Blog

23 Mar 2017

Imibuzo Yokuxoxisana - Izimpendulo Zabaqeqeshi be-Cyber-Security

/
Posted By

Izinto ezintsha zithuthuka masinyane, futhi izingozi zokuphepha kwi-intanethi zivuleka ukuze zibe nzima kakhulu ukubona. Ukuze ama-aggregates anamuhla asebenze, indlela yokujwayelekile yokuxazulula izingozi ayisoze yaphoqelela. Ngenxa yalokho, ochwepheshe bezokuphepha kwe-cyber bancike ekuthuthukiseni amakhono abo ngokuzenzakalelayo njengoba isimo sezokuphepha sishintsha. Banikeza ukwelulekwa nokusekelwa okukhethekile ukusiza amakhasimende ukuba athuthukise umsebenzi wabo wezokuphepha nezingozi. Nazi imibuzo embalwa kubo:

Imibuzo yokuphendula imibuzo ye-20 nezimpendulo ze-Cyber-Security Professionals

Yini onayo ohlelweni lwakho lwekhaya?

I-PC ephathekayo ye-Windows enokushintshashintsha okungaxhunyiwe kude, ucingo ngangokunokwenzeka kuze kube yizikhungo zokusebenza zakwa-14 Linux, i-Active Directory Domain Controller, i-Firewall apparatus kanye ne-toaster ehlanganiswe net.

Iyiphi iphrojekthi ohlangene nawe ongathi uyathokoza kakhulu?

Kungakhathaliseki ukuthi iphrojekthi yakho ingumuntu owodwa njengesikhangiso sokuqala uma ulungisa i-console ye-amusements noma uhlanganise i-PC yakho yokuqala noma ebaluleke njengokuqamba uhlelo, injongo yalo mbuzo ukukhombisa intshiseko yakho. Lokhu kwakufundiswe phakathi kokuphepha kwe-cyber okulungiselelwe.

Kuyini "umjovo we-SQL"?

Kungenye yezindlela zokuhlaselwa ezivamile ezisetshenziswe ngabahleli ukuthola idatha eyisisekelo. Abahleli bahlola noma yikuphi ukuvulwa kwe-loop esakhiweni abangayidlulisela ngayo imibuzo ye-SQL, ehlukana nokuhlola kokuphepha futhi ibuyise idatha eyisisekelo.

Kuyini uxhumano lwe-SSL neseshini ye-SSL?

Ukuxhumeka kwe-SSL yisixhumanisi esibonakalayo esinezincwadi zokuhambisa lapho uxhumano ngalunye luhlobene khona ne-SSL Session eyodwa. Lesi sigaba singabonakala njengobudlelwane phakathi kwamakhasimende nesiphakeli, ngokukhululekile okukhishwe ngokubamba ngesandla.

Ziyini izindlela ezintathu zokuqinisekisa indoda?

Okuthile abanakho (isibonakaliso), Okuthile abakwaziyo (ukhiye wangasese) nokunye okuyikho (i-biometrics). Lokhu kuqinisekisa isikhathi esithile sisebenzisa igama eliyimfihlo nokusetha ithokheni, naphezu kokuthi ngezinye izikhathi kungaba iPIN kanye nesithupha.

Izinqubo ezehlukene ekuvivinyweni kokuphepha?

I-White Box-Yonke idatha inikezwa kubahlaziyi, ibhokisi elimnyama-Ayikho idatha enikelwa abahlaziyi futhi bangakwazi ukuhlola uhlelo esimweni esiqinisekisiwe, ibhokisi elimhlophe-idatha ehlukile inebahlaziyi kanye nokuphumula okudingayo ukubeka bonke.

Iyiphi insizakalo ye-web server?

Ukukhubazeka okuvamile ukuthi iseva yewebhu ingaxhaphaza yilokhu: Ukuguqulwa kwamagama, izilungiselelo ezizenzakalelayo, ama-Bugs ohlelweni lokusebenza kanye namaseva wewebhu.

Iyini i-Traceroute noma i-tracert?

Ivumela ukuthi uhlole ukuthi ukuphazamiseka okuxhunyiwe kwenzeke ngokukubonisa ulayini olulungile lokuxhuma kusuka ekushintsheni ukuze ushintshele ekugcineni.

Ukuphepha kweseva ye-Linux: Izigaba ezintathu zokuvikela zonke izinhlelo

Izigaba ezintathu zokuvikela zonke izinhlelo: Ukucwaninga, Ukuzikhandla, Ukuthobela.

Kuyini salting futhi yini esetshenziselwa?

Umbuzo wakho ukhuluma ngegama eliyimfihlo salting kodwa lizama ukukubamba ngokusebenzisa ingxenye enkulu yesikhathi. Kuyindlela eqinisekisiwe yokubethela kwamaphasiwedi futhi kuyodingeka ukuthi ufunde futhi uyithole isikhathi.

Ingxenye esetshenzisiwe njengengxenye ye-SSL?

I-SSL isetshenziselwa ukuxhumana okuphephile phakathi kwama-PC namakhasimende. Ukuthatha emva kwesigaba esisetshenzisiwe njengengxenye ye-SSL: Ukubamba ngesandla ngesandla, Ukubala kokubethela, i-SSL protocol eqoshiwe, i-Change Cipher Spec.

Kuyini ukuphazamiseka kwe-WEP?

Ukuphahlazeka kwe-WEP kuyindlela yokusebenzisa ukukhubazeka kokuvikeleka kumasistimu akude futhi ukwandise ukungena okungavunyelwe.

Amapharamitha afaka isimo seseshini ye-SSL?

Imingcele ekhombisa isimo seseshini ye-SSL yilezi: Isihlonzi seSession, Isu lokucindezela, Ukuqinisekiswa koontanga, Imfihlakalo ye-Master, i-Cipher spec.

Ungakuvikela kanjani ikhaya lakho le-Wireless Access Point yakho?

Kukhona izindlela zokubhekana nokuvikeleka kwe-Wireless Access Point: ukusakaza i-SSID, ukusebenzisa i-WPA2 nokusebenzisa ukuhlunga ikheli le-MAC yizona eziyinhloko phakathi kwazo.

Yiziphi izici zokuhlolwa kokuphepha?

Kulandela izici eziyisikhombisa zokuhlolwa kwezokuphepha: Ukuqinisekisa, Ukugcinwa Kwamfihlo, Ukugunyazwa, Ubuqotho, Ukutholakala, Okungekho Disavowal, Ukuvuselela.

Kuyini ukuskena kwe-port?

Amachweba ayiyona iphuzu lapho idatha ihamba khona kunoma yisiphi isistimu. Ukuskena kwamapayipi ukuthola noma yikuphi ukuvuleka kwe-loop ohlelweni kuthiwa yi-Port Scanning.

Kuyini ukuphinga?

Isistimu esetshenziselwa ukukhohlisa abantu ngemininingwane ngokulingisa othembekile kwisayithi elihle njengo-Facebook noma i-Hotmail, ukudweba iklayenti ukungenisa irekhodi labo kanye nedatha yokukhiya eyimfihlo. Ochwepheshe bafundiswa ukuthi bangenza kanjani amakhasimende aqaphele lokhu phakathi kwesigaba sokufundisa ngezokuphepha kwe-cyber.

Isistimu Yokuthola Inethiwekhi Yokungena Kwe-Intrusion (NDIS)?

Isetshenziselwa ukuqedela ukuhlolwa komsebenzi odlulayo kwi-sub-net futhi ngokungeziwe ukuwufanisa nokuhlaselwa okuwaziwayo. Uma kwenzeka ukuthi noma yikuphi igebe loop eqaphela khona umqondisi uthola isixwayiso.

Izinhlelo ezisetshenziselwa ukulindela ukuhlasela kwe-web server?

Ukulungiswa kokuPhatha, ukufakwa okuphephile nokucushwa kwesofthiwe ye-web server, ukukhishwa kwe-akhawunti engasetshenzisiwe nokuzenzakalelayo, inhlangano edelekile yokukhubazeka, njalonjalo.

Kuyini i-HIDS?

Uhlelo lwe-HIDS noma le-Host Intrusion Detection System olulodwa lapho ukubonakaliswa kwesistimu yamanje kuthathwa futhi kuyinkimbinkimbi ekuqalisweni kwangaphambili. Ihlola uma amadokhumenti ayisisekelo ashintshiwe noma asuliwe bese i-alamu ithunyelwa kumlawuli.

shiya impendulo

 
GTranslate Please upgrade your plan for SSL support!
GTranslate Your license is inactive or expired, please subscribe again!