資源描述:
《admin security hacking hacking for dummies access to other peoples systems made simple外語英文電子書》由會(huì)員上傳分享,免費(fèi)在線閱讀����,更多相關(guān)內(nèi)容在教育資源-天天文庫�����。
1��、HackingforDummies(Accesstootherpeoplessystemsmadesimple–&someextradatabaselore).IntroductionTheauthorisnotresponsibleforanyabuseofthisinformation.Itisintendedforeducationaluseonly.Youmaybequiteshockedathowvulnerableyouare!AsanafterthoughtIaddedasectionondatabaseaccessdu
2���、etoanumberofrequests.ThemajorityofsuccessfulattacksoncomputersystemsviatheInternetcanbetracedtoexploitationofsecurityflawsinsoftwareandoperatingsystems.Thesefewsoftwarevulnerabilitiesaccountforthemajorityofsuccessfulattacks,simplybecauseattackersareopportunistic–takingt
3����、heeasiestandmostconvenientroute.Theyexploitthebest-knownflawswiththemosteffectiveandwidelyavailableattacktools.Mostsoftware,includingoperatingsystemsandapplications,comeswithinstallationscriptsorinstallationprograms.Thegoaloftheseinstallationprogramsistogetthesystemsins
4��、talledasquicklyaspossible,withthemostusefulfunctionsenabled,withtheleastamountofworkbeingperformedbytheadministrator.Toaccomplishthisgoal,thescriptstypicallyinstallmorecomponentsthanmostusersneed.Thevendorphilosophyisthatitisbettertoenablefunctionsthatarenotneeded,thant
5���、omaketheuserinstalladditionalfunctionswhentheyareneeded.Thisapproach,althoughconvenientfortheuser,createsmanyofthemostdangeroussecurityvulnerabilitiesbecauseusersdonotactivelymaintainandpatchsoftwarecomponentstheydon’tuse.Furthermore,manyusersfailtorealizewhatisactually
6����、installed,leavingdangeroussamplesonasystemsimplybecauseusersdonotknowtheyarethere.Thoseunpatchedservicesprovidepathsforattackerstotakeovercomputers.Foroperatingsystems,defaultinstallationsnearlyalwaysincludeextraneousservicesandcorrespondingopenports.Attackersbreakintos
7�、ystemsviatheseports.Inmostcasesthefewerportsyouhaveopen,thefeweravenuesanattackercanusetocompromiseyournetwork.Forapplications,defaultinstallationsusuallyincludeunneededsampleprogramsorscripts.Oneofthemostseriousvulnerabilitieswithwebserversissamplescripts;attackersuset
8、hesescriptstocompromisethesystemorgaininformationaboutit.Inmostcases,thesystemadministratorwhosesystemiscompro
