Wiki

User Tools

Site Tools

Trace: remove_config_files get_apparmor_status disable_f1_for_help basic_make_example change_the_timezone find_large_packages setting_up_rules packet_inspection corrective_moves timing_of_trades
glossary:start

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
glossary:start [2023/07/17 15:46] peterglossary:start [2023/07/17 15:57] (current) peter
Line 19: Line 19:
 |ACL|Access Control List.  A list of permissions attached to an object.| |ACL|Access Control List.  A list of permissions attached to an object.|
 |Access Control|Access Control ensures that resources are only granted to those users who are entitled to them.| |Access Control|Access Control ensures that resources are only granted to those users who are entitled to them.|
-|Access Control List|(ACL). A list of permissions attached to an object.|+|Access Control List|ACL.
 +|:::|A list of permissions attached to an object.|
 |Access Control Service|A security service that provides protection of system resources against unauthorized access.  The two basic mechanisms for implementing this service are ACLs and tickets.| |Access Control Service|A security service that provides protection of system resources against unauthorized access.  The two basic mechanisms for implementing this service are ACLs and tickets.|
 |Access Matrix|An Access Matrix uses rows to represent subjects and columns to represent objects with privileges listed in each cell.| |Access Matrix|An Access Matrix uses rows to represent subjects and columns to represent objects with privileges listed in each cell.|
 |Account Harvesting|The process of collecting all the legitimate account names on a system.| |Account Harvesting|The process of collecting all the legitimate account names on a system.|
 |Active Content|Program code embedded in the contents of a web page.  When the page is accessed by a web browser, the embedded code is automatically downloaded and executed on the user's workstation. Ex. Java, ActiveX (MS).| |Active Content|Program code embedded in the contents of a web page.  When the page is accessed by a web browser, the embedded code is automatically downloaded and executed on the user's workstation. Ex. Java, ActiveX (MS).|
-|Active Directory|(AD) A directory service implemented by Microsoft for Windows domain networks. |+|Active Directory|AD.
 +|:::|A directory service implemented by Microsoft for Windows domain networks. |
 |Activity Monitors|Aim to prevent virus infection by monitoring for malicious activity on a system, and blocking that activity when possible.| |Activity Monitors|Aim to prevent virus infection by monitoring for malicious activity on a system, and blocking that activity when possible.|
 |AD|Active Directory.  A directory service implemented by Microsoft for Windows domain networks. | |AD|Active Directory.  A directory service implemented by Microsoft for Windows domain networks. |
 |ADAL| Authoritive Data Access Layer.| |ADAL| Authoritive Data Access Layer.|
-|Address Resolution Protocol|(ARP) A protocol for mapping an Internet Protocol address to a physical machine address that is recognized in the local network.  A table, usually called the ARP cache, is used to maintain a correlation between each MAC address and its corresponding IP address.  ARP provides the protocol rules for making this correlation and providing address conversion in both directions.| +|Address Resolution Protocol|ARP.
-|ADS| Authoritive Data Source.|+|:::|A protocol for mapping an Internet Protocol address to a physical machine address that is recognized in the local network.  A table, usually called the ARP cache, is used to maintain a correlation between each MAC address and its corresponding IP address.  ARP provides the protocol rules for making this correlation and providing address conversion in both directions.| 
 +|ADS|Authoritive Data Source.|
 |ADSL|Asymmetric Digital Subscriber Line (ADSL) is a technology for transmitting digital information at high bandwidth on existing phone lines to homes and businesses.  Unlike regular dialup phone service, ADSL provides continuously-available, “always on” connection. | |ADSL|Asymmetric Digital Subscriber Line (ADSL) is a technology for transmitting digital information at high bandwidth on existing phone lines to homes and businesses.  Unlike regular dialup phone service, ADSL provides continuously-available, “always on” connection. |
-|Advanced Encryption Standard|(AES) An encryption standard being developed by NIST.  Intended to specify an unclassified, publicly-disclosed, symmetric encryption algorithm.| +|Advanced Encryption Standard|AES.
-|AEOD | After End-of-Day.|+|:::|An encryption standard being developed by NIST.  Intended to specify an unclassified, publicly-disclosed, symmetric encryption algorithm.| 
 +|AEOD|After End-of-Day.|
 |AES|Advanced Encryption Standard.  An encryption standard being developed by NIST.  Intended to specify an unclassified, publicly-disclosed, symmetric encryption algorithm.| |AES|Advanced Encryption Standard.  An encryption standard being developed by NIST.  Intended to specify an unclassified, publicly-disclosed, symmetric encryption algorithm.|
-|AIRB| Advanced Internal Rating Based Approach.| +|AIRB|Advanced Internal Rating Based Approach.| 
-|A&L| Assets and Liabilities | +|A&L|Assets and Liabilities | 
-|Algorithm| A finite set of step-by-step instructions for a problem-solving or computation procedure, especially one that can be implemented by a computer.|+|Algorithm|A finite set of step-by-step instructions for a problem-solving or computation procedure, especially one that can be implemented by a computer.|
 |AML|Anti money laundering (AML) is a term mainly used in the financial and legal industries to describe the legal controls that require financial institutions and other regulated entities to prevent or report money laundering activities.| |AML|Anti money laundering (AML) is a term mainly used in the financial and legal industries to describe the legal controls that require financial institutions and other regulated entities to prevent or report money laundering activities.|
 |AMSC|Application Management Service Centre.| |AMSC|Application Management Service Centre.|
Line 49: Line 53:
 |:::|A globally unique number assigned by a registrar for the purposes of Internet routing, | |:::|A globally unique number assigned by a registrar for the purposes of Internet routing, |
 |Asymmetric Cryptography|Public-key cryptography.  A modern branch of cryptography in which the algorithms employ a pair of keys (a public key and a private key) and use a different component of the pair for different steps of the algorithm.| |Asymmetric Cryptography|Public-key cryptography.  A modern branch of cryptography in which the algorithms employ a pair of keys (a public key and a private key) and use a different component of the pair for different steps of the algorithm.|
-|Asymmetric Warfare | Asymmetric warfare is the application of dissimilar strategies, tactics, capabilities and approaches used to circumvent or negate an opponent's strengths while exploiting his weaknesses.|+|Asymmetric Warfare|Asymmetric warfare is the application of dissimilar strategies, tactics, capabilities and approaches used to circumvent or negate an opponent's strengths while exploiting his weaknesses.|
 |Auditing|The information gathering and analysis of assets to ensure such things as policy compliance and security from vulnerabilities.| |Auditing|The information gathering and analysis of assets to ensure such things as policy compliance and security from vulnerabilities.|
 |Asymmetric Digital Subscriber Line|ADSL.| |Asymmetric Digital Subscriber Line|ADSL.|
Line 61: Line 65:
 |Authorization|The approval, permission, or empowerment for someone or something to do something.| |Authorization|The approval, permission, or empowerment for someone or something to do something.|
 |Autonomous System|One network or series of networks that are all under one administrative control.  An autonomous system is also sometimes referred to as a routing domain.  For the purposes of Internet routing, an autonomous system is assigned a globally unique number by a registrar, called an Autonomous System Number (ASN).| |Autonomous System|One network or series of networks that are all under one administrative control.  An autonomous system is also sometimes referred to as a routing domain.  For the purposes of Internet routing, an autonomous system is assigned a globally unique number by a registrar, called an Autonomous System Number (ASN).|
-|Autonomous System Number|ASN.  A globally unique number assigned by a registrar for the purposes of Internet routing.|+|Autonomous System Number|ASN.
