Detecting Intruders on Your System Is Fun and Easy

Discussion in 'Computer Information' started by, Dec 11, 2007.

  1. Guest

    Detecting Intruders on Your System Is Fun and Easy

    Well, perhaps the title of this chapter is a slightly misleading.
    Supposedly, becoming an intruder is fun and easy, too. If you want to
    detect intruders, you should know what type of system resources can be
    depended on for providing evidence. Should you want to become an
    intruder, you ought to know how commercial IDSs look for traces of
    your activity.

    Scanners are designed to take a look at your system and to let you
    know whether you have configuration problems or holes that can be used
    for attacks. If your system was previously set up in a secure fashion,
    and an intruder has altered this configuration, a scanner will detect
    this change (when you run the scan) and notify you of the problem.

    System-level intrusion detection tools differ from scanners in a
    couple of ways. If the IDS runs in real time, it can let you know the
    instant a compromise has occurred. Also, if the monitor gathers its
    data by reading an activity stream on the system, it can detect a
    range of features that a single scanner cannot. For example, scanners
    will not tell you that someone just entered three bad passwords and
    exceeded the failed login threshold.

    By the time you finish this chapter, you will understand the

    * How to classify attacks according to how they originate and the
    threat they pose
    * The pros and cons of different data sources that a system monitor
    can use for decisions
    * What system monitors can and cannot detect
    * The tradeoffs you may need to make for monitoring your systems in
    real time
    * What it takes to really track someone through a network
    As you will soon see, you need to consider a number of issues when
    trying to build a system-level IDS.

    You can see the complate articles at
    , Dec 11, 2007
    1. Advertisements

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Replies:
  2. Luke

    Fun fun fun

    Luke, Oct 7, 2003, in forum: Computer Support
    Petit Alexi
    Oct 7, 2003
  3. Careers
    Feb 3, 2004
  4. Replies:
  5. DigitalScrapBookMaker

    Get Your own Holidays Party Fun from Laptop the easy Unique way?

    DigitalScrapBookMaker, Dec 22, 2008, in forum: Digital Photography
    Dec 22, 2008