here2dl
   
 ▃︴
|
分享:
▼
x1
|
 [心得分享] [原創] 網路安全基礎 (中文/英文)
目錄 Index [原創] 關於Internet Security #1 (中文/英文) [原創] Internet Security Guide - 個人密碼 (中文/英文) [原創] Internet Security Guide - 保護你的電腦 (中文/英文) [原創] Internet Security Guide - 小心電腦身分外漏 (中文/英文) [原創] Internet Security Guide - 甚麼是VPN (中文/英文) [原創] Internet Security Guide - 運用VPN (中文/英文) [原創] Internet Security Guide - 防火牆 (中文/英文) [原創] Internet Security Guide - VPN與防火牆 (中文/英文) [原創] Internet Security Guide - 郵件炸彈 (中文/英文) [原創] Internet Security Guide - 木馬屠城 (中文/英文) [原創] Internet Security Guide - 網頁攻擊 (中文/英文) 其他相關: [原創] 商務與VPN基礎 (中文/英文) http://bbs.mychat.to/read.php?tid=6628[原創] 關於Internet Security #1 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
If you’re apprehensive about security while roaming the internet, you’re not alone. A recent survey in the United States shows that nearly 70-percent of netizens fear online attacks from hackers…and a whopping 84-percent say they’re concerned about online businesses invading their privacy. As a matter of fact, a major global furniture retailer had to shut down its web site after a privacy breach exposed the personal information of thousands of customers.
你在上網遨遊的同時,會擔心安全的問題嗎?美國最近一項調查指出,全美所有的網路使用者中,有將近七成擔心網路駭客的攻擊,另外更有高達百分之八十四的人,表示害怕網路商業會侵犯個人隱私。事實上,最近一家大型的國際家具經銷商,正因保密措施不當,洩露了數千名顧客的個人資訊而被迫關閉網站。
Yet even as netizens express anxiety about being monitored online, consumer’s ability to protect their privacy is hampered by their own unfamiliarity with the basic mechanics of internet security. For example, 56-percent didn’t even know what an Internet cookie is. Compounding the problem--many web surfers forget common-sense, and freely respond to email from strangers or leave personal information available online.
儘管網路消費者對可能在線上遭到監視而感到不安,他們保護隱私的能力,卻更因本身對網路安全的基本架構了解不多,而大打折扣。更糟的是,許多人上網卻忘了基本常識,而隨意回覆來自陌生人的電子郵件,或在網站上留下個人資訊。在隱私可能被侵犯、信用資料可能被竊取的情況下,消費者及商家各應採取何種網路安全措施?這是一個你我都應切身思考的問題。
As e-commerce become more and more prevalent; whether you’re selling or buying over the net, it’s time to beef up your security.
by here2dl
[原創] Internet Security Guide - 個人密碼 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
Today, passwords are an important tool for protecting your privacy. But on the Internet, passwords can only provide the most basic of protection. To maximize their effectiveness, keep these pointers in mind. First, and most importantly, avoid any password that includes your name, birth date or telephone number. Although these may be easy to remember, they’re also easy to crack.
我們都知道,密碼是保護個人隱私的工具之一。雖然在網路世界裡,密碼只能做到最基本的防護,你仍舊能採取一些措施來讓它發揮最大的功效。很重要的一點是,設定密碼時,絕對不要為了方便記憶,而選擇有意義的字串,如姓名、生日、電話等,這樣只會增加被猜中的機率。
Experts suggest the ideal password involves a random combination of letters, numbers and punctuation marks. Plus, change your password regularly. These steps will make the password more difficult for interlopers to guess, and hackers to crack. If you find a random password too difficult to remember, and feel the need to jot it down, exercise caution. Remember to hide it somewhere safe from prying eyes, and never tape it to your computer or desk where curious eyes might find it.