 +|:::|A globally unique number assigned by a registrar for the purposes of Internet routing.|
 |Availability|The need to ensure that the business purpose of the system can be met and that it is accessible to those who need to use it.| |Availability|The need to ensure that the business purpose of the system can be met and that it is accessible to those who need to use it.|
 |Backdoor|A backdoor is a tool installed after a compromise to give an attacker easier access to the compromised system around any security mechanisms that are in place.| |Backdoor|A backdoor is a tool installed after a compromise to give an attacker easier access to the compromised system around any security mechanisms that are in place.|
Line 67: Line 72:
 |Banner|A banner is the information that is displayed to a remote user trying to connect to a service.  This may include version information, system information, or a warning about authorized use.| |Banner|A banner is the information that is displayed to a remote user trying to connect to a service.  This may include version information, system information, or a warning about authorized use.|
 |BAP|Business and Personal.| |BAP|Business and Personal.|
-|Basic Authentication | Basic Authentication is the simplest web-based authentication scheme that works by sending the username and password with each request.| +|Basic Authentication|Basic Authentication is the simplest web-based authentication scheme that works by sending the username and password with each request.| 
 |Bastion Host|A bastion host has been hardened in anticipation of vulnerabilities that have not been discovered yet.| |Bastion Host|A bastion host has been hardened in anticipation of vulnerabilities that have not been discovered yet.|
 |BAU|Business as Usual.| |BAU|Business as Usual.|
-|BBS|A Bulletin Board System (BBS) is a computerized meeting and announcement system that allows people to carry on discussions, upload and download files, and record observations and points of view without having to be simultaneously connected to the system at any given time.|+|BBS|Bulletin Board System.| 
 +|:::|A Bulletin Board System (BBS) is a computerized meeting and announcement system that allows people to carry on discussions, upload and download files, and record observations and points of view without having to be simultaneously connected to the system at any given time.|
 |BCM|Business Continuity Management. The management of a Business Continuity Plan (BCP).| |BCM|Business Continuity Management. The management of a Business Continuity Plan (BCP).|
 |BCP|Business Continuity Plan. A Business Continuity Plan is the plan for emergency response, backup operations, and post-disaster recovery steps that will ensure the availability of critical resources and facilitate the continuity of operations in an emergency situation.| |BCP|Business Continuity Plan. A Business Continuity Plan is the plan for emergency response, backup operations, and post-disaster recovery steps that will ensure the availability of critical resources and facilitate the continuity of operations in an emergency situation.|
Line 88: Line 94:
 |BLoR|Business List of Records.  An indexed list of relevant records.| |BLoR|Business List of Records.  An indexed list of relevant records.|
 |BOM|Business Only Membership.| |BOM|Business Only Membership.|
-|Border Gateway Protocol|BGP.  An inter-autonomous system routing protocol.  BGP is used to exchange routing information for the Internet and is the protocol used between Internet service providers (ISP).|+|Border Gateway Protocol|BGP.
 +|:::|An inter-autonomous system routing protocol.  BGP is used to exchange routing information for the Internet and is the protocol used between Internet service providers (ISP).|
 |Boot Record Infector|A boot record infector is a piece of malware that inserts malicious code into the boot sector of a disk.| |Boot Record Infector|A boot record infector is a piece of malware that inserts malicious code into the boot sector of a disk.|
 |Bot|Also called ‘Internet bots’; refers to computers that perform tasks without human input.  Increasingly used for click-fraud and other malicious purposes.| |Bot|Also called ‘Internet bots’; refers to computers that perform tasks without human input.  Increasingly used for click-fraud and other malicious purposes.|
Line 102: Line 109:
 |Brute Force|A crypto-analysis technique or other kind of attack method involving an exhaustive procedure that tries all possibilities, one-by-one.| |Brute Force|A crypto-analysis technique or other kind of attack method involving an exhaustive procedure that tries all possibilities, one-by-one.|
 |BSM|Balance Sheet Management.| |BSM|Balance Sheet Management.|
-|BSS 7799|British Standard 7799.  A standard code of practice and provides guidance on how to secure an information system.  It includes the management framework, objectives, and control requirements for information security management systems.|+|BSS 7799|British Standard 7799.
