" id="b1img" alt="米课”N+1“思维建站-非官方免费技术支持,Wordpress/Zencart/Opencart建站、SEO" title="米课”N+1“思维建站-非官方免费技术支持,Wordpress/Zencart/Opencart建站、SEO">
  • " alt="米课”N+1“思维建站-非官方免费技术支持,Wordpress/Zencart/Opencart建站、SEO" title="米课”N+1“思维建站-非官方免费技术支持,Wordpress/Zencart/Opencart建站、SEO" />
  • " alt="Windows/Linux服务器运维技术支持 环境搭建、应用发布、服务器管理、虚拟化、云计算" title="Windows/Linux服务器运维技术支持 环境搭建、应用发布、服务器管理、虚拟化、云计算" />
  • " alt="高校/小型企业网络运维与建设免费技术支持,网络规划、网络优化、故障排除、网络管理" title="高校/小型企业网络运维与建设免费技术支持,网络规划、网络优化、故障排除、网络管理" />

Security Fundamentals

网络运维2005-04-11 itlogger阅读(2,515) 评论(2)

1、Threat Capabilities – More dangerous and easier to use
–password guessing –> self-replicating code –> password cracking
–expoiting known vulnerablities –> Back door –> scanners –>stealth diagnostics –>
packet forging/spoofing
–disabling audits –> hijacking sessions –>sniffers

2、Netowrk security is a continuous Process build around a security policy

Step1: Secure
—> Methods
— Authentication
— Encryption
— Firewalls
— Vulnerability patching

Step2: Monitor
— Vulnerablity scanners
— IDSs
Step3: Test
Step4: Improve

3、Network Security Policy
–” A formal statement of the rules by which people who are given access to
an organization’s technology and information assets must abide.”

4、What should the security policy contain?
— Statemnet of authority and scope ‘申明权利范围
— Acceptable use policy
— Identification and authentication policy
— Internet use policy
— Campus access policy
— Remote access policy
— Incident handling procedure

5、Netowrk Security Threats
— unstructured threats/structured threats/internal threats/external threats

6、 Four Primary Attack Categories
–Reconnaissance attacks/Access attacks/Denial of service attacks
/Worms,viruses,Trojan horses …

转载请注明 :IT樵客

2 thoughts on “Security Fundamentals

  1. 19461122 回复@


  2. 去吧旅游 回复@



电子邮件地址不会被公开。 必填项已用*标注