選擇密碼時,最好是字母、數字和符號一起使用,並且定期更換,這樣除了不易被猜中,也能增加駭客破解的時間。另外,如果你覺得密碼太複雜,必須寫下來才不會忘記,那也請把寫下來的密碼妥善收在隱密的地方,而不要大方地貼在電腦螢幕或桌面上,否則豈不是白費工夫?
by here2dl
[原創] Internet Security Guide - 保護你的電腦 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
Did you ever realize that whenever your computer’s connected to the Internet, it’s like a house with its doors and windows wide open? Most PC’s don’t have any special hardware or software protection to prevent prying eyes from accessing your data port, and from there, invading your computer while you’re online.
如果你的個人電腦正連結到網際網路上,對線上的其他人而言,它看起來就像是一棟大門和窗戶都沒有上鎖的房子。個人電腦是透過通訊埠來連結廣大的網際網路的。不幸的是,不是所有的埠都是單向的。它們就像是虛擬的門,除非你把它們都鎖好,否則任何有心人士都可經由這些門來入侵你的電腦。
Your PC is just like a virtual home on the Internet, and unless you lock the door, you have no way to stop others from coming inside. And don’t fool yourself by thinking that hackers only target high-profile web sites. With the right equipment, hackers can easily scan to see who’s online. And, with your door wide open, they can take a look at what’s inside, steal files, and worse yet, delete data or leave behind a virus. Don’t you think it’s time to lock those “doors” to your computer?
不要以為你只是一般的網路使用者;透過通訊埠掃描器,駭客可輕易找到你連線時洞開的電腦大門,把你的電腦當他們自己的電腦使用,偷窺你的郵件、盜取檔案、引進程式病毒…現在,你要不要關那些門啊?
by here2dl
[原創] Internet Security Guide - 小心電腦身分外漏 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
When you’re online, your PC is assigned an IP number—a long series of digits and “dots”. This IP number acts as your computer’s ID, or online address, allowing other computers and web sites to know where to direct the information you request. IP numbers come in two forms, dynamic and static. If you’re connected to the Internet around the clock, then you have static—or fixed—IP. If you have a modem connection for occasional access, then you have a dynamic IP—one that changes each time you go online.
由一連串數字與句號所組成的IP位址,是你在網路上的身份號碼;換句話說,它是你在數位地球村的住址。IP位址可分靜態與動態。使用全天候連線的寬頻網路,你的位址就是靜態的,不會改變。如果透過數據機撥接上網,你每次登入就會被分配到不同的、動態的位址。
Obviously with a static IP it’s easier for hackers to locate your computer on the Internet—making static IPs more dangerous. How can you fix this security hazard? One simple solution is to use an anonymous web and email server, which will hide your “footprints” as you roam the Internet. Another option is a firewall—software that erects a virtual wall between your computer and the Internet. Today, there are even several easy-to-use firewall applications designed for the home user in mind.
靜態的位址比較危險,有心人可不斷猜測你的位址直到猜中為止,然後侵入你的電腦。要防止位址被找到,方法之一是使用匿名網路郵件服務,它會消除你的資訊足跡,讓你匿名瀏覽網路。更有效的方法是使用防火牆軟體,目前市面上已出版數種個人防火牆軟體,您可以上網比較。
by here2dl
[原創] Internet Security Guide - 甚麼是VPN (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
Virtual Private Network – definition
In the realm of Internet technology, one of the hottest topics is “VPN”, or Virtual Private Network. In simple terms, the idea behind a VPN is similar to the bus only traffic lanes that are common in many major cities—creating a special “traffic lane” for your data. But, a VPN features two important additions: data encryption and identity verification. So, the users’ identity must be verified at each end of the transmission, keeping other Internet users out of this private network.