 +|:::|A standard code of practice and provides guidance on how to secure an information system.  It includes the management framework, objectives, and control requirements for information security management systems.|
 |BST|British Summer Time.| |BST|British Summer Time.|
 |Buffer Overflow|A buffer overflow occurs when a program or process tries to store more data in a buffer (temporary data storage area) than it was intended to hold.  Since buffers are created to contain a finite amount of data, the extra information - which has to go somewhere - can overflow into adjacent buffers, corrupting or overwriting the valid data held in them.| |Buffer Overflow|A buffer overflow occurs when a program or process tries to store more data in a buffer (temporary data storage area) than it was intended to hold.  Since buffers are created to contain a finite amount of data, the extra information - which has to go somewhere - can overflow into adjacent buffers, corrupting or overwriting the valid data held in them.|
 |Bullet-proof hosting|Bullet-proof hosting is a service provided by some domain hosting or web hosting firms that allow their customer considerable leniency in the kinds of material they may upload and distribute.  This leniency has been taken advantage of by spammers and providers of online gambling or pornography.| |Bullet-proof hosting|Bullet-proof hosting is a service provided by some domain hosting or web hosting firms that allow their customer considerable leniency in the kinds of material they may upload and distribute.  This leniency has been taken advantage of by spammers and providers of online gambling or pornography.|
-|Bulletin Board System|A Bulletin Board System (BBS) is a computerized meeting and announcement system that allows people to carry on discussions, upload and download files, and record observations and points of view without having to be simultaneously connected to the system at any given time.| +|Bulletin Board System|BBS| 
-|Business Continuity Management|BCM. The management of a Business Continuity Plan (BCP).| +|:::|A Bulletin Board System (BBS) is a computerized meeting and announcement system that allows people to carry on discussions, upload and download files, and record observations and points of view without having to be simultaneously connected to the system at any given time.| 
-|Business Continuity Plan|BCP.  A Business Continuity Plan is the plan for emergency response, backup operations, and post-disaster recovery steps that will ensure the availability of critical resources and facilitate the continuity of operations in an emergency situation.| +|Business Continuity Management|BCM.
-|Business Impact Analysis|BIA.  A Business Impact Analysis determines what levels of impact to a system are tolerable.|+|:::|The management of a Business Continuity Plan (BCP).| 
 +|Business Continuity Plan|BCP.
 +|:::|A Business Continuity Plan is the plan for emergency response, backup operations, and post-disaster recovery steps that will ensure the availability of critical resources and facilitate the continuity of operations in an emergency situation.| 
 +|Business Impact Analysis|BIA.
 +|:::|A Business Impact Analysis determines what levels of impact to a system are tolerable.|
 |Business Intelligence|Business intelligence is now widely accepted as being concerned with information technology solutions for transforming the output from large data collections into Intelligence; usually through the integration of sales, marketing, servicing, and support operations.  It covers such activities as customer relationship management, enterprise resource planning and e-commerce using data mining techniques.  Those people involved in business intelligence tend to regard it as one aspect of knowledge management.  Systems based on business intelligence software were formerly known as Executive information Systems.| |Business Intelligence|Business intelligence is now widely accepted as being concerned with information technology solutions for transforming the output from large data collections into Intelligence; usually through the integration of sales, marketing, servicing, and support operations.  It covers such activities as customer relationship management, enterprise resource planning and e-commerce using data mining techniques.  Those people involved in business intelligence tend to regard it as one aspect of knowledge management.  Systems based on business intelligence software were formerly known as Executive information Systems.|
 |BYOD|Bring Your Own Device.| |BYOD|Bring Your Own Device.|
Line 115: Line 127:
 |CA|Certificate Authority.| |CA|Certificate Authority.|
 |CAB|Change Advisory Board.| |CAB|Change Advisory Board.|
-|CAC|Call Admission Control.  The inspection and control all inbound and outbound voice network activity by a voice firewall based on user-defined policies.|+|CAC|Call Admission Control.
 +|:::|The inspection and control all inbound and outbound voice network activity by a voice firewall based on user-defined policies.|
 |Cache|Pronounced cash, a special high-speed storage mechanism.  It can be either a reserved section of main memory or an independent high-speed storage device.  Two types of caching are commonly used in personal computers: memory caching and disk caching.| |Cache|Pronounced cash, a special high-speed storage mechanism.  It can be either a reserved section of main memory or an independent high-speed storage device.  Two types of caching are commonly used in personal computers: memory caching and disk caching.|
 |Cache Cramming|Cache Cramming is the technique of tricking a browser to run cached Java code from the local disk, instead of the internet zone, so it runs with less restrictive permissions.| |Cache Cramming|Cache Cramming is the technique of tricking a browser to run cached Java code from the local disk, instead of the internet zone, so it runs with less restrictive permissions.|
 |Cache Poisoning|Malicious or misleading data from a remote name server is saved [cached] by another name server.  Typically used with DNS cache poisoning attacks.| |Cache Poisoning|Malicious or misleading data from a remote name server is saved [cached] by another name server.  Typically used with DNS cache poisoning attacks.|
-|Call Admission Control|CAC.  The inspection and control all inbound and outbound voice network activity by a voice firewall based on user-defined policies.|+|Call Admission Control|CAC.
 +|:::|The inspection and control all inbound and outbound voice network activity by a voice firewall based on user-defined policies.|
 |CAMS|Cash Management System.| |CAMS|Cash Management System.|
 |Carding|Carding is a term used for a process to verify the validity of stolen card data.  The thief presents the card information on a website that has real-time transaction processing.  If the card is processed successfully, the thief knows that the card is still good.  The specific item purchased is immaterial, and the thief does not need to purchase an actual product; a Web site subscription or charitable donation would be sufficient.  The purchase is usually for a small monetary amount, both to avoid using the card's credit limit, and also to avoid attracting the card issuer's attention.  A website known to be susceptible to carding is known as a cartable website.| |Carding|Carding is a term used for a process to verify the validity of stolen card data.  The thief presents the card information on a website that has real-time transaction processing.  If the card is processed successfully, the thief knows that the card is still good.  The specific item purchased is immaterial, and the thief does not need to purchase an actual product; a Web site subscription or charitable donation would be sufficient.  The purchase is usually for a small monetary amount, both to avoid using the card's credit limit, and also to avoid attracting the card issuer's attention.  A website known to be susceptible to carding is known as a cartable website.|
 |Cash-out|The aspect of a cybercrime operation where stolen electronic funds are finally withdrawn from the finance system in the form of hard cash, often perpetrated by the use of ‘money mules’.| |Cash-out|The aspect of a cybercrime operation where stolen electronic funds are finally withdrawn from the finance system in the form of hard cash, often perpetrated by the use of ‘money mules’.|
-|CCO|Chief Controls Office.  The Chief Controls Office centralizes and increases the focus on maintaining and enhancing an effective control framework.|+|CCO|Chief Controls Office.
 +|:::|The Chief Controls Office centralizes and increases the focus on maintaining and enhancing an effective control framework.|
 |CDC|Client Data Controls.| |CDC|Client Data Controls.|
 |CDI|Client Data Interface.| |CDI|Client Data Interface.|
Line 175: Line 190:
 |CRAID|Changes, Risks, Assumptions, Issues, Dependencies.| |CRAID|Changes, Risks, Assumptions, Issues, Dependencies.|
 |Crawler|A crawler uses existing Internet search engines to carry out automatic search and retrieval of selected Information on behalf of a user.  It may also be known as Web crawler.| |Crawler|A crawler uses existing Internet search engines to carry out automatic search and retrieval of selected Information on behalf of a user.  It may also be known as Web crawler.|
-|CRC|Cyclic Redundancy Check.  Sometimes called "cyclic redundancy code."  A type of checksum algorithm that is not a cryptographic hash but is used to implement data integrity service where accidental changes to data are expected.|+|CRC|Cyclic Redundancy Check.
