ʹ͢

šش ͧѧѡͺѭѺ͹حҵ кͧǨѺԡǹк ѷСͺáԨͧԴкͧѹ ѡͺҧӤѭѺѷ šԧҧԹ絹 ءء ǹ ѡͺ кͧԵШѹͧѧ ó˭ҧҪҧ͢

ҺҧѴԹ絷šӹǹ ͡ҡҴҳԹ 100 ҹ ҹŵ 10 ҹͧ§ѹѺʹ ѧͧӹǹҡԹ絹ǹ˹繹ѡҧѭǹҧк ѺѤʹءз֧дѺҪҪվ

ѪʹԹ

Թʹҡ§? ͹ͺҡ ͧҡͺͧԹ絤ͺӹǹҡ ҧкѡʹҧǴҪվҡءء ҧҨкͧѹ áѤҨҧҡ кǹ˭Թ絷˹ԡѡҹкԺѵٹԡ Ӥѭٹԡкʹ§

ٹԡкԺѵá͡š¹Ѿҡâҧ֧ͧͧʹͧ з͡ҤáԨ֧Ѻاҹѡʹ ٹԡкԺѵʹкԺѵ ͧҡҵͧкԺѵԴԴ͡ҧͧҧش͹ҹʹ

ҡմǧӡѴкԺѵٹԡ§ҧ¡Ԩó֧ٹԡԧ 硫 ͪ-硫 ԡ ŷԡ ѺٹԡҸó չء պʴ öػٹԡԧʹ٧ٹԡҸó ͧҡٻԡҧҡͧҾ֧ʹٹԡش͹ҡ Ѵѧѡʹк֧§մöͧкԺѵѧͧ ºѡʹ (Security Policy) ˹ͺҹҵԹѡʹк

ٻҧ

͡˹ҡͧͧͧͿԡкԷмдѺ٧ش áѡԸҧѭҡѺкٻҧ Ѵ͡ѧ

к (destructive method)

ԸͿǹҧҹ˹ѡк ҧشҹзöԡ Ը֧ءءԷк ҧѭкöԹ Ը
- Ҵ˭ӹǹҡ (mail bomb) ԴҹҧҡͧҹҨӹǹҴ˭ ١ҳҡѡشҹŧ ͧҡͧѾҡкѺ ԸͧѹԸ ԴӡѴҴѺԴͧ ǨѺӨѴѺ
- شͧẺ (Dos : Denial-of-Service) áԸԡ ͧͧѾҡкѵǴкշѾԡ Ըҧࡵŷӹǹҡ TCP SYN Flooding) ҧࡵҴ˭ѧԡ ping (¡ ping of death) ѭͧԴͿѹѾҡкԹ͡ҡѧѡɳѡá Teardrop,LAND, Winnuke

ٷ (brute-force attack)

ءءѧҧ Ҵѭҡҵҹҧҹѭѵѵ մԤѹҹѺҧҹçѺѭʷ¹͹Ѻ ҹ㹴Ԥѹ ѡáͧҡͧҹдǡԸǨͺѹͧҡҧкѹ֡ҹ

վ (passive attack)

áҨͧԸѧͧҧç ҡԴǨѺࡵ (packet sniffing) ˹ (ѡѹͧʹԿ) ԡѧ ѭҹ͹ҹ١ѹ֡ҹѧáͧҡѡԺѺ áöѡѺҹͧءҹккͧ¹ҹ áء ෤ԤͧʹԿͧ˹աдѺ˹ ǨʹԿ͹Ҩҡѡ áҭѡҧҡͧ¹ŧǨͺҹʹԿ͹ ԸͧѹʹԿաٻ˹ҹѺöԺ

ͧͧá

෤ԤкٹԡԸ ෤Ԥͧ з෤ԤѺ͹ ѧࡵǡá§Ըҹ öк

ءҧ

ҹӤѭٹԡҹ /etc/passwd ҹҹѺҺ֧Ѻ /etc/passwd Ѻ ҧçѺԴ͡ءԴҹ áҹҹ ҧѺҡԤѹк (ٹԡ /usr/dict ººѺ /etc/passwd
ҹ¹µѺҨ§ 60-70 ÷Ѵ աѧԹ crack (ftp://ftp.cert.opg/pub/tools/crack)
crack ҧشʧкҹԹ Դѵʧ ˹ҧͧѹǹ˹ءͧ¹ѡҹҴҡ
ٹԡк System V Ը¡ǹͧҹҧҡա˹͹حҵҹ Ը¡к "shadow password"

ʹԿ

ʹԿͧҧͧкǨѺࡵǨѭ кСͺö٧ͿǨѨغѹͿӹǹҡմöдѺǡѺʹԿ ҹͧ੾ աءкԺѵ ʹԿѨغѹ֧¡ͧ öǨѺ

êԹ

ԹáӡѴ§ѡԪ Һз͡šԴ͡ؤءдѺءҪվԷҪԡ˹ѧԹ ʹͧͧѴѧҡ ҹѡͺͧٹ˭ ֧ҧѺͧ෤ԤӺҡҺš

ѡ¡ǡöк" (Hacker) ԧ Ρ֧ҭҹк ö ѴŧҹдѺ֡ úʹ ΡҪվ˹˹кش͹˹ҧͧѹ ǹǡкʧ¡ "á" (Cracker) ǡѧ硷͹ԡѡͺǹҧҹҪվǧѺ ҧΡԴԴҡ

ѹ

ѹǧҹԴ˹ҹШ ҹԧѺѡѺá ҧѹǧ͡Թк ͹ѭҹͺҹá

е

á еѺ (backdoors) ԸкѺ͹حҵ ͧеѺҨ֧ԸѲԴҧǧ áǹ˭شͿҧкش͹Ըҧ

ͿǨǧк

ԹͿӹǹҡǨͧкѡҤʹͿԴ͹ҺͧΡáشʧҧѹ Ϳѡ Internet Security Scanner,SATAN COPS Tiger

ͧѹѧ

ѨغѹͿҡͧѡʹк ҧͿѡʹͧ ǹͿԴкѡʹѧҧк (Firewall) Ϳ˹͹ѺᾧѹءҡԴ
ͧ˹ҹ͡͹ѹ ͿкԴ˹ٻ͹حҵ
Թ˹ҹ CERT (Computer Emergency Response Team) ˹͹ "ǨԹ" ʹԹ絷š ҧ ˹ҹ CERT ӹҨѴѺá ҡ§˹͹ʹѭҹʹккöѹǧ CERT С͹ Comp.security.announce Ш

кͿ§ͧк ӤѭҧҹкͧʹͧͧѹͧͧҧҹͧáкͧԴԸͧѹشͧͧͿҹ ֧֡кʹҡá


¹ : ͧóҸԡ
˹ѧ ä Ѻ 165 ͹¹ 2542
Last update : 03/07/1999