Kufanele Uhlele Okuphambili Ukuze Uthole I-Intruder
Ngethemba ukuthi ugcina amakhompiyutha akho afakwa futhi avuselelwe futhi inethiwekhi yakho iphephile. Kodwa-ke, kungenakugwemeka ukuthi esikhathini esizayo uzothola umsebenzi ononya- igciwane , imbungu , ihhashi leTrojan, ukuhlasela kwe- Trojan noma okunye. Uma lokho kwenzeka, uma wenze izinto ezifanele ngaphambi kokuhlaselwa uzokwenza umsebenzi wokunquma ukuthi ukuhlasela kuphumelele nini futhi kube lula kangakanani.
Uma ubuke ubukele i-TV ye- CSI , noma cishe noma yikuphi amanye amaphoyisa noma umbukiso we-TV wezomthetho, uyazi ukuthi ngisho nangokwehluleka okukhulu kobufakazi bombuso abaphenyi bangakwazi ukubona, ukulandelela nokubamba umenzi wobugebengu.
Kodwa, bekungeke yini kube kuhle uma kungadingeki ukuthi bahlume ngezintambo ukuze bathole izinwele ezithintekayo futhi zenze ukuhlola kwe-DNA ukukhomba umnikazi wayo? Kuthiwani uma kube khona irekhodi eligcinwe kumuntu ngamunye oxhumana naye futhi nini? Kuthiwani uma kukhona irekhodi eligcinwe kulokho okwenziwe kumuntu?
Uma kunjalo, abaphenyi abanjengobo abase- CSI bangase bangabhizinisi . Amaphoyisa athola isidumbu, hlola irekhodi ukuze abone ukuthi ngubani owagcina exhumana nomuntu oshonile nokuthi kwenzekani futhi bebevele bebazisi ngaphandle kokumba. Lokhu yilokho ukungena ngemvume kuhlinzekela ngokwemibandela yokunikeza ubufakazi bombuso we-forensic uma kunomsebenzi ononya kukhompyutha yakho noma kwinethiwekhi.
Uma umlawuli wenethiwekhi engavali ukugoqa noma engangeni ngemvume izenzakalo ezifanele, ukumba ubufakazi obunikazi bokukhomba ukuthi isikhathi nosuku noma indlela yokufinyelela okungagunyaziwe noma enye imisebenzi enobungozi ingaba nzima njengokubheka inaliti yesaga i-haystack. Ngokuvamile imbangela yokuhlasela ayitholakali. Imishini ekhohlisiwe noma egciniwe ihlanzwa futhi wonke umuntu abuyele ebhizinisini njengenjwayelo ngaphandle kokwazi ukuthi amasistimu avikelwe yini kangcono kunabo lapho befika kuqala.
Ezinye izinhlelo zilobe izinto ngokuzenzakalelayo. Amaseva ewebhu njenge-IIS ne-Apache ngokuvamile abhalisa yonke imoto engenayo. Lokhu kusetshenziselwa ukubona ukuthi bangaki abantu abavakashele lewebhusayithi, yiliphi ikheli le-IP abasebenzisa kanye nolunye ulwazi lwama-metrics oluphathelene nesayithi. Kodwa, uma kwenzeka izibungu ezinjengeCodeRed noma i-Nimda, izingodo zewebhu zingakubonisa futhi uma amasistimu anegciwane azama ukufinyelela ohlelweni lwakho ngoba enemiyalo ethile ayilinga ukuthi izovela emagodini ukuthi aphumelele noma cha.
Ezinye izinhlelo zinemisebenzi ehlukahlukene yokucwaninga nokungena ngemvume. Ungakwazi futhi ukufaka isofthiwe eyengeziwe yokuqapha nokwenza izenzo ezihlukahlukene kukhompyutheni (bheka Amathuluzi ebhokisini lokuxhumanisa ngakwesokudla salesi sihloko). Kumshini we-Windows XP Professional kukhona izinketho zokuhlola imicimbi ye-logon ye-akhawunti, ukuphathwa kwe-akhawunti, ukufinyelela kwensizakalo yomqondisi, imicimbi ye-logon, ukufinyelela kwezinto, ukuguqulwa kwenqubomgomo, ukusetshenziswa kwamalungelo, ukulandelela inqubo kanye nemicimbi yesistimu.
Kuzo zonke zazo ungakhetha ukubhala impumelelo, ukwehluleka noma lutho. Ukusebenzisa i-Windows XP Pro njengesibonelo, uma ungazange unike amandla noma yikuphi ukungena ngemvume kwenjongo yokufinyelela ngeke ube nerekhodi lapho ifayela noma ifolda ekugcineni ifinyeleleka khona. Uma unike amandla ukuhluleka kokungena ngemvume kuphela uzoba nokurekhoda uma othile ezama ukufinyelela ifayela noma ifolda kodwa wehlulekile ngenxa yokungabi nezimvume ezifanele noma ukugunyazwa, kodwa ngeke ube nerekhodi uma umsebenzisi ogunyaziwe afinyelele ifayela noma ifolda .
Ngoba i-hacker ingase isebenzise kahle igama lomsebenzisi nephasiwedi abangakwazi ukufinyelela amafayela ngempumelelo. Uma ubheka izingodo bese ubona ukuthi uBob Smith ususe isitatimende sezimali senkampani ngo-3: 00 ngeSonto kungase kuphephe ukucabanga ukuthi uBob Smith wayelele nokuthi mhlawumbe igama lakhe lomsebenzisi nephasiwedi kuye kwahlehliswa . Kunoma ikuphi, manje uyazi ukuthi kwenzekani efayeleni nokuthi nini futhi ikunikeza iphuzu lokuqala ukuthi uphenye kanjani ukuthi kwenzeke kanjani.
Kokubili ukuhluleka nokuphumelela kokungena ngemvume kunganikeza ulwazi oluwusizo kanye nezinkomba, kodwa kufanele ulinganise imisebenzi yakho yokuqapha kanye nokungena ngemvume ngokusebenza kwesistimu. Ukusebenzisa isibonelo sencwadi yomlando esivela ngenhla- kungasiza abaphenyi uma abantu begcina ilogi labo bonke abahlangana nabo nokuthi kwenzekani ngesikhathi sokuxhumana, kodwa ngokuqinisekile kuzobambezela abantu phansi.
Uma kwadingeka ume futhi ubhale phansi ukuthi ubani, nini futhi nini lapho uhlangana khona wonke usuku lonke kungathinta kakhulu umkhiqizo wakho. Okufanayo nokuqapha nokwenza umsebenzi wekhompyutha. Ungakwazi ukunika amandla ukukhetha ukuhluleka nokuphumelela kokungena ngemvume futhi uzoba nokurekhoda okuningiliziwe kukho konke okuqhubekayo kukhompyutha yakho. Kodwa-ke, uzomthelela kakhulu ukusebenza ngoba iphrosesa izoba matasa ukurekhoda okufakiwe okungu-100 emagodini njalo lapho umuntu ecindezela inkinobho noma echofoza imouse yakhe.
Kumele uhlole ukuthi yiziphi izinhlobo zokungena ngemvume ezizozuzisa ngomthelela ekusebenzeni kwesistimu futhi zifike ngesilinganiso esisebenza kahle kuwe. Kufanele futhi ukhumbule ukuthi amathuluzi amaningi we-hacker nezinhlelo zehhashi iTrojan ezifana ne- Sub7 zihlanganisa izinsizakalo ezivumela ukuba ziguqule amafayela we-log ukufihla izenzo zabo futhi zifihle ukungena ukuze ungathembeli ku-100% kumafayela we-log.
Ungazigwema ezinye zezindaba zokusebenza futhi mhlawumbe izinkinga zokufihla ithuluzi lokuqapha ngokucubungula izinto ezithile uma uhlela ukungena kwakho. Udinga ukukala ukuthi amafayela welogi azothola kangakanani futhi aqiniseke ukuthi unesikhala sediski esanele kuqala. Udinga ukusetha inqubomgomo yokuthi ngabe izingodo ezindala zizofakwa phansi noma zisuswe noma uma ufuna ukugcina ingosi yomlando ezinkathini zansuku zonke, ngeviki noma enye ukuze ube nedatha endala ukuze ubuke emuva futhi.
Uma kungenzeka ukusebenzisa i-hard drive yokuzinikela kanye / noma isilawuli se-hard drive uzoba nethonya elincane lokusebenza ngoba amafayela welogi angabhalwa kwi disk ngaphandle kokulwa nezicelo ozama ukugijima ukuze ufinyelele ku-drive. Uma ungakwazi ukuqondisa amafayela welogi kumakhompuyutha ahlukene - mhlawumbe anikezelwe ukugcina amafayela we-log kanye nezilungiselelo zokuphepha ezihlukene-ungase ukwazi ukuvimbela ikhono lomgibeli lokushintsha noma ukususa amafayela welogi.
Inothi lokugcina ukuthi akufanele ulinde kuze kube sekwephuzile futhi uhlelo lwakho seluvele luphazamisekile noma luyekethisiwe ngaphambi kokubuka izingodo. Kuhle kakhulu ukubuyekeza izingodo ngezikhathi ezithile ukuze ukwazi ukuthi yiyiphi evamile bese ubeka isisekelo. Ngaleyo ndlela, uma uhlangabezana nokufakela okungalungile ungawabona njengalokhu futhi uthathe izinyathelo ezisebenzayo ukuze unzima kanzima uhlelo lwakho kunokuba uphenye uphenyo ngemuva kokuphuza kakhulu.