 +|:::|Sometimes called "cyclic redundancy code."  A type of checksum algorithm that is not a cryptographic hash but is used to implement data integrity service where accidental changes to data are expected.|
 |Criminal Forum|A forum, usually web based, devoted to the black market trading of stolen credit card details, stolen identity details and tools to commit computer offences.| |Criminal Forum|A forum, usually web based, devoted to the black market trading of stolen credit card details, stolen identity details and tools to commit computer offences.|
 |CRON|Cron is a Unix application that runs jobs for users and administrators at scheduled times of the day.| |CRON|Cron is a Unix application that runs jobs for users and administrators at scheduled times of the day.|
Line 200: Line 216:
 |DBC|Detailed Business Case.| |DBC|Detailed Business Case.|
 |DCF|Data Control Framework.| |DCF|Data Control Framework.|
-|DCO|Device Configuration Overlay.  A hidden part of a hard drive that is used by personal computer manufacturers to specify the configuration of a hard drive (regardless of its actual size) to present the same number of sectors to the BIOS and operating system.|+|DCO|Device Configuration Overlay.
 +|:::|A hidden part of a hard drive that is used by personal computer manufacturers to specify the configuration of a hard drive (regardless of its actual size) to present the same number of sectors to the BIOS and operating system.|
 |DCP|Demand Change Process.| |DCP|Demand Change Process.|
-|DDOS|Distributed Denial of Service (DDOS) is an attack in which multiple systems flood the bandwidth or resources of a targeted system in an attempt to make it unavailable.  DDOS attacks fall into two basic categories based on the resources they seek to exhaust: application attacks (exploitation of software vulnerabilities) and network attacks (attempting to saturate the communications lines that connect servers to the Internet).|+|DDOS|Distributed Denial of Service.| 
 +|:::|Distributed Denial of Service (DDOS) is an attack in which multiple systems flood the bandwidth or resources of a targeted system in an attempt to make it unavailable.  DDOS attacks fall into two basic categories based on the resources they seek to exhaust: application attacks (exploitation of software vulnerabilities) and network attacks (attempting to saturate the communications lines that connect servers to the Internet).|
 |Decapsulation | Decapsulation is the process of stripping off one layer's headers and passing the rest of the packet up to the next higher layer on the protocol stack.| |Decapsulation | Decapsulation is the process of stripping off one layer's headers and passing the rest of the packet up to the next higher layer on the protocol stack.|
 |Decryption|Decryption is the process of transforming an encrypted message into its original plain-text.| |Decryption|Decryption is the process of transforming an encrypted message into its original plain-text.|
Line 208: Line 226:
 |Defacement|Defacement is the method of modifying the content of a website in such a way that it becomes "vandalized" or embarrassing to the website owner.| |Defacement|Defacement is the method of modifying the content of a website in such a way that it becomes "vandalized" or embarrassing to the website owner.|
 |Defense In-Depth|Defense In-Depth is the approach of using multiple layers of security to guard against failure of a single security component.| |Defense In-Depth|Defense In-Depth is the approach of using multiple layers of security to guard against failure of a single security component.|
-|Demilitarized Zone|DMZ.  In computer security, in general a demilitarized zone (DMZ) or perimeter network is a network area (a sub-network) that sits between an organization's internal network and an external network, usually the Internet.  DMZ's help to enable the layered security model in that they provide sub-network segmentation based on security requirements or policy.  DMZ's provide either a transit mechanism from a secure source to an insecure destination or from an insecure source to a more secure destination.  In some cases, a screened subnet which is used for servers accessible from the outside is referred to as a DMZ.|+|Demilitarized Zone|DMZ.
 +|:::|In computer security, in general a demilitarized zone (DMZ) or perimeter network is a network area (a sub-network) that sits between an organization's internal network and an external network, usually the Internet.  DMZ's help to enable the layered security model in that they provide sub-network segmentation based on security requirements or policy.  DMZ's provide either a transit mechanism from a secure source to an insecure destination or from an insecure source to a more secure destination.  In some cases, a screened subnet which is used for servers accessible from the outside is referred to as a DMZ.|
 |Denial of Service|The prevention of authorized access to a system resource or the delaying of system operations and functions.| |Denial of Service|The prevention of authorized access to a system resource or the delaying of system operations and functions.|
 |DES|Data Encryption Standard).| |DES|Data Encryption Standard).|
Line 217: Line 236:
 |Digest Authentication|Digest Authentication allows a web client to compute MD5 hashes of the password to prove it has the password.| |Digest Authentication|Digest Authentication allows a web client to compute MD5 hashes of the password to prove it has the password.|
 |Digital Certificate|A digital certificate is an electronic "credit card" that establishes your credentials when doing business or other transactions on the Web.  It is issued by a certification authority.  It contains your name, a serial number, expiration dates, a copy of the certificate holder's public key (used for encrypting messages and digital signatures), and the digital signature of the certificate-issuing authority so that a recipient can verify that the certificate is real.| |Digital Certificate|A digital certificate is an electronic "credit card" that establishes your credentials when doing business or other transactions on the Web.  It is issued by a certification authority.  It contains your name, a serial number, expiration dates, a copy of the certificate holder's public key (used for encrypting messages and digital signatures), and the digital signature of the certificate-issuing authority so that a recipient can verify that the certificate is real.|
-|Digital Envelope| A digital envelope is an encrypted message with the encrypted session key.| +|Digital Envelope|A digital envelope is an encrypted message with the encrypted session key.| 
-|Digital Signature| A digital signature is a hash of a message that uniquely identifies the sender of the message and proves the message hasn't changed since transmission. | +|Digital Signature|A digital signature is a hash of a message that uniquely identifies the sender of the message and proves the message hasn't changed since transmission. | 
-|Digital Signature Algorithm|DSA.  An asymmetric cryptographic algorithm that produces a digital signature in the form of a pair of large numbers.  The signature is computed using rules and parameters such that the identity of the signer and the integrity of the signed data can be verified.| +|Digital Signature Algorithm|DSA.
