protection and information security

8/14/2019 Protection and Information Security

1/22

..

. ,,

.

.

|

.

162009


2/22

7rs Group| 4Best Security |

2

www.7rs.cc [email protected]

..

, ,

global vision,

globally

locally

, "

".

, ,

,

, !

,

" "", " .

,

.

, ""

, ""

" ",

"

"

,

.

:

"""information security "

"information systems"

" "

"information hacking" :

,.


3/22


3


.

,

,

,

,

"" .

:

.

,

,

, .

. 90%

.

,

.


4/22


4


3:

1- rules/permission

-2users/ownerships

3- Firewalls

-4Security bugs

.

LinuxUnix

,

,

:rules/permission :

sharing,

,

.

/

: ,

.

:

,

.

:

.


5/22


5


Linux/Unix:

chmod

chmod [permission] [file/folder name]

permission ,

:

: /

, r,w

x, .

a,g ,u o

(-nobody)

file.exe

:

chmod a+rx file.exe

: /

,

4, 2

1

(,,) ,:

" " , , -

nobody

:

Chmod 555 file.exe

:

Chmod 151 file.exe

..

: users/ownerships:

.


6/22


6


:

/

.

.

chown:

Chown [-R] [:Group ID/Name] [target]

,

/Employers

chown

:

Chown R :Department /Employers

Employers

R

chmod :

Chmod 400 /Employers

/

,

, .

,

(

).

chown

:

Chown R [user ID/Name] [target]


7/22


7


,

/Employers,

:

Chown R 500:Department /Employers

Chmod 460 /Employers

nobody

:

Chown nobody /tmp

/tmp:

Chmod 774 /tmp

: Firewalls:

.

,

.

""

Linux

htpasswd.

htpasswd." "

""

.


8/22


8


:htpasswd

1- http://www.clockwatchers.com/htaccess_tool.html

2- 1. .htaccess Tool

Password

Protection, create it

htaccess

3- 2. .htpasswd Tool username

password , ,

create it DES

htpasswd

-4

.

: ecurity bugs:

.

,

www.securityfocus.com

,

"Vulnerability".

.Error Exception

,

,

.
http://www.clockwatchers.com/htaccess_tool.htmlhttp://www.securityfocus.com/http://www.securityfocus.com/http://www.clockwatchers.com/htaccess_tool.html


9/22


9


. Input validation errors

"" .

o :

Command Injection (1

2) Path Traversal

: ommand Injection:

"GET , POST"

.

:

:SQL Injection -1

SQL

, .

:

,

illegal input.

,

integer,

string.


10/22


10


: :

,

php:

1

5 Article's List

7

11

12


11/22


11


17

URL

SQL.

and 1=0

http://site.com/file.php?id=1 and 1=0

$_GET[id]

:

select id,title,content from articles where id=1 and 1=0

and 1=0false

$_GET[id]

.

intval()

Integer ,

11abcd

11,

3.5

3,..

,

,

17 :

$id=intval($_GET[id]);

17:

$res=mysql_query("select id,title,content from articles where id=".$id);

.


12/22


12


:

,

:

1


13/22


13


1615

.

, 'or '1'='1

:

select * from login where adm_uname='' or '1' = '1' and adm_upass='' or '1' = '1 '

, 18

! ,

',

,\

\'.

mysql_escape_string,

quotes,

.

10

:

$name= mysql_escape_string ($_POST['username']);

$pass= mysql_escape_string ($_POST['password']);

:

select * from login

where adm_uname='\' or \'1\' = \'1' and adm_upass='\' or \'1\' = \'1 '

: .


14/22


14


:(Cross-Site-Scripting (Xss -2

.

:

Your search for 'securtiy news' returned the following results:

:

Your search for ' write("form.field.value");' returned the following

results:

: ,

") alert('XSS')

:

Your search for ' write("") alert('XSS')


15/22


15


:

HTML Entities

Character Encoding

< < or > or >

& & or &

" " or "

' ' or '

( (

) )

# #

% %

; ;

+ +

- -

php

.

.()htmlentities

:

write("htmlentities(") alert('hello admin !')


16/22


16


: .. .

!

javascript

, replace

javascript:

1

2 function killXSS() {3

4 var text = document.getElementById('secure').innerHTML;

5 text = text.replace(/\n/m,"
");

6 text = text.replace(/\r/m,"
");

7 text = text.replace(/\


17/22


17


:

!

:ath Traversal

,

.

:

/etc/passwd,

..Brute Force.

/etc/shadow,

DES,

.

.htpasswd,

,

DES.

.

:

:

http://site.com/files.php?get=ebook.pdf

include()php

.


18/22


18


:

1

pdfiles

$pdfiles

:http://site.com/files.php?pdfile_include=security.pdf

,

, ../

index.php

:

/home/users/public_html/index.php

:

http://site.com/files.php?pdfile_include =../index.php

pdfile_includeinclude()

:

/home/users/public_html/pdfiles/../index.php

:

home/users/public_html/index.php

.


19/22


19


:

http://site.com/files.php?pdfile_include=../../../../etc/passwd

..

Local File Include

Remote File Include.

,

.

?

%00" Null".

:

1

.


20/22


20


:

:

. Global variable -1

2- ../ .

.

file_1.pdf , file_2.pdf

,

pdf_file

, ,

Intval()

.

:

1


21/22


21


.

1) ( sharing,

ftp), (

.(

. (2

3) internet security

anti-virus

,

.

4)

.

(5

,

.

6)

.

(7

.

8) Social Engineering

,

,

, .


22/22


References:http://en.wikipedia.org universal encyclopedia

http://www.owasp.org open community for webapp security

http://sla.ckers.org Security Forum

http://www.acunetix.com/websitesecurityspecialist of security issues
http://en.wikipedia.org/http://en.wikipedia.org/http://www.owasp.org/http://www.owasp.org/http://sla.ckers.org/http://sla.ckers.org/http://www.acunetix.com/websitesecurityhttp://www.acunetix.com/websitesecurityhttp://www.acunetix.com/websitesecurityhttp://sla.ckers.org/http://www.owasp.org/http://en.wikipedia.org/

protection and information security

Documents