Firewall logs can be said that a hodgepodge, which will save the system information received from a variety of unsafe time, type and so on. By analyzing these logs, you can have occurred or are being found in a system intrusion.

Wikipedia is well-known encyclopedia, which allows anyone to create and modify articles, a good open is its greatest feature, but this characteristic has often been abused.

With the B / S mode application development, the use of this mode of programmers to write applications more and more. However, as the industry's entry threshold is not high, the level and experience programmer mixed, a significant portion of programmers writing code when not on the user input data to judge the legitimacy to make application security weaknesses. Users can submit a database query code, according to the results of the program returns, access to the data as he would like to know, which is called SQL Injection, that is SQL injection.

March 17 message, the security researcher Elazar Broad to RealPlayer users warned of the release of patch fixes vulnerabilities found before, using IE browser, could face the risk that hackers could exploit the flaw to execute arbitrary user's computer code. Broad in the "Full Disclosure" (full disclosure) mailing list, news release, the stack overflow vulnerability could allow an attacker to release and cover some of the registered items amend the stack after block.

Last year, RSA Conference keynote speech, Microsoft Chairman Bill Gates and research and strategy officer Craig Mundie said that Microsoft in terms of strengthening the security to be strengthened. A year later, the situation remains unchanged.

First, application-layer attacks to challenge the traditional firewall

The last two years, significant interest in the attacker from port scanning and denial of service attacks Manufacturing (DoS Attack) turned against the Web, E-mail or database attacks and other mainstream applications. Traditional firewalls only check the IP packet header, and ignore the content - if the analogy to do with the letter, which is only checked the envelope and did not check stationery. Therefore, this type of application layer attacks on the helpless. Can be said that only through a third and the fourth floors of the IP address and protocol port filtering firewall products have already come to an end.

HP quality doors in the event of frequent media exposure, the State Administration of Quality Supervision involved in the investigation, finally in the recently issued a "care plan" the implementation details. However, the "Daily Economic News" reporter through a multi-day tracking survey interviews, found that HP's care of details and regulations alleged to have used three bags of walking a fine line, the specific details of implementation, there are some flaws. In addition, a further escalation of consumer activism.

Currently, more and more users use ADSL, ADSL users have been online as long, fast, become the target of hackers. Online there are a variety of increasingly detailed "IP address of bank", to know the IP number of ADSL users is very easy to do. To how to defend their own network security? Look at the following methods.

Since the 9 O started, the Internet became popular in the country, with many websites and application development, Internet users have contributed to a substantial increase in the short period of time, gradually beginning to affect people's lives, from the education Entertainment knowledge-based economy and so forth have played a lot of changes, it can be through the Internet with friends around the world exchange information, but also to learn lessons for distance learning or through the library's website for information retrieval, business practices can also be reached via the Internet, more important is the Internet has created a non-entity from the virtual world, beyond the real life of all forms of regulation. Many applications, Nagaki the Internet, commercial activities can be said to be one of the most important part of using Internet Jin Xing's financial transactions and marketing activities, may from time to no longer be limited to the capital, personnel, She Bei, regional, point of sales of the limited physical, make SMEs more competitive, but there were many unprecedented e-business models, such as Business to Business (B to B), Business to Client (B to C), Client to Business (C to B), and Client to Client (C to C) and so many investors before the follow-up to join the ranks of the Internet, like the so-called second industrial revolution, the place, in many of these applications, the network security has been a core issue one, because whether it is business or the transfer of data users are often involved money or personal private information, so data security is the primary issue.

The first elements: the basic functions of a firewall is network firewall system can be the first line of defense, so companies decide to use a firewall to protect the security of the internal network, it first needs to know a firewall system should have the basic function, which is user choice the basis and prerequisite for firewall products. A successful basic firewall product should have the following functions: firewall design strategies should follow the basic principles of safety precautions - "unless otherwise expressly permitted on the ban"; firewall itself to support security policy, and not added to it in; if the organization security policy changes, you can add new services; with advanced certification program means or a hook, you can install advanced authentication methods; if necessary, to allow and prohibit the use of filtering technology services; can use FTP and Telnet services agency, for advanced certification means can be installed and running on the firewall; has friendly interface, easy programming language IP filtering, and data packets according to the nature of packet filtering, packet nature of the source and destination IP address, protocol type, source and destination TCP / UDP port, TCP ACK packet bit, outbound and inbound network interface. If the user needs to NNTP (network news transfer protocol), XWindow, HTTP, and Gopher services, the firewall should contain the corresponding proxy service program. Firewall should also have focused on e-mail features to reduce the SMTP server and the server directly connected to the outside world, and can focus on the entire site, e-mail. The firewall should allow the public access to the site, the information should be separate servers and other internal servers. Firewall should be able to focus and filter dial-in access, and can record network traffic and suspicious activity. Moreover, in order to make the log readable, firewall should have the ability to streamline the log. Although there is no need for the firewall's operating system and operating system used by the same company, but running a firewall administrator familiar with the operating system will make management easier. The strength and validity of the firewall should be able to be verified, the design as simple as possible, so that administrators understand and maintain. Firewall and the corresponding operating system should be upgraded and the upgrade patch to be on a regular basis. As mentioned earlier, Internet is changing all the time, the new point of vulnerability to attack may arise at any time. When new threats emerge, new services and upgrade the installation of the firewall may have potential resistance, so the firewall adaptability is very important.