-|Digital Signature Standard|DSS.  The US Government standard that specifies the Digital Signature Algorithm (DSA), which involves asymmetric cryptography.|+|:::|An asymmetric cryptographic algorithm that produces a digital signature in the form of a pair of large numbers.  The signature is computed using rules and parameters such that the identity of the signer and the integrity of the signed data can be verified.| 
 +|Digital Signature Standard|DSS.
 +|:::|The US Government standard that specifies the Digital Signature Algorithm (DSA), which involves asymmetric cryptography.|
 |Disassembly|The process of taking a binary program and deriving the source code from it.| |Disassembly|The process of taking a binary program and deriving the source code from it.|
-|Disaster Recovery Plan|DRP.  A Disaster Recovery Plan is the process of recovery of IT systems in the event of a disruption or disaster.| +|Disaster Recovery Plan|DRP.
-|Discretionary Access Control|DAC.  Discretionary Access Control consists of something the user can manage, such as a document password.|+|:::|A Disaster Recovery Plan is the process of recovery of IT systems in the event of a disruption or disaster.| 
 +|Discretionary Access Control|DAC.
 +|:::|Discretionary Access Control consists of something the user can manage, such as a document password.|
 |Dispensation|Temporary exclusion from Policy or Scope.| |Dispensation|Temporary exclusion from Policy or Scope.|
 |Disruption|A circumstance or event that interrupts or prevents the correct operation of system services and functions.| |Disruption|A circumstance or event that interrupts or prevents the correct operation of system services and functions.|
 |Distance Vector|Distance vectors measure the cost of routes to determine the best route to all known networks.| |Distance Vector|Distance vectors measure the cost of routes to determine the best route to all known networks.|
-|Distributed Denial of Service|DDOS. Distributed Denial of Service (DDOS) is an attack in which multiple systems flood the bandwidth or resources of a targeted system in an attempt to make it unavailable.  DDOS attacks fall into two basic categories based on the resources they seek to exhaust: application attacks (exploitation of software vulnerabilities) and network attacks (attempting to saturate the communications lines that connect servers to the Internet).|+|Distributed Denial of Service|DDOS.
 +|:::|Distributed Denial of Service (DDOS) is an attack in which multiple systems flood the bandwidth or resources of a targeted system in an attempt to make it unavailable.  DDOS attacks fall into two basic categories based on the resources they seek to exhaust: application attacks (exploitation of software vulnerabilities) and network attacks (attempting to saturate the communications lines that connect servers to the Internet).|
 |Distributed Scans|Distributed Scans are scans that use multiple source addresses to gather information.| |Distributed Scans|Distributed Scans are scans that use multiple source addresses to gather information.|
 |DLL|Dynamic Link Library.| |DLL|Dynamic Link Library.|
Line 241: Line 265:
 |Domain Hijacking|Domain hijacking is an attack by which an attacker takes over a domain by first blocking access to the domain's DNS server and then putting his own server up in its place.| |Domain Hijacking|Domain hijacking is an attack by which an attacker takes over a domain by first blocking access to the domain's DNS server and then putting his own server up in its place.|
 |Domain Name|A domain name locates an organization or other entity on the Internet.  For example, the domain name "www.sans.org" locates an Internet address for "sans.org" at Internet point 199.0.0.2 and a particular host server named "www" The "org" part of the domain name reflects the purpose of the organization or entity (in this example, "organization") and is called the top-level domain name.  The "sans" part of the domain name defines the organization or entity and together with the top-level is called the second-level domain name.| |Domain Name|A domain name locates an organization or other entity on the Internet.  For example, the domain name "www.sans.org" locates an Internet address for "sans.org" at Internet point 199.0.0.2 and a particular host server named "www" The "org" part of the domain name reflects the purpose of the organization or entity (in this example, "organization") and is called the top-level domain name.  The "sans" part of the domain name defines the organization or entity and together with the top-level is called the second-level domain name.|
-|Domain Name System|DNS.  The domain name system (DNS) is the way that Internet domain names are located and translated into Internet Protocol addresses. A domain name is a meaningful and easy-to-remember "handle" for an Internet address.|+|Domain Name System|DNS.
 +|:::|The domain name system (DNS) is the way that Internet domain names are located and translated into Internet Protocol addresses. A domain name is a meaningful and easy-to-remember "handle" for an Internet address.|
 |Download|To download is to retrieve Information from the Internet.| |Download|To download is to retrieve Information from the Internet.|
 |DP|Discussion Paper.| |DP|Discussion Paper.|
Line 259: Line 284:
 |DWB|Dispensation, Waivers and Breaches.| |DWB|Dispensation, Waivers and Breaches.|
 |DX|Developer Experience.| |DX|Developer Experience.|
-|Dynamic Link Library|DLL.  A collection of small programs, any of which can be called when needed by a larger program that is running in the computer.  The small program that lets the larger program communicate with a specific device such as a printer or scanner is often packaged as a DLL program (usually referred to as a DLL file).|+|Dynamic Link Library|DLL.
 +|:::|A collection of small programs, any of which can be called when needed by a larger program that is running in the computer.  The small program that lets the larger program communicate with a specific device such as a printer or scanner is often packaged as a DLL program (usually referred to as a DLL file).|
 |Dynamic Routing Protocol|Allows network devices to learn routes. Ex. RIP, EIGRP Dynamic routing occurs when routers talk to adjacent routers, informing each other of what networks each router is currently connected to.  The routers must communicate using a routing protocol, of which there are many to choose from.  The process on the router that is running the routing protocol, communicating with its neighbour routers, is usually called a routing daemon.  The routing daemon updates the kernel's routing table with information it receives from neighbour routers.| |Dynamic Routing Protocol|Allows network devices to learn routes. Ex. RIP, EIGRP Dynamic routing occurs when routers talk to adjacent routers, informing each other of what networks each router is currently connected to.  The routers must communicate using a routing protocol, of which there are many to choose from.  The process on the router that is running the routing protocol, communicating with its neighbour routers, is usually called a routing daemon.  The routing daemon updates the kernel's routing table with information it receives from neighbour routers.|
 |E2E|End-to-End.  The entire process.| |E2E|End-to-End.  The entire process.|
Line 294: Line 320:
 |Exposure|A threat action whereby sensitive data is directly released to an unauthorized entity.| |Exposure|A threat action whereby sensitive data is directly released to an unauthorized entity.|
 |Extended ACLS|Cisco.  Extended ACLs are a more powerful form of Standard ACLs on Cisco routers.  They can make filtering decisions based on IP addresses (source or destination), Ports (source or destination), protocols, and whether a session is established.| |Extended ACLS|Cisco.  Extended ACLs are a more powerful form of Standard ACLs on Cisco routers.  They can make filtering decisions based on IP addresses (source or destination), Ports (source or destination), protocols, and whether a session is established.|
-|Extensible Authentication Protocol|EAP.  A framework that supports multiple, optional authentication mechanisms for PPP, including clear-text passwords, challenge-response, and arbitrary dialog sequences.| +|Extensible Authentication Protocol|EAP.