VPN,也就是虛擬私有網路,是目前網路領域中最常被討論的名詞之一。VPN的全名是Virtual Private Network,做法,就像在一般公用馬路上規劃公車專用道一樣,只不過VPN是透過加解密和身分確認的技術,在公眾網路上規劃出私人的虛擬專線;除非經過對方的認證與授權,一般人是無法介入這個私人網路的。
The benefits of a VPN are tremendous. Corporate and private users can enjoy the security and privacy of a dedicated network, without the prohibitive costs. By providing a low-cost solution for online privacy, VPN has become an important tool for corporations to maintain their competitive advantage.
透過虛擬私有網路,企業及個人網路使用者不必花費龐大的經費來租用專線,便能保持資料傳輸的機密性。在既能節省經費、又能保持隱私的有利條件下,VPN已成為未來企業維持商業競爭力的關鍵。
by here2dl
[原創] Internet Security Guide - 運用VPN (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
For most corporations today, their greatest fear is a hacker attack on their network servers…vandalizing web pages or even forcing a shut-down of the network. The conventional solution to this problem is for corporations to connect their various locations using dedicated data lines. But, the costs for these dedicated lines and hardware is astronomical, making this solution prohibitive for small to medium sized companies. Plus, remote users must often call into the company’s main server via long distance phone lines, a process that is expensive and tedious.
一般而言,企業網站最擔心伺服器遭入侵、網頁遭竄改、或系統受攻擊而癱瘓;因此傳統上會使用專線相互連結。但是專線的線路及硬體費用龐大,對一般中小型企業是沉重的負擔。尤其遠端用戶必須撥長途電話才能連結回企業內部,不但昂貴、且時效性大打折扣。
Luckily, a Virtual Private Network can solve all of these headaches. Using a VPN, when workers are on the road, a local phone call to a nearby Internet Service Provider will provide them easy access to your private and secure network. Likewise, branch offices can keep in contact with headquarters using a conventional Internet connection.
虛擬私有網路能一次解決這些問題。透過VPN,您的員工出差時只要打市內電話便可經由VPN的安全網路連線回公司;而分公司也同樣可輕易與總公司或其他分公司連線。總而言之,VPN可為企業用戶節省電話使用費和網路設備的成本,並提高網路使用的彈性、以及連線的時效性。您是否該開始選擇一個適合您企業的VPN方案了呢?
by here2dl
[原創] Internet Security Guide - 防火牆 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
Firewall – definition
One of the best solutions for ensuring Internet safety is a firewall. But if you’re like many laymen…you’re probably wondering just what’s a firewall. Imagine it as a secure checkpoint on a fortified defense line…and all network transmissions must pass through this narrow checkpoint. Firewalls succeed because they integrate security hardware and software at this one checkpoint, making it the sole gateway between a company’s private internal network and the internet.
防火牆是目前網路安全防護的最佳解決方案。它到底是什麼?試著把防火牆想像成一個國防上的要塞,所有進出的傳輸,都必須通過這個唯一而又狹窄的檢查點。防火牆之所以有效,是因為它把所有保全硬體和軟體都集中在這個檢查點上,這個點,也就是你企業的內部網路、與公共的網際網路的連接點。
But the security firewalls provide comes at a big price…in dollars and cents. Firewalls demand special hardware requirements, as well as trained personnel standing guard 24-hours a day. Plus firewalls can be breached…although generally the mistake lies with improper set-up, lax security protocols or poor management…and is not generally the fault of the firewall itself.
不過防火牆的架設十分耗費成本。除了硬體,你還必須僱請數位安全專家來全天候監視設定紀錄。大部分對防火牆的安全破壞,是針對設定上的錯誤或弱點。但出問題的不見得是防火牆本身的品質或特色,反倒是管理上的疏失及設定不正確所導致。
Although firewalls are the most important security precaution for a corporate network, yet their set up and hardware comes at a very hefty price. And, with a shortage of specially trained human resources, firewall management becomes a daunting task. For most small-to-medium sized businesses, the most economical alternative is to hire a professional firewall management company to handle their Internet security.
