作者查詢 / bitlife

總覽項目：發文 | 留言 | 暱稱

作者 bitlife 在 PTT [ Web_Design ] 看板的留言(推文), 共22則

限定看板：Web_Design

看板排序：

全部Stock42792ForeignEX9198car7535Gossiping4158biker3711KoreaDrama3487Linux3392home-sale2901MobileComm2240creditcard1967Buddhism1501Bank_Service1160Android894PC_Shopping850Storage_Zone599Physics563toberich488Learn_Buddha404TY_Research373PingTung352java331Tech_Job302Google273MobilePay64Math63HatePolitics61soho49CodeJob43Option42ChineseMed39CHU-GO35Fund35Military34joke33PublicIssue32money28NCU97ME-B23LaTeX22Lifeismoney22Taoism22W-Philosophy22Web_Design22goodclass10321movie21Taitung21CFantasy20IA19MenTalk19PttLifeLaw19politics18WomenTalk18Emergency14Soft_Job13Electronics12media-chaos12SYSOP12Aviation11Civil11Road11Windows11Bus10AndroidDev9NetSecurity9Kaohsiung8music8WorkinChina8medache7Militarylife7nCoV20197ArakawaCow6Finance6Foreign_Inv6medstudent6mobilesales6watch6ask-why5Chemistry5FiremanLife5paranormal5Perfume_Shop5SW_Job5TaichungBun5KOTDFansClub4KS94-3214L_LifeInfo4L_TalkandCha4LCD4PCSH91_3054PuzzleDragon4Salary4SuperHeroes4talk4e-seller3EarthScience3Juventus3Keelung3NTUCivilism3SAN3sex3share3specialman3Tea3Violation3WindowsPhone3YOLO3Ancient2Beauty2Broker2Coffee2Daan2DC2Eng-Class2FCU_EE00B2hardware2Law-Service2LordsOfWater2love-vegetal2MoveHouse2Navy2NBAEasyChat2NDHU-LS-SB2Paradox2Shu-Lin2ShuangHe2SongShan2soul2study2SuperBike2teeth_salon2TigerBlue2Warfare2Weyslii2X-files2Aves1C_Chat1CarShop1Christianity1CrossStrait1Disney1GO1Gov_owned1I-Lan1kochikame1KS91-3051KS91-3191KS98-3021Master_D1MeatFamily1Miaoli1MIS_Gbasket1NCKU_MEPhC1NTU1NTU-Pingtung1NTUBW1NTUmed001NUK-APIBM1001PTGSH96-3161SENIORHIGH1Sunrise1TeresaTeng1TORIKO1Transfer1TransPhys1tzuchi1vitalitydiet1youth_ddm1Zombie1<< 收起看板(167)

首頁

尾頁

Fw: [問題] 網站被當Dos攻擊的跳台

[ Web_Design ]71 留言, 推噓總分: +2

作者: dlikeayu - 發表於 2014/06/01 02:17(11年前)

5^F→bitlife:通常hacker只有植入木馬那次才需要入侵系統,植好木馬你每05/31 19:01

6^F→bitlife:次重開機都會幫他跑攻擊服務.若確定被入侵,從源頭重灌有時05/31 19:02

7^F→bitlife:是必要的.全系統備份可能都帶有木馬.你目前的狀況是無法確05/31 19:03

8^F→bitlife:認(都是別人告知),既然頻率很高,守株查兔定時檢查系統是否05/31 19:04

9^F→bitlife:有不明對外站連線(最好就是被告知DOS的攻擊對象)05/31 19:05

10^F→bitlife:植入木馬不一定走ssh,只要任何一個對外有開port接受連入的05/31 23:03

11^F→bitlife:service有漏洞能讓遠端執行指令就是入侵的門戶,這個只能檢05/31 23:05

12^F→bitlife:查你用的service有沒有vulnerability沒有更新或修正的05/31 23:06

13^F→bitlife:例如:http://nginx.org/en/security_advisories.html05/31 23:07

14^F→bitlife:我剛看了一下第一個vulnerability,時間很新,程度是嚴重等05/31 23:12

15^F→bitlife:級,又是惡名昭彰的buffer over/underflow 來做到入侵者設05/31 23:13

16^F→bitlife:計的code execution,這是很可能的入侵管道,如果你沒修這個05/31 23:14

17^F→bitlife:新出沒多久的漏洞,那就趕快修一下,其它的major一定要修,後05/31 23:15

18^F→bitlife:面的如果advisory裏有提到code execution的也都要修.然後05/31 23:15

19^F→bitlife:每個有對外服務的service (如ssh)或plug-in(如php等)都要05/31 23:16

20^F→bitlife:類似處理05/31 23:16

21^F→bitlife:另外就是最近很紅的heartbleed,看看你的版本有沒有中標?05/31 23:17

22^F→bitlife:從上述漏洞入侵的,log一定沒東西,log就像大門的攝影機,但05/31 23:20

23^F→bitlife:小偷是挖密道進來的05/31 23:20

24^F→bitlife:忘了講如果你的系統沒有隨時接收distribution的安全性更新05/31 23:31

25^F→bitlife:(一般production server不會隨便更新,所以很可能沒有),更05/31 23:31

26^F→bitlife:要優先考慮各項service的vulnerabilities05/31 23:31

首頁

尾頁