Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED
Cherry Bomb Program Cherry Blossom Cherry Tree Upgrade Test Procedures
Pass/Fail: The test passes if all verification steps pass.
2.4 Reboot “slave cb-vpn server” Test
Description: Tests that the cb-vpn slave server can be rebooted and that on power-
up, proper services are running, and the firewall is properly configured.
Setup: From a control terminal, open an ssh console (using PuTTy) to the slave cb-
vpn server as root (consult “CB Installation Guide” for IP address and root linux user
credentials). Dump the iptables rules to a file (/sbin/iptables –L –n >
~/iptables_before_reboot.out), and dump the routing entries to a file (/sbin/route >
~/routes_before_reboot.out). Gracefully reboot the system (/sbin/reboot).
Run: Verify that the sponsor SNMP monitoring system is reporting the cb-vpn slave
server down. Once the server is back online, verify that the sponsor SNMP
monitoring system is reporting the cb-vpn slave server down. Note that CherryTree
(java service cherrytree) should not be running on the slave cb-vpn server. Dump the
iptables rules (/sbin/iptables –L –n > ~/iptables_after_reboot.out) and the routing
entries (/sbin/route > ~/routes_after_reboot.out) and compare to the respective
*_before_reboot files.
Pass/Fail: The test passes if all verification steps pass.
2.5 Cherry Web Logon Test
Description: Tests that a user on a control terminal can successfully logon to
CherryWeb.
Setup: From a control terminal, point a browser (firefox) to CherryWeb (on the cb-cc
master server -- consult “CB Installation Guide” for CherryWeb URL).
Run: At the CherryWeb authentication screen, enter the appropriate user/password
(consult “CB Installation Guide” for CherryWeb credentials), and verify correctness of
the CherryWeb Overview page. Click all of the links on the left menu pane, and verify
they render properly. Verify the ticker at the bottom of the screen is refreshing
periodically (every 10 seconds). Verify you can change the number of table rows in
the left menu pane.
Pass/Fail: The test passes if all verification steps pass.
2.6 Cherry Web Operation Creation Test
Description: Tests that a CherryWeb user can successfully create a Test user. This
test also attempts to partition any test data from production server data by creating
and performing all subsequent tests under the Test Operation.
Setup: From a control terminal, point a browser (firefox) to CherryWeb (as in 2.5).
UNCLASSIFIED
8