Bảo mật hệ thống mạng part 4 pps

... tour will be fascinated by all the blinking lights. Some of these lights and lighted switches will 24 Network Security: A Beginner’s Guide be near eye level for a child. The temptation to press a ... incorrect. Change attacks can be targeted at sensitive information or public information. Figure 2 -4. Interception using incorrect name resolution information

Ngày tải lên: 02/07/2014, 18:20

... individuals. Vulnerability Scanning Scanning computer systems for vulnerabilities is an important part of a good security program. Such scanning will help an organization to identify potential entry ... cannot be the all-encompassing solution. Anti-Virus Software Anti-virus software is a necessary part of a good security program. If properly imple - mented and configured, it can reduce an...

Ngày tải lên: 02/07/2014, 18:20

... difficult. Making multiple copies of the information and distributing the copies to interested parties makes it difficult to successfully change all of the documents at the same time. Chapter ... exists. For paper files, the physical paper file must be protected. The physical file must exist at a particular location; therefore, access to this location must be controlled. The confidentiality ....

Ngày tải lên: 02/07/2014, 18:20

... or a network within the control of the organization. What if the file is to be copied to other parties or organizations? In this case, it is clear that the access controls on a single computer ... signature was created. In order to be worthwhile, the digital signature must be identified with a particular user; thus, the integrity service must work with the identifica - tion and authentication...

Ngày tải lên: 02/07/2014, 18:20

... specific questions about a particular statute, consult your organiza - tion’s general counsel or local law enforcement. Chapter 4: Legal Issues in Information Security 45 Figure 4- 1. U.S. states with ... communication. 42 Network Security: A Beginner’s Guide STATE LAWS In addition to federal computer crime statutes, many states have also developed their own computer crime laws (see Fig...

Ngày tải lên: 02/07/2014, 18:20

... mail. When a document is to be faxed, it is appropriate to require a phone call to the receiving party and for the sender to request the receiver to wait by the fax machine for the document. This ... imple- mented on the device as well as a procedure for requesting and granting access that is not part of the standard configuration. Remote Access of Internal Systems Often, organizations allo...

Ngày tải lên: 02/07/2014, 18:20

... “#” are comments. #ident "@(#)inetd.conf 1.27 96/09/ 24 SMI" /*SVr4.0 1.5 */ # Configuration file for inetd(1M). See inetd.conf (4) . # To re-configure the running inetd process, edit this ... systems, the pa - rameter is found in /etc/profile. The command is used as follows: umask 077 2 94 Network Security: A Beginner’s Guide Chapter 15: Unix Security Issues 295 The numbers after...

Ngày tải lên: 02/07/2014, 18:20

... update phase may last two to six months (see Figure A -4) . Assessment During the update phase, the Security department should begin working with depart- ments that are deploying or building new projects. ... the secu- rity policy and the Security department should provide assistance in the design of new systems. Appendix A: The Process Project Plan 349 Figure A -4. Update phase project pl...

Ngày tải lên: 02/07/2014, 18:20

... no-brainer. But where do we draw the line between operating system and application? Is RPC part of Unix? Is Explorer part of Windows? In many cases, it is not so simple to separate out the application ... root access of these applications! If for no other reason, applications that open ports below 10 24 must be root just to open the port and listen for connections. Perhaps this is a reas...

Ngày tải lên: 02/07/2014, 18:20

... deadline (say, in 30 minutes). You can use real time for this part to make it more realistic. Talk with your Public Relations department about how the reporter should have been handled or what ... by the intruder. Variation A For an added twist if you wish to exercise your Public Relations department, the cus - tomer called not only your organization but also the local TV station. The story...

Ngày tải lên: 02/07/2014, 18:20