CS338 Computer Security
Monday, 15 September 2025

https://cs.carleton.edu/faculty/jondich/courses/cs338_f25/

+ Hi
- Jeff Ondich; call me Jeff; Olin 301A
- Office Hours info linked on the top of the course web page
- Talk to me: in person, Slack #general, Slack DM, email

+ Introduce yourself to the people around you.

+ What's up this term? (more detail as we go)
- Vocabulary, skills, ways of thinking
- Getting started: Kali Linux, Unix command line, git
- Weeks 1-4: TLS
- Week 5: threat modeling, conceptual frameworks for security, some relevant laws
- Later: pen-testing, web security, security-by-design for developers, projects, LLM applications
- Through-lines: "security mindset", ethics, implications for people

+ This week
- Get set up with git, Kali, and Slack
- Do the first 12 levels of https://overthewire.org/wargames/bandit/
    (this will help you learn or relearn some Unix command-line stuff)

    ssh -p 2220 bandit0@bandit.labs.overthewire.org
    Password: bandit0

- Get started observing web traffic with Wireshark and Burp Suite
    (we'll talk on Wednesday about what you need for Saturday's assignment)

+ LLMs
- helpful or harmful to your learning?
- how should I regulate their use?
- how should we talk about them?
- thoughts about my "What about LLMs" section from the Course Information page?

+ LABs: in-class exercises
- Go to the website
- Click on today's lab
- Do it, fill out the forms, and click Submit
- Scoring (3 points per lab, etc.) is described in the course Info page
- Full credit for good-faith effort and getting through the whole lab

+ Today's lab