At present, wireless local area network products are mainly used is IEEE802.11b international standards. 802.11 Application of the three main security technology to protect the security of wireless LAN data transmission.

【REVIEW】 McAfee (McAfee) recently announced the discovery of 13 for the latest Microsoft Windows vulnerabilities to provide comprehensive protection. These vulnerabilities assessed by McAfee Avert Labs. Based on the findings, McAfee Avert recommends that users confirm the use of Microsoft products listed in the notice, and in accordance with the recommendations of Microsoft and McAfee updates immediately. This includes deploying solutions to ensure that hackers use the vulnerabilities outlined in this attack.

Internet has revolutionized the development of the reform and opening up, companies are trying to market by using it to improve reaction speed and efficiency in order to become more competitive. Enterprises through the Internet, you can retrieve important data from different places, at the same time opening up the face of Internet data security brought new challenges and new dangers: that is, customers, vendors, mobile users, remote employees secure access and internal staff; and protection of confidential business information from hackers and industrial espionage invasion. When your company to connect to the Internet without any security, you are exposed to other Internet servers on the attack, not only on your LAN from unauthorized access is fragile, and other LAN server facing the same problem . When the plan how to protect your network from Internet attacks harm, they should first think of the firewall.

July 21, according to antivirus company Symantec said that Microsoft's Office software for the implementation of the latest zero-day Trojan horse attacks on the second main motive is espionage enterprises.

Am Beijing time on May 8, according to foreign media reports, Microsoft Thursday said the criminals in the use of manipulated computer's Windows 7 copies of trouble.

Microsoft has acknowledged the first two weeks of its release emergency patch for the ANI vulnerability package several problems emerged. And that the company has updated a patch, used to notify Windoes XP SP2 users to download and install the new patch.

Jiangmin Anti-Virus remind computer users, Microsoft is in the U.S. time May 28 release announcement, saying the operating system there is a DirectShow vulnerability could be exploited freely used, spread a large number of Trojan viruses.

(A) the use of network attack vulnerability

There are many network systems such as the vulnerabilities of all the system itself may be, such as WindowsNT, UNIX and others have varying amounts of vulnerabilities, but also may be due to the negligence of the network. Hackers could exploit these vulnerabilities to complete the password detection, system intrusion and other attacks.

Open Source Foundation as a leader, Eric S. Raymond has been in the business to Germany for the older generation of Unix-Linux programmers and advocates of more and more build a bridge between. And he thought and he wrote this "new hacker dictionary" the contents of the book coincides with the book published in 1991, mainly talked about the Internet and hacker culture still has a strong legend.

In Windows 7, the rational use of some basic commands, often in the protection of network security play a big role, following a few very prominent role of the command, here we teach you the proper use of "netstat" command, so that the embodiment of Windows 7 security expert.

Prank type: like entering another Web site, to remove some of the text or images, tamper site, home page information to show their powerful, this approach is to add more jokes amused or entertaining people. Or enter another website, the information content of goods within its home page, price to price cuts and other drastic changes, to mislead consumers to believe that the company's products cheap cheap and large orders, thereby creating the Internet order disputes.

In the face of rampant for the ActiveX control of zero-day attacks, Microsoft is quick to fight back, intent to short-term quick fix technology into the overall patch management toolbox update, stop the use of malicious software vulnerabilities to attack. Microsoft, the use of weapons in January this year introduced Fix-it technology.

Recent attacks gathering momentum, and recently many users of broadband access continued to attack effects. A situation occurs not only before the regular attack Internet cafes, many companies suffered attacks affect the case, more and more.

April 15 pm news, Jinshan security company, today announced the establishment of security Jinshan Wang Xin an interview CEO frankly, the biggest challenge is to present the company business model, she said fee free way to promote their banner, bringing the burden of more heavy.

Study: Pacific Forum Features

Firewall can be divided into several different levels of security. In Linux, because there are many different firewall software available, security can be low to high, the most complex software provides virtually impenetrable protection. However, Linux kernel itself, a built-called "disguised" a simple mechanism, but the most dedicated hacker attacks, can withstand most attacks.