-|Exterior Gateway Protocol|EGP.  A protocol which distributes routing information to the routers which connect autonomous systems.|+|:::|A framework that supports multiple, optional authentication mechanisms for PPP, including clear-text passwords, challenge-response, and arbitrary dialog sequences.| 
 +|Exterior Gateway Protocol|EGP.
 +|:::|A protocol which distributes routing information to the routers which connect autonomous systems.|
 |Extranet|Extranet is that portion of an organization’s Intranet that is accessible by selected individuals (for example, collaborators, suppliers, partners, major customers).| |Extranet|Extranet is that portion of an organization’s Intranet that is accessible by selected individuals (for example, collaborators, suppliers, partners, major customers).|
 |False Rejects|False Rejects are when an authentication system fails to recognize a valid user.| |False Rejects|False Rejects are when an authentication system fails to recognize a valid user.|
 |Fast File System|The first major revision to the Unix file system, providing faster read access and faster (delayed, asynchronous) write access through a disk cache and better file system layout on disk.  It uses inodes (pointers) and data blocks.| |Fast File System|The first major revision to the Unix file system, providing faster read access and faster (delayed, asynchronous) write access through a disk cache and better file system layout on disk.  It uses inodes (pointers) and data blocks.|
 |Fast Flux|Protection method used by botnets consisting of a continuous and fast change of the DNS records for a domain name through different IP addresses.| |Fast Flux|Protection method used by botnets consisting of a continuous and fast change of the DNS records for a domain name through different IP addresses.|
-|FAT|Functional Acceptance Testing.  See FCT.| +|FAT|Functional Acceptance Testing.
-|Fault Line Attacks | Fault Line Attacks use weaknesses between interfaces of systems to exploit gaps in coverage.| +|:::|See FCT.| 
-|FCT|Functional Confidence Testing.  Functional testing covers Unit Testing, Smoke Testing, Sanity Testing, Intergration Testing (Top Down, Bottom Up), Interface and Useability Testing, System Testing, Regression Testing, Per User Acceptance Testing (Alpha and Beta), User Acceptance Testing, White Box and Black Box Testing, Globalization and Location Testing.|+|Fault Line Attacks|Fault Line Attacks use weaknesses between interfaces of systems to exploit gaps in coverage.| 
 +|FCT|Functional Confidence Testing.
 +|:::|Functional testing covers Unit Testing, Smoke Testing, Sanity Testing, Intergration Testing (Top Down, Bottom Up), Interface and Useability Testing, System Testing, Regression Testing, Per User Acceptance Testing (Alpha and Beta), User Acceptance Testing, White Box and Black Box Testing, Globalization and Location Testing.|
 |File Transfer Protocol|FTP.  A TCP/IP protocol specifying the transfer of text or binary files across the network.| |File Transfer Protocol|FTP.  A TCP/IP protocol specifying the transfer of text or binary files across the network.|
 |Filter A filter is used to specify which packets will or will not be used.  It can be used in sniffers to determine which packets get displayed, or by firewalls to determine which packets get blocked.| |Filter A filter is used to specify which packets will or will not be used.  It can be used in sniffers to determine which packets get displayed, or by firewalls to determine which packets get blocked.|
Line 382: Line 412:
 |Intelligence|Intelligence is high-level, processed, exploitable Information.| |Intelligence|Intelligence is high-level, processed, exploitable Information.|
 |International Organization for Standardization (ISO)|A voluntary, non-treaty, non-government organization, established in 1947, with voting members that are designated standards bodies of participating nations and non-voting observer organizations.| |International Organization for Standardization (ISO)|A voluntary, non-treaty, non-government organization, established in 1947, with voting members that are designated standards bodies of participating nations and non-voting observer organizations.|
-|International Telecommunications Union|ITU-T.  Telecommunication Standardization Sector (formerly "CCITT"), a United Nations treaty organization that is composed mainly of postal, telephone, and telegraph authorities of the member countries and that publishes standards called "Recommendations."|+|International Telecommunications Union|ITU-T.
 +|:::|Telecommunication Standardization Sector (formerly "CCITT"), a United Nations treaty organization that is composed mainly of postal, telephone, and telegraph authorities of the member countries and that publishes standards called "Recommendations."|
 |Internet|A term to describe connecting multiple separate networks together.| |Internet|A term to describe connecting multiple separate networks together.|
-|Internet Control Message Protocol|ICMP.  An Internet Standard protocol that is used to report error conditions during IP datagram processing and to exchange other information concerning the state of the IP network.| +|Internet Control Message Protocol|ICMP.
-|Internet Engineering Task Force|IETF.  The body that defines standard Internet operating protocols such as TCP/IP.  The IETF is supervised by the Internet Society Internet Architecture Board (IAB).  IETF members are drawn from the Internet Society's individual and organization membership.| +|:::|An Internet Standard protocol that is used to report error conditions during IP datagram processing and to exchange other information concerning the state of the IP network.| 
-|Internet Message Access Protocol|IMAP.  A protocol that defines how a client should fetch mail from and return mail to a mail server.  IMAP is intended as a replacement for or extension to the Post Office Protocol (POP).  It is defined in RFC 1203 (v3) and RFC 2060 (v4).| +|Internet Engineering Task Force|IETF.
-|Internet Protocol|IP.  The method or protocol by which data is sent from one computer to another on the Internet.| +|:::|The body that defines standard Internet operating protocols such as TCP/IP.  The IETF is supervised by the Internet Society Internet Architecture Board (IAB).  IETF members are drawn from the Internet Society's individual and organization membership.| 
-|Internet Protocol Security|IPSEC.  A developing standard for security at the network or packet processing layer of network communication.| +|Internet Message Access Protocol|IMAP.