防火牆雖然是企業網路安全很重要的一道保護,但架設及硬體費用昂貴,且專業人力資源缺乏、管理不易。對一般中小型企業而言,最經濟有效的方式,是聘用專業的防火牆管理公司。
Professional firewall management services offer many advantages, including trained personnel to monitor network security, plus regular maintenance schedules to keep your firewall up-to-date. And most importantly, they’re on guard 24-hours a day, ready to deal with any security breach as it develops. Another fringe benefit of hiring professional firewall consultants is they can help you formulate a comprehensive network security protocol, reducing your security risks to the absolute minimum.
專業的防火牆管理服務,除了有工程師監視變動與設定,還會提供定期的維護與更新;而它最有價值的一點,是全天候的服務,因為隨時待命的緊急回應能力是很重要的。專業服務還有一個邊際效益,就是協助你規劃一個安全策略;這是適當管理防火牆的基本要素。總而言之,要將您企業網路安全的成效提昇到最大,最好外聘專業的防火牆服務,如此不僅可提高成本優勢,且能為你的公司提供高度的專業技術。
by here2dl
[原創] Internet Security Guide - VPN與防火牆 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
When corporate users are planning their network security strategy, it’s important to bear in mind the differences between firewalls and virtual private networks. A firewall is designed to screen and monitor the flow of information in and out of your network—whereas a VPN protects the security of your data as it travels over public networks through the addition of encryption and identity verification. So, while your data travels on the Internet, it is protected against theft and sabotage.
企業在考慮網路安全的做法時,請注意防火牆與虛擬私有網路的分別。防火牆的功用是在過濾與監視資料的進出,以達到防止攻擊與入侵的效果;而虛擬私有網路的功用,則是在於資料加解密與身份認證,以達到資料在公眾網際網路上傳輸過程中的隱密,並防止第三者竄改資料或複製使用者之機秘資料。
With the rapid expansion and development of e-commerce, today’s corporate users need to protect the privacy and integrity of online data, and must understand the complimentary protection firewalls and VPNs provide. Don’t try cutting costs by choosing one over the other, because if any confidential information on your network is ever compromised, you’ll have more headaches then simply rushing to plug the security whole. Your company’s reputation may also suffer a serious blow, which in turn will damage its “bottom line”.
在電子商務日益發達的今日,企業要保障隱私,必須結合防火牆以及虛擬私有網路的雙重保護,千萬不可存有僥倖的心理。因為公司如果有任何機密資料被竊取,不只是機密檔案及客戶資料外洩,連帶公司的聲譽也會備受質疑。
by here2dl
[原創] Internet Security Guide - 郵件炸彈 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
E-Mail Bomb 郵件炸彈
More and more today, the hackers “sabotage of choice” is the e-mail bomb—an easy way into your computer for wrecking the maximum havoc. The assailants take advantage of weaknesses or “back doors” in computer software to destroy data, or inundate a mail server until it “cracks” under the heavy load…resulting in a disruption of Internet services.
近來越來越多的網路駭客是以郵件炸彈的方式來攻擊個人電腦。他們會選擇一些脆弱及防護不佳的目標,以極快的速度,將重複的垃圾資料大量傳送到被害者的電腦裡,使其負荷過量而癱瘓。
On average, it takes about 5-10 minutes to prepare an email… to write the message and fill in the recipient’s address. But it only takes a fraction of a second to electronically send out that message. So the theory behind the most common email bombs is quite simple. Create a piece of software that causes a victim’s computer to keep sending out thousands of dummy messages per second. Not only will this cause the recipients computer to “choke” under the heavy load, but it can also inundate mail servers…causing them to fail. And with computer or server problems…on the job productivity falters.
一般人傳送一封電子郵件,約須5到10分鐘的時間,來輸入信件內容及收件者的地址。郵件炸彈的攻擊概念,則是每封信寄出只需要千分之一秒的時間來完成,於是每秒送出一千封信,如此不間斷地持續下去。結果,收信方的電腦,將會因為無法瞬間處理數量如此龐大、且不間斷的訊息傳送,而產生當機,為使用者的日常工作帶來極大的不便。
by here2dl
[原創] Internet Security Guide - 木馬屠城 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
Trojan Horse木馬屠城
Computer bugs come in many shapes and sizes. One of the most insidious is the Trojan horse. Just like it’s namesake, a computer Trojan horse enters your computer as a seemingly innocuous piece of software…perhaps as an attachment on an email. But once activated, the harmless-looking piece of software starts its mischief.
木馬程式和電腦病毒一樣,都是電腦程式軟體的一種。它們的原理也很相似,兩者都可以附加在擋案內,可以經由電子郵件在網路上傳輸,並且可以專為達成某個特定的目地而設計。
Unlike a computer virus…Trojan horses require the user to activate them, which is why they come camouflaged as seemingly harmless software. But, once the “soldiers” are released…the malicious software can destroy data, or open a silent back door to your PC. Through this invisible gateway, hackers can easily monitor your activities, intercept data and steal confidential passwords and credit information. Compounding matters, the victim usually doesn’t realize he’s been hit until it’s too late—after the damage has been done and the hacker has erased his tracks. For corporate users, blocking Trojan horses is a must…because the threat of losing confidential information is more than just a slight inconvenience.
不過木馬程式和電腦病毒不同的地方是,電腦病毒是由程式本身自動啟動來破壞電腦;木馬程式則是透過遠端操控,讓駭客從另一台電腦監控並使用受害者的電腦。木馬程式的應用很廣泛,從竊取密碼、資料、到進行破壞,尤其受害者往往並不知道資料已被竊取或竄改,導致它對企業的威脅更為嚴重,而破壞所帶來的影響往往超過表面上的損失,企業必須多加注意與防範。
by here2dl
[原創] Internet Security Guide - 網頁攻擊 (中文/英文)
日期: 2000年8月至2001年2月
作者: Stephen Lin (stephen930@hotmail.com)
曾發表於ICRT美軍廣播電台每日新聞中(Aug.2000~Feb.2001)
目前文章只發表於數位男女http://bbs.mychat.to
-嚴禁轉貼-
WEB PAGE ATTACK 網頁攻擊
Going online to read news and information is as common today as reading the morning newspaper. But even browsing the web carries potential risks. Take for example the “cookie”. Many web sites use cookies to keep track of users…freeing them from the hassle of having to enter a user name every time they visit, and allowing content providers to fine-tune their offerings by observing users’ choices. But in the wrong hands…cookies can pose a privacy risk.
對大部分的人來說,上網已經是每天例行的事項;不過其實光是上網瀏覽網頁,暗中也藏有許多風險的。例如許多網站會在使用者的電腦內放置cookie檔,來對使用者進行紀錄或追蹤;一般來講這樣並無大害,但有心人士仍舊可以醜化它的應用方式。
Another potential hazard is malicious web sites that utilize the “buffer overflow” to tell the web browser to open several new windows every second. Within seconds this action can overwhelm the computer system, and cause it to crash. On a Windows PC, immediately hit Control + Alt + Delete to “force quit” your browser. Plus, other interlopers take advantage of glitches in software designs to wreak their havoc…so play it safe, and always use the most up-to-date versions.
另外有些網頁也可攻擊使用者。比如說,當你進入某個惡作劇的網站後,該網站可以使用buffer overflow的方式,不停地每秒開啟5到6個以上的小視窗,直到你的電腦當機為止。防範的方式,是同時按下Ctrl、Alt 和 Delete鍵,然後選擇關閉瀏覽器。不過許多攻擊方式是針對特定的軟體弱點和漏洞,因此最好能常常更新軟體,以降低被攻擊的機會。
by here2dl
[ 此文章被here2dl在2005-01-30 00:29重新編輯 ]
|
