隱藏服務資訊、防止資訊洩漏
你有過被掃描工具塞好塞滿塞爆 Log 的經驗嗎?
你有過配置訊息被摸的一清二楚的尷尬窘境嗎?
無論是身為網管的你、伺服器維運者的你或是公司裡 the one and only 懂電腦的你,都必須懂得保護自己
Ref: https://svn.nmap.org/nmap/nmap-os-db
25. 駭客到底想獲得甚麼資訊?
● NUMBER OF SYSTEMS
– ARP SWEEP SCAN / ICMP ECHO
● TYPES (OS) OF SYSTEMS
– OS DETECTION SCANS
● OPEN PORTS
– TCP SYN / CONN (ETC...) SCANS
● NETWORK TOPOLOGY
– TRACEROUTE
● RUNNING SERVICES
– SERVICE DETECTION SCANS
28. 越少資訊
越難針對
(OS)
• TCP INITIAL SEQUENCE NUMBER (ISN)
• TCP INITIAL WINDOW SIZE
• TCP OPTIONS (THEIR TYPES, VALUES AND ORDER IN
THE PACKET)
• IP ID NUMBERS
• ANSWERS TO SOME PATHOLOGICAL TCP PACKETS
• ANSWERS TO SOME UDP PACKETS