-|Internet Relay Chat|IRC.  Internet Relay Chat (IRC) is a huge, multi-user live chat facility.  Private channels may be created for multi-person Conference calls.| +|:::|A protocol that defines how a client should fetch mail from and return mail to a mail server.  IMAP is intended as a replacement for or extension to the Post Office Protocol (POP).  It is defined in RFC 1203 (v3) and RFC 2060 (v4).| 
-|Internet Service Provider|ISP.   An Internet Service Provider (ISP) is a company selling access to the Internet.|+|Internet Protocol|IP.
 +|:::|The method or protocol by which data is sent from one computer to another on the Internet.| 
 +|Internet Protocol Security|IPSEC.
 +|:::|A developing standard for security at the network or packet processing layer of network communication.| 
 +|Internet Relay Chat|IRC.
 +|:::|Internet Relay Chat (IRC) is a huge, multi-user live chat facility.  Private channels may be created for multi-person Conference calls.| 
 +|Internet Service Provider|ISP.
 +|:::|An Internet Service Provider (ISP) is a company selling access to the Internet.|
 |Internet Standard|A specification, approved by the IESG and published as an RFC, that is stable and well-understood, is technically competent, has multiple, independent, and interoperable implementations with substantial operational experience, enjoys significant public support, and is recognizably useful in some or all parts of the Internet.| |Internet Standard|A specification, approved by the IESG and published as an RFC, that is stable and well-understood, is technically competent, has multiple, independent, and interoperable implementations with substantial operational experience, enjoys significant public support, and is recognizably useful in some or all parts of the Internet.|
 |Interrupt|An Interrupt is a signal that informs the OS that something has occurred.| |Interrupt|An Interrupt is a signal that informs the OS that something has occurred.|
Line 444: Line 482:
 |Malware|A generic term for a number of different types of malicious code.| |Malware|A generic term for a number of different types of malicious code.|
 |Mandatory Access Control|MAC.  Mandatory Access Control controls is where the system controls access to resources based on classification levels assigned to both the objects and the users.  These controls cannot be changed by anyone.| |Mandatory Access Control|MAC.  Mandatory Access Control controls is where the system controls access to resources based on classification levels assigned to both the objects and the users.  These controls cannot be changed by anyone.|
-|Man in the Middle Attack|MITM.  In cryptography, the man-in-the-middle attack (often abbreviated MITM) attack, is a form of active eavesdropping in which the attacker makes independent connections with the victims and relays messages between them, making them believe that they are talking directly to each other over a private connection, when in fact the entire conversation is controlled by the attacker.|+|Man in the Middle Attack|MITM.
 +|:::|In cryptography, the man-in-the-middle attack (often abbreviated MITM) attack, is a form of active eavesdropping in which the attacker makes independent connections with the victims and relays messages between them, making them believe that they are talking directly to each other over a private connection, when in fact the entire conversation is controlled by the attacker.|
 |Masquerade Attack|A type of attack in which one system entity illegitimately poses as (assumes the identity of) another entity.| |Masquerade Attack|A type of attack in which one system entity illegitimately poses as (assumes the identity of) another entity.|
 |MD5|A one way cryptographic hash function.  Also see "hash functions" and "sha1".| |MD5|A one way cryptographic hash function.  Also see "hash functions" and "sha1".|
-|Measures of Effectiveness|MOE.  Measures of Effectiveness is a probability model based on engineering concepts that allows one to approximate the impact a give action will have on an environment. In Information warfare it is the ability to attack or defend within an Internet environment.|+|Measures of Effectiveness|MOE.
 +|:::|Measures of Effectiveness is a probability model based on engineering concepts that allows one to approximate the impact a give action will have on an environment. In Information warfare it is the ability to attack or defend within an Internet environment.|
 |MFT|Managed File Transfer.| |MFT|Managed File Transfer.|
 |MI|Management Information.| |MI|Management Information.|
Line 526: Line 566:
 |:::|A proof of concept is realisation of a certain method or idea to demonstrate its feasibility, or a demonstration in principle, whose purpose is to verify that some concept or theory is probably capable of being useful.  A proof-of-concept may or may not be complete, and is usually small and incomplete.  In computer security the term is often used as a synonym for a zero-day exploit which, mainly for its early creation, does not take full advantage over some vulnerability.| |:::|A proof of concept is realisation of a certain method or idea to demonstrate its feasibility, or a demonstration in principle, whose purpose is to verify that some concept or theory is probably capable of being useful.  A proof-of-concept may or may not be complete, and is usually small and incomplete.  In computer security the term is often used as a synonym for a zero-day exploit which, mainly for its early creation, does not take full advantage over some vulnerability.|
 |POC|Point of Contact.| |POC|Point of Contact.|
-|Point-to-Point|PPP.  A protocol for communication between two computers using a serial interface, typically a personal computer connected by phone line to a server.  It packages your computer's TCP/IP packets and forwards them to the server where they can actually be put on the Internet.|+|Point-to-Point|PPP.
