icrosot networking relies on the 0rowser Ser,ice or its operation- Entities that
constit*te the $rowser ser,ice are(
0rowse .aster %or .aster $rowser' %one per workgro*p or "omain'
0ack*p 0rowse master/s
.em$er comp*ters o the workgro*p or "omain
Central to .icrosot networking is the
concept o "omains an" workgro*ps $oth
o which consist o a gro*p o comp*ters
that share reso*rces %ile shares an"
printers'-
.em$ership o a workgro*p or "omain is
speciie" in the 5Comp*ter name7 ta$ o
the 5System 2roperties7 "ialog-
ITECH1002/5002 Network Operating Systems Lab Page 1
The main entities o note that constit*te .icrosot/s 0rowser ser,ice in a "omain
or workgro*p are the .aster 0rowser! 0ack*p $rowsers an" clients- The
concepts o the $rowser ser,ice apply e8*ally i working in a "omain or a
workgro*p-
&hen any .icrosot machine is $oote" it anno*nces its presence $y
$roa"casting its "etails to the network! in response the 0rowse .aster o the
"omain or workgro*p o which the machine is a mem$er will register the
presence o the new machine-
The $rowse master maintains a list o workgro*p machines that ha,e reso*rces
%"irectory shares or share" printers' a,aila$le or other workgro*p mem$ers9 this
list is calle" the $rowse list- The 0rowse .aster "istri$*tes its 0rowse list to
$ack*p $rowsers or s*$se8*ent "istri$*tion to client machines *pon re8*est- In
this way all workgro*p mem$ers in the network are a$le to "etermine the
a,aila$le ile shares an" printers-
The machine *se" as the $rowse master is a*tomatically "etermine" thro*gh an
election- Elections may $e initiate" when a new machine enters a workgro*p %is
$oote"'! or i a 0rowse .aster lea,es a workgro*p %powere" "own'- The
election process is meant to "etermine the most s*ita$le machine or the roles o
0rowse .aster an" 0ack*p 0rowse .aster/s-
The $rowser ser,ice re8*ires machines within a workgro*p to comm*nicate with
one another an" as s*ch generates signiicant *n"erlying network traic- 3espite
its importance to .icrosot networking! ,ery ew *tilities e4ist that allow *s to
o$ser,e the $rowse ser,ice in action-
In the ollowing e4ercises we will *se the ollowing *tilities(
Net ,iew
sm$tree %#in*4 sam$a *tility'
.y Network 2laces
Task 1
&orkgro*p networking re8*ires all machines to ha,e a *ni8*e comp*ter name
an" a workgro*p name that "isting*ishes it as a mem$er o a partic*lar
workgro*p-
&e will *se a common workgro*p name o TO2IC10:&;
Each st*"ent will rename his <2 virtual machine as ollows(
irst =!5 or > letters o their irstname
ITECH1002/5002 Network Operating Systems Lab Page 2
ollowe" $y a ran"om 1 "igit n*m$er
%all "igits m*st $e "ierent an" non?se8*ential'
Eg- lash@1A
2roce"*re(
6*n yo*r <2 ,irt*al machine *n"er )irt*al0o4
#ogin
6ight click 5.y:Comp*ter7 B 2roperties
Select the 5Comp*ter name7 ta$
Click the 5Change7 $*tton
Change the Comp*ter name as "escri$e" a$o,e
Change the &orkgro*p name to TO2IC10:&;
Click OC B OC B OC
&hen prompte" click yes to restart yo*r ,irt*al machine-
%The changes sho*l" take eect'

Do*r system properties "ialog %Comp*ter Name ta$' sho*l" resem$le the
ollowing! with the comp*ter name NNNNN<<< replace" with yo*r name an"
three ran"om n*m$ers-
ITECH1002/5002 Network Operating Systems Lab Page
Once a ew st*"ents ha,e rename" their machine an" workgro*p settings we will
ha,e esta$lishe" a small .icrosot workgro*p-
Erom here we can *se .icrosot an" #in*4 *tilities to ,iew workgro*ps an"
associate" machines that pop*late the network-
ITECH1002/5002 Network Operating Systems Lab Page !
The net ,iew comman"
The 5net ,iew7 comman" allows the o$ser,ation o reso*rces that are a,aila$le in
o*r workgro*p-
Task 1
Open a &in"ows comman" prompt-
Enter the comman" net ,iew
The o*tp*t sho*l" resem$le the ollowing(
Things to note(
The o*tp*t shows two col*mns la$elle" 5Ser,er Name7 F 6emark-
Task 2
Create two "irectories an" share $oth with "ea*lt settings-
Note G 6emem$er to t*rn o 5Simple ile sharing7 in the 5Tools7 B7Eol"er Options7
B )iew men* o &in"ows E4plorer-
Hlso a"" a comment in the appropriate iel" when setting *p the share-
Then iss*e the net ,iew comman" that incl*"es yo*r machines name-
ITECH1002/5002 Network Operating Systems Lab Page 5
E4ample net ,iew IINNNNN<<<
ITECH1002/5002 Network Operating Systems Lab Page "
O$ser,ing workgro*ps rom the &in"ows <2 ;JI-
Task 1
Open 5.y Network 2laces7 rom the &in"ows "esktop! then select 5)iew
workgro*p comp*ters7
Do* sho*l" see the name o yo*r machine "isplaye"
Try "o*$le clicking yo*r machine/s name- Do* sho*l" see its shares an"
associate" "etails "isplaye"-
Jsing #in*4 *tilities to ,iew workgro*ps an" associate" reso*rces-
The #in*4 *tility %really a sam$a *tility' that allows workgro*p inormation to $e
o$ser,e" is name" sm$tree-
There are three options that we will *se(
?N No passwor" prompte" or %an" thereore not logging in to "omains
that are o*n"'
?S 3isplay ser,ers
?3 3isplay "omains/workgro*ps
Task 1
In,oke yo*r J$*nt* )irt*al .achine
Open a root console
Enter the comman"(
sm$tree G3
Enter any passwor"-
This will "isplay a list o all workgro*ps an" "omains on yo*r network-
To get a list o "omains an" associate" machines within the network try entering
the comman"
sm$tree ?S
To gain 1 mark towards ITECH1002/5002 assessment demonstrate to your
tutor the following
The out!ut of a "net view# command showing the resources $eing
shared $y your %& virtual machine
ITECH1002/5002 Network Operating Systems Lab Page #
The out!ut of an sm$tree command showing multi!le workgrou!s
and associated com!uters'
Windows XP compression
&in"ows <2 pro,i"es two types o compression(
KI2 compression
NTES compression
&in"ows Kip compression *ses the same compression ormat as pro"*cts like
&inKip an" as s*ch! ile compression with &in"ows <2 can $e *ncompresse"
$y &inKip an" other in"*stry stan"ar" programs- &hen iles or ol"ers are
Lippe" in &in"ows <2 &in"ows E4plorer "isplays a ol"er icon with a ,ertical
Lipper! this in"icates that the ol"er is compresse"-
&in"ows treats Lippe" iles +*st like ol"ers! as s*ch yo* can open Lip iles!
$rowse them an" e,en copy new iles into the Lippe" ile-
E4ercises
Create a ol"er calle" Kip.e
Create a ew iles within Kip.e
Compress the Kip.e ol"er as ollows(
6ight Click the ol"er Kip.e B Sen" To B Compresse" %Kippe" ol"er'
Open the Lip ile $y "o*$le clicking its icon
Copy the entire Lip ol"er then paste it onto the "esktop an" rename it-
Try a""ing to the Lip ile $y "ragging iles to it
Windows NTFS compression
The other type o compression a,aila$le on &in"ows <2 is NTES compression-
Hs the name s*ggests it only works on NTES ormatte" ,ol*mes-
Jnlike Kip compression it "oes not work with thir" party *tilities-
Task 1
Create a "irectory c(INTESCompression an" a"" a ew iles to this ol"er-
6ight click the "irectory B 2roperties B H",ance" B Compress contents M-
How "oes the "irectory appear ater NTES compressionN
Comparisons
Copy yo*r 5C(I2rogram Eiles7 "irectory to yo*r &in"ows 3esktop an" recor"
the siLe in .0 o the ol"er-
Then create a Lip ile o the "esktop copy an" recor" the siLe o this ile-
ITECH1002/5002 Network Operating Systems Lab Page $
Then *se NTES compression to compress the ol"er an" again recor" its siLe-
3etermine the percentage "isk sa,ing in each case a$o,e-
Windows encryption
3isc*ssion
&in"ows <2 encryption is primarily $ase" o Hsymmetric encryption- In this
type o encryption each *ser has a 2*$lic/2ri,ate key pair to encrypt an"
"ecrypt iles an" ol"ers-
Initially no *ser on a &in"ows <2 system has a key pair! it is only ater a *ser
encrypts a ile or ol"er that a 2*$lic/2ri,ate key pair is generate" or him/her
an" store" within &in"ows along with other *ser "etails- The key pair is *se"
or all s*$se8*ent encryption/"ecryption an" i lost will ren"er all iles/ol"ers
encrypte" $y it inaccessi$le-
