ABC Invitation Design and XYZ Invitation Printing have decided to merge into one company, A2Z Invitations. ABC is a virtual company with a proprietary website that allows customers to do some preliminary work on invitations and then consult with a designer for the final product. XYZ is a traditional company with a system that allows customers to submit designs and track their orders. It also has a contact management and invoicing system. ABC will be moving its application into the XYZ data center and will be using all of XYZ’s back end systems. Both companies have experienced data breaches in the past and do not want to have them in the future. A2Z has hired you to do a security analysis of its new network and to recommend how it can be set up in a secure manner. It has budgeted for a capital expenditure (outside of man hours) of $250,000 for hardware and software and $25,000 every year for additional security measures. The Statement of Work objectives are: Requirements Each You Decide and other write-ups should be used as the raw material for this report. This report is the analysis of that data. Above is the official network diagram of XYZ (pre-merger with ABC). All servers are supposed to be Windows 2003. XYZ uses a private IP internally of 192.168.x.x. Below are the results of the NMAP scan done as part of the consulting agreement with infosecwizards. Starting Nmap 5.00 ( ) at 2009-MM-DD 23:12 UTC Interesting ports on XYZDomainController at (192.168.0.1): Not shown: 997 filtered ports Service Info: OS: Microsoft Windows 2003 Server or XP SP2 Interesting ports on XYZInviteDesign at (192.168.0.2): Not shown: 997 filtered ports Service Info: OS: Microsoft Windows 2003 Server or XP SP2 Interesting ports on XYZAcct at (192.168.0.3): Not shown: 997 filtered ports Service Info: OS: Microsoft Windows 2003 Server or XP SP2 Interesting ports on XYZprinting at (192.168.0.4): Not shown: 997 filtered ports Service Info: OS: Microsoft Windows 2003 Server or XP SP2 Interesting ports on XYZwebsrv at (192.168.0.5): Not shown: 997 filtered ports Service Info: OS: Microsoft Windows 2003 Server or XP SP2 (The 1656 ports scanned but not shown below are in state: closed) Interesting ports on XYZChat at (192.168.0.6): Service info: OS: Linux 2.5.25 – 2.6.3 or Gentoo 1.2 Linux 2.4.19 rc1-rc7) Service detection performed. Please report any incorrect results at . Nmap done: 6 IP address (6 hosts up) scanned in 64.27 seconds