 +|:::|A protocol for communication between two computers using a serial interface, typically a personal computer connected by phone line to a server.  It packages your computer's TCP/IP packets and forwards them to the server where they can actually be put on the Internet.|
 |Point-to-Point Tunneling Protocol|PPTP.  A protocol (set of communication rules) that allows corporations to extend their own corporate network through private "tunnels" over the public Internet.| |Point-to-Point Tunneling Protocol|PPTP.  A protocol (set of communication rules) that allows corporations to extend their own corporate network through private "tunnels" over the public Internet.|
 |Poison Reverse|Split horizon with poisoned reverse (more simply, poison reverse) does include such routes in updates, but sets their metrics to infinity. In effect, advertising the fact that there routes are not reachable.| |Poison Reverse|Split horizon with poisoned reverse (more simply, poison reverse) does include such routes in updates, but sets their metrics to infinity. In effect, advertising the fact that there routes are not reachable.|
-|Polyinstantiation | Polyinstantiation is the ability of a database to maintain multiple records with the same key. It is used to prevent inference attacks.| +|Polyinstantiation|Polyinstantiation is the ability of a database to maintain multiple records with the same key. It is used to prevent inference attacks.| 
-|Polymorphism | Polymorphism is the process by which malicious software changes its underlying code to avoid detection.|+|Polymorphism|Polymorphism is the process by which malicious software changes its underlying code to avoid detection.|
 |POP3|Post Office Protocol Version 3).| |POP3|Post Office Protocol Version 3).|
 |:::|An Internet Standard protocol by which a client workstation can dynamically access a mailbox on a server host to retrieve mail messages that the server has received and is holding for the client.| |:::|An Internet Standard protocol by which a client workstation can dynamically access a mailbox on a server host to retrieve mail messages that the server has received and is holding for the client.|
Line 602: Line 643:
 |RPC Scans|RPC scans determine which RPC services are running on a machine.| |RPC Scans|RPC scans determine which RPC services are running on a machine.|
 |RSS|Really Simple Syndication.| |RSS|Really Simple Syndication.|
-|:::|RSS is a family of web feed formats used to publish frequently updated works such as blog entries, news headlines, audio, and video in a standardised format.  An RSS document (which is called a “feed”, “web feed” or “channel”) includes full or summarized text, plus metadata such as publishing dates and authorship.  Web feeds benefit publishers by letting them syndicate content automatically.  They benefit readers who want to subscribe to timely updates from favoured websites or to aggregate feeds from many sites into one place.|+|:::|RSS is a family of web feed formats used to publish frequently updated works such as blog entries, news headlines, audio, and video in a standardised format.  An RSS document (which is called a “feed”, “web feed” or “channel”) includes full or summarized text, plus metadata such as publishing dates and authorship.  Web feeds benefit publishers by letting them syndicate content automatically.  They benefit readers who want to subscribe to timely updates from favored websites or to aggregate feeds from many sites into one place.|
 |RTM|Requirements Traceability Matrix.  To link each requirement from a BRD to a function, Display the owner of the function, Provide the section of the FSD where each function is described, Make clear any requirements that are out-of-scope for the FSD, Ensure all requirements can be traced from the BRD through to the FSD, Display the MoSCoW qualifier for each requirement in the BRD, Enable all FSD owners to discuss and agree as to where solutions should reside and what they should look like.| |RTM|Requirements Traceability Matrix.  To link each requirement from a BRD to a function, Display the owner of the function, Provide the section of the FSD where each function is described, Make clear any requirements that are out-of-scope for the FSD, Ensure all requirements can be traced from the BRD through to the FSD, Display the MoSCoW qualifier for each requirement in the BRD, Enable all FSD owners to discuss and agree as to where solutions should reside and what they should look like.|
-|RTQ|Risk Tollerance Questionaire.|+|RTQ|Risk Tolerance Questionnaire.|
 |Rule Set Based Access Control|RSBAC.| |Rule Set Based Access Control|RSBAC.|
 |:::|Rule Set Based Access Control targets actions based on rules for entities operating on objects.| |:::|Rule Set Based Access Control targets actions based on rules for entities operating on objects.|
Line 751: Line 792:
 |UAT|User Acceptance Testing.| |UAT|User Acceptance Testing.|
 |UDF|User Defined Field.| |UDF|User Defined Field.|
-|UDP|User Datagram Protocol)|+|UDP|User Datagram Protocol|
 |:::|A communications protocol that, like TCP, runs on top of IP networks.  Unlike TCP/IP, UDP/IP provides very few error recovery services, offering instead a direct way to send and receive datagrams over an IP network.  It's used primarily for broadcasting messages over a network.  UDP uses the Internet Protocol to get a datagram from one computer to another but does not divide a message into packets (datagrams) and reassemble it at the other end.  Specifically, UDP doesn't provide sequencing of the packets that the data arrives in.| |:::|A communications protocol that, like TCP, runs on top of IP networks.  Unlike TCP/IP, UDP/IP provides very few error recovery services, offering instead a direct way to send and receive datagrams over an IP network.  It's used primarily for broadcasting messages over a network.  UDP uses the Internet Protocol to get a datagram from one computer to another but does not divide a message into packets (datagrams) and reassemble it at the other end.  Specifically, UDP doesn't provide sequencing of the packets that the data arrives in.|
 |UDP Scan|UDP scans perform scans to determine which UDP ports are open.| |UDP Scan|UDP scans perform scans to determine which UDP ports are open.|
Line 798: Line 839:
 |Windowing|A windowing system is a system for sharing a computer's graphical display presentation resources among multiple applications at the same time.  In a computer that has a graphical user interface (GUI), you may want to use a number of applications at the same time (this is called task).  Using a separate window for each application, you can interact with each application and go from one application to another without having to reinitiate it.  Having different information or activities in multiple windows may also make it easier for you to do your work.  A windowing system uses a window manager to keep track of where each window is located on the display screen and its size and status.  A windowing system doesn't just manage the windows but also other forms of graphical user interface entities.| |Windowing|A windowing system is a system for sharing a computer's graphical display presentation resources among multiple applications at the same time.  In a computer that has a graphical user interface (GUI), you may want to use a number of applications at the same time (this is called task).  Using a separate window for each application, you can interact with each application and go from one application to another without having to reinitiate it.  Having different information or activities in multiple windows may also make it easier for you to do your work.  A windowing system uses a window manager to keep track of where each window is located on the display screen and its size and status.  A windowing system doesn't just manage the windows but also other forms of graphical user interface entities.|
 |Windump|Windump is a freeware tool for Windows that is a protocol analyzer that can monitor network traffic on a wire.| |Windump|Windump is a freeware tool for Windows that is a protocol analyzer that can monitor network traffic on a wire.|
-|Wired Equivalent Privacy|WEP.  A security protocol for wireless local area networks defined in the standard IEEE 802.11b.|+|Wired Equivalent Privacy|WEP.
 +|:::|A security protocol for wireless local area networks defined in the standard IEEE 802.11b.|
 |Wireless Application Protocol|A specification for a set of communication protocols to standardize the way that wireless devices, such as cellular telephones and radio transceivers, can be used for Internet access, including e-mail, the World Wide Web, newsgroups, and Internet Relay Chat.| |Wireless Application Protocol|A specification for a set of communication protocols to standardize the way that wireless devices, such as cellular telephones and radio transceivers, can be used for Internet access, including e-mail, the World Wide Web, newsgroups, and Internet Relay Chat.|
 |Wiretapping|Monitoring and recording data that is flowing between two points in a communication system.| |Wiretapping|Monitoring and recording data that is flowing between two points in a communication system.|
glossary/start.1689608774.txt.gz · Last modified: 2023/07/17 15:46 by peter
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki