Linux Security Vulnerability

1. Kernel-Level Vulnerability Dirty COW Dirty Cow Vulnerability. The COW mechanism of the Linux kernel memory subsystem competes with memory writes, causing read-only memory pages to be tampered with. Impact: Linux kernel> = 2.6.22 Vulnerability Affected: Low privilege Users can write to this read-only memory page (including a file read-only to this user on a writable file system) and to root PoC Reference: https://github.com/dirtycow/di ...

The intermediary transaction SEO diagnoses Taobao guest Cloud host Technology Hall introduction no matter on which server system, any one file's execution must have certain permission, if the hacker obtains this permission, may use this flaw to run some hacker program, thus achieves the control entire computer the goal. Conversely, even if hackers can put some hacker programs uploaded to the server, due to the permissions of the problem, these hacker programs will not run, can not endanger our system. 　　For example Findpass is like this. 1 Windo ...

Vulnerabilities in routers have become frequent in recent years, and routing vendors are often pointed out that there is a security problem with the equipment in store. Last night, security research company Check Point claimed to have found a significant routing vulnerability that could allow attackers to control home and small business routers, and route to an intranet device. Check Point says the vulnerability affects at least 12 million routes produced by more than 20 routing vendors, including TP, Link, Huawei and other well-known vendors. Given that this vulnerability is affected ...

&http://www.aliyun.com/zixun/aggregation/37954.html ">nbsp;        According to foreign media reports, Apple announced in Wednesday that the company will be the next version of the mobile operating system, iOS 7 system to repair the previous version of the software power adapter security vulnerabilities. In theory, malware can take advantage of a security vulnerability in the iOS 6 system through malicious us ...

The news about the Heartbleed vulnerability sparked heated discussions on the web. This loophole from the OpenSSL project allows an attacker to steal user information over a wide variety of encrypted and transmitted network data. As OpenSSL is widely used in web servers, mail protocols, and communication protocols, the number of users affected at a time Hard to estimate. The Heartbleed Vulnerability once again shows the vulnerability of cybersecurity, of course, for those who value security, which also gives them the opportunity to upgrade basic services, increase security ...

Security is a huge and challenging subject, but everyone who works on the server side should know the basic steps. Cameron outlines some ways to keep your user account clean and secure. Security is a big problem. It's not going to be the same, and it's hard to know how much it needs to scale: if you're not careful, when your boss really wants to keep the doorman from seeing his annual budget, you finally believe that he needs to understand the benefits of security. No matter how challenging it is to keep up with trends in all aspects of computing security, there are several areas that are already sufficient ...

SME network security guidelines. [Theory] As the training site said, the enterprise's network security is a system, do all aspects of what is a major project, even if only a branch of network security also takes a long time to build, so in the early need to resolve the current main contradictions (ie "Stop bleeding" and control