Eile reso*rces are normally encrypte" with a *sers p*$lic key9 the name p*$lic
key stems rom the act that this key can $e ma"e accessi$le to e,eryone an"
hence anyone can encrypt a ile with someone else/s p*$lic key- The pri,ate
key is *se" to "ecrypt iles encrypte" with its associate" p*$lic key- 2ri,ate
keys sho*l" always remain pri,ate an" not all into the han"s o anyone other
than the key/s owner-
Internet $anking is an e4ample o p*$lic/pri,ate key encryption- Do*r $rowser
encrypts yo*r re8*ests with the $anks p*$lic key! hence only yo*r $ank can
"ecrypt re8*ests sent $y yo*r $rowser-
&in"ows <2 pro,i"es *sers the a$ility to encrypt in"i,i"*al iles or i re8*ire"
ol"ers an" their contents-
Folder encryption
Eol"er encryption is limite" to encryption an" "ecryption $y a single *ser- I a
*ser name" O*ser?H/ encrypts a ol"er! all iles within that ol"er $ecome
encrypte" an" can only $e "ecrypte" $y that *sers-
Eile encryption
The encryption o in"i,i"*al iles is ar more le4i$le than ol"er encryption- Eile
encryption can pro,i"e access to one or more in"i,i"*als- One *ser can e,en
encrypt a ile *sing another persons/ p*$lic key thereore making the encrypte"
ile inaccessi$le to anyone else-
Certiicates
ITECH1002/5002 Network Operating Systems Lab Page %
Encryption keys can $e e4porte" an" importe" thro*gh certiicates- H certiicate
can $e conig*re" to contain a *sers p*$lic/pri,ate key pair or as is more oten
the case +*st the p*$lic key-
Encryption exercises
Encrypting all files within a folder
#ogin to yo*r <2 ,irt*al machine as H"ministrator or any other *ser-
Create a ol"er name" .yEncEiles in the Share"3oc*ments ol"er- Then within
this ol"er create two or more te4t iles-
6ight click the .yEncEiles ol"er B 2roperties B H",ance"-
Then choose Encrypt contents to sec*re "ata-
Then choose OC to encrypt! then choose the option to encrypt ol"ers F
s*$ol"ers-
Ht this stage the ol"ers an" iles will appear in green te4t to in"icate they are
encrypte"-
Now create a te4t ile on the "esktop an" "rag it into the .yEncEiles ol"er-
&hat happensN
To test that yo* are a$le to open the encrypte" iles $*t other *sers are *na$le
to "o so! complete the ollowing tasks(
ITECH1002/5002 Network Operating Systems Lab Page 10
Open any o the encrypte" iles hel" in the .yEncEiles ol"er an" a""
some te4t to the ile-
#ogin as any other *ser %yo* may ha,e to create a new *ser acco*nt'
Try opening any o the encrypte" iles-
Encrypting individual files
The ollowing e4ercises will re8*ire yo* to *n"ertake tasks as one o two *sers!
Hlice or Caterpillar-
Create these two *sers-
#ogin as Caterpillar B create a ile on the "esktop B then encrypt it *sing the
same proce"*re as yo* "i" in the e4ercise a$o,e-
The encryption o the ile has the si"e eect o creating a p*$lic/pri,ate key pair
or the *ser caterpillar-
Now login as Hlice an" repeat the tasks *n"ertaken $y Caterpillar-
File encryption exercise 1: Allow multiple users to access an encrypted file.
&hile still logge" in as Hlice create a ile name" m*ltipleHccess in the
Share"3oc*ments ol"er-
Encrypt this ile *sing the same proce"*re as a$o,e-
Then once again right click the ile B 2roperties B H",ance" B 3etails
This sho*l" "isplay a "ialog similar to that shown $elow-
Things to notice are(
Hlice/s certiicate is
associate" with the ile
as s*ch she is a$le to
"ecrypt the ile-
In or"er to allow
another *ser to access
the ile we m*st click
the H"" $*tton an"
select another *ser!
Caterpillar in this case-
This will allow $oth
Caterpillar an" Hlice to
ITECH1002/5002 Network Operating Systems Lab Page 11
transparently rea" the ile- Hll other *sers incl*"ing H"ministrator will $e *na$le
to access the ile-
ITECH1002/5002 Network Operating Systems Lab Page 12
E4ercise %or marking'
The ollowing e4ercise re8*ires yo* to login as H"ministrator! create a ile
name" EorHliceOnly-t4t-
Then "o the ollowing(
encrypt the ile
H"" Hlice as a *ser with access to the encrypte" ile
3elete yo*rsel %H"ministrator' as a person with access to the ile-
To gain the second mark towards ITECH1002/5002 assessment
demonstrate to your tutor the following
(lice can access the encry!ted file
The (dministrator cannot access the encry!ted file
ITECH1002/5002 Network Operating Systems Lab Page 1