Ngokufana ne- packet sniffing , ukuskena kwe-port , kanye nezinye "amathuluzi okuphepha", ukuskena kokusengozini kungakusiza ukuba uvikele inethiwekhi yakho noma ingasetshenziswa abantu ababi ukukhomba ubuthakathaka esistimu yakho ukukhuphula ukuhlaselwa. Umqondo wukuthi usebenzise la mathuluzi ukukhomba nokulungisa lokhu buthakathaka ngaphambi kokuba abantu ababi basebenzise ngokumelene nawe.
Umgomo wokusebenzisa isithwebuli sengozi ukukhomba amadivaysi enethiwekhi yakho evulekile ekukhusheni okuwaziwayo. Ama-scanners ahlukene afeza lo mgomo ngezindlela ezahlukene. Abanye basebenza kangcono kunabanye.
Abanye bangase babheke izibonakaliso ezifana nokubhalisa okufakiwe kwi-Microsoft Windows yokusebenza izinhlelo ukuthola ukuthi isiqephu esithile noma isibuyekezo siqalisiwe. Abanye, ikakhulukazi, i- Nessus , empeleni bazama ukuxhaphaza ukubhekelwa kwikhompyutha ngayinye kunokuba bathembele kolwazi lokubhalisa.
U-Kevin Novak wenze ukubuyekezwa kokusakazwa kwezebhizinisi kwe-Network Computing Magazine ngoJuni ka-2003. Ngenkathi omunye wemikhiqizo, i-Tenable Lightning, ibukezwe njenge-front-end ye-Nessus, i-Nessus ngokwalo ayizange ihlolwe ngokuqondile nemikhiqizo yezohwebo. Chofoza lapha ukuze uthole imininingwane ephelele nemiphumela yokubuyekezwa: I-VA Scanners Khomba Izindawo Zakho Ezibuthakathaka.
Inkinga eyodwa nabanqamuleli bokungcupheni yithonya labo emadivaysi abathwebulayo. Ngakolunye uhlangothi, ufuna ukuskena ukwazi ukwenza ngemuva ngaphandle kokuphazamisa idivayisi. Ngakolunye uhlangothi, ufuna ukuqinisekisa ukuthi ukuskena kuphelele. Ngokuvamile, ngenhloso yokwenza kahle futhi kuncike ekutheni i-scanner iqoqa ulwazi lwayo noma iqinisekisa ukuthi idivaysi isengozini, ukuskena kungabangela intando futhi kubangele imiphumela emibi ngisho nokuphazamiseka kwesistimu kudivayisi.
Kunamaphakheji amaningi wokulingana okuthengiswa kakhulu okuhweba kwezohwebo okubandakanya Foundstone Professional, eEye Retina, nase-SAINT. Le mikhiqizo iphinde ithwale ithegi ephakeme kakhulu. Kulula ukulinganisa izindleko ezinikezwa ukuphepha kwenethiwekhi eyengeziwe futhi ukuthula kwengqondo, kodwa izinkampani eziningi azikho nje uhlobo lwebhajethi oludingekayo kule mikhiqizo.
Ngenkathi kungesona isithwebuli sangempela, izinkampani ezithembele ngokuyinhloko kumikhiqizo ye-Microsoft Windows zingasebenzisa i- Microsoft Baseline Security Analyzer (MBSA) ngokukhululekile. I-MBSA izoskena isistimu yakho iphinde ibone ukuthi ikhona yini ama-patches alahlekile ngemikhiqizo efana nezinhlelo zokusebenza ze-Windows, i-Internet Information Server (IIS), i-SQL Server, Exchange Server, i-Internet Explorer, i-Windows Media Player kanye nemikhiqizo ye-Microsoft Office. Kuye kwaba nezinkinga ezithile esikhathini esidlule futhi kukhona amaphutha ngezikhathi ezithile nemiphumela ye-MBSA - kodwa ithuluzi likhululekile futhi ngokuvamile liwusizo ekuqinisekiseni ukuthi le mikhiqizo nezinhlelo zilandelwa ngokubhekene nokukhubazeka okuwaziwayo. I-MBSA izophinde ikubone futhi ikuqaphele ukuthi ilahlekile noma amaphasiwedi athakathaka kanye nezinye izinkinga zokuphepha ezivamile.
I-Nessus ngumkhiqizo ovulekile futhi iyatholakala ngokukhululekile. Ngenkathi kukhona i-frontal endala ye-Windows etholakalayo, umkhiqizo omkhulu we-Nessus udinga ukuthi i-Linux / Unix isebenze. Okuphambene nalokhu ukuthi i-Linux ingatholakala mahhala futhi izinguqulo eziningi ze-Linux zinezidingo eziphansi kakhulu zesistimu ngakho ngeke kube nzima kakhulu ukuthatha i-PC endala bese uyibeka njengesiphakeli se-Linux. Kulaba abaqondisi abajwayele ukusebenza ku-Microsoft yezwe kuzoba khona ijika lokufunda ukuze lisetshenziselwe imihlangano ye-Linux bese uthola umkhiqizo we-Nessus efakiwe.
Ngemuva kokuthi wenze ukuskena kokuqala kokusengozini, kuzodingeka uqalise inqubo yokubhekana nokukhubazeka okubonakalayo. Ezimweni eziningi, kuzoba nezikhala noma izibuyekezo ezitholakalayo zokwelapha inkinga. Ngezinye izikhathi nakuba kungase kube nezizathu zokusebenza noma zebhizinisi ukuthi kungani ungeke usebenzise isiqephu kwimvelo yakho noma umthengisi womkhiqizo wakho kungenzeka ukuthi akakakhulumi isibuyekezo noma isiqeshana. Kulezo zimo, kuzodingeka ucabangele izindlela ezingezansi zokunciphisa usongo. Ungabhekisela emininingwaneni emithonjeni efana neSecunia noma i-Bugtraq noma i-US-CERT ukukhomba noma yiziphi izichweba ukuvimba noma amasevisi ukuvala okungase kukusize ekuvikelekeni okubonakalayo.
Ngaphezulu nangaphezulu ukwenza izibuyekezo ezivamile zesofthiwe ye-antivirus nokusebenzisa ama-patches adingekayo kunoma yikuphi ukukhubazeka okusha okubucayi, kuwukuhlakanipha ukusebenzisa isimiso sezinhlelo zokukhubazeka ngezikhathi ezithile ukuqinisekisa ukuthi akukho lutho olulahlekile. Ukukhishwa kwengozi yokuphela kwezinyanga ezintathu noma kwezinyanga kungadlula isikhathi eside ukuqinisekisa ukuthi ubamba ubuthakathaka enkundleni yakho ngaphambi kokuba abantu ababi benze.
Ihlelwe ngu-Andy O'Donnell - Meyi 2017