Firewalls and Internet Security, Second Edition phần 5 docx

... IV Firewalls and VPNs 184 Kinds of Firewalls UL'ltDrt Src port dest port flags comment allow SECONDARY * OUR-DNS 53 allow our secondary nameserver access block * * * 53 ... Filtering 1 85 action Src port dest port flags ciomment allow * * MAILGATF 25 inbound mail access allow * * MAILGATE 53 UDP access to our DNS allow SECONDARY * MAILGATE...

Ngày tải lên: 14/08/2014, 18:20

... 0 05: 55: 29 ? 0:01 sched root 1 0 0 09 :55 :39 ? 0:00 /etc/init root 2 0 0 09 :55 :29 ? 0:00 vhand root 3 0 09 :55 :29 ? 0:00 bdflush root 4 0 0: 09 :55 :29 ? 0:00 munldd root 5 ... TTL fingerprinting. 7,936-364.171 81,340-7 45, 014, 656 0.14%-78 .57 % 0.00 %-31 .59 % 0-176,981 0 -5, 867 36. 45 %-83.84 % Administering a Secure Host 2 75 your machine if they...

Ngày tải lên: 14/08/2014, 18:20

... root 256 0 Nov 24 13:47 -rw-r r 1 root 2303 Nov 24 14 :55 lib.msg -rwxr-xr-x 1 root 226 Hov 24 14 :56 m -rw-r r 1 root 29 656 558 Dec 5 21: 15 nohup.out # cat m while [1 ]; do mail root@cert.org ... typing speed and errors and the commands he used to check around and attack. He probed various computers, while consulting the network whois service for certain brands of hosts a...

Ngày tải lên: 14/08/2014, 18:20

... Engineering 98 5. 3 Bugs and Back Doors 100 5. 4 Authentication Failures 103 5. 5 Protocol Failures 104 5. 6 Information Leakage 1 05 5. 7 Exponential Attacks—Viruses and Worms 106 5. 8 Denial-of-Service ... the Server 85 4.4 Web Servers vs. Firewalls 89 4 .5 The Web and Databases 91 4.6 Parting Thoughts 91 II The Threats 93 5 Classes of Attacks 95 5. 1 Stealing...

Ngày tải lên: 14/08/2014, 18:20

... one of the strengths of the Internet. Only the interested hosts need to agree on the protocol, and all they have to do to talk is pick a port number between 1 and 655 35. Many companies have invented ... 2 tcp 633 ypserv 134217728 2 tcp 56 4 95 134217728 l tcp 56 4 95 Figure 3.1: A rpcbind dump. It shows the services that are being run, the version number, and the port nu...

Ngày tải lên: 14/08/2014, 18:20

... contained in a sandbox, a software j ail (six Section 8 .5 and Chapter 16) to contain and limit their access to our local host and network. These sandboxes vary between browsers and implementors. ... en-gineering, see [Mitnick et al., 2002], 5. 3 Bugs and Back Doors One of the ways the Internet Worm [Spafford, 1989a, 1989b; Eichin and Rochlis, 1989; Rochlis and Eichin, 1...

Ngày tải lên: 14/08/2014, 18:20

... subject to a race attack (see Sec-tion 5. 4.1). 7 .5 Smart Cards A smart card is a portable device that has a CPU, some input/output ports, and a few thousand bytes of nonvolatile memory that ... called rootkit. This name has expanded to refer to numerous programs to acquire and keep root access. This is an ongoing arms race, and programs such as rkdet detect and report the at...

Ngày tải lên: 14/08/2014, 18:20

... 1 15. 207.10.208/ 255 . 255 . 255 . 255 -p 6 \ -j ACCEPT ! -y -A input -s 0.0.0.0/0.0.0.0 53 :51 -d 1 35. 207.10.203/ 255 . 255 . 255 . 255 -p 17 \ -j ACCEPT -A input -s 1 35. 207.10.208/ 255 . 255 . 255 . 255 -d 0.0.0.0/0.0.0.0 53 :53 ... 1 35. 207.10.208/ 255 . 255 . 255 . 255 -p 1 \ -j ACCEPT -A INPUT -s 0.0.0.0/0.0.0.0 3:3 -d 1 35. 207.10.208/ 255 . 255 . 255 . 255 4:4 -p 1 \ -j...

Ngày tải lên: 14/08/2014, 18:20

... [Rubin, 19 95] Aviel D. Rubin. Trusted distribution of software over the Internet. In Proceedings of the Internet Society Symposium on Network and Distributed System Security, pages 47 -53 , 19 95. Cited ... for authentication. RFC 255 4, Internet Engi-neering Task Force, March 1999. Cited on: 43. http://www.rfc-editor.org/rfc/rfc 255 4.txt [Myers and Rose, 1996] J. Myers and...

Ngày tải lên: 14/08/2014, 18:20

... 184,292,309,312, 350 Advisories, 350 CA-00:11, 108 CA-1992-11,164 CA-1992: 15, 6 CA-l9 95- 03a, 15 CA-1997-22, 170 CA-1997-27, 55 CA-1998- 05, 170,2 75 CA-1998-07, 15 CA-1999-14, 170 CA-1999- 15, 15, 61 ... Martin, 282 root (account), 11. 23, 43, 45, 50 , 51 ,55 , 56 , 60, 61,66, 71,103, 121,123-128, 138, 153 - 155 , 158 , 162-1 65, 168-170,210, 264, 269, 272, 2 75, 2S8...

Ngày tải lên: 14/08/2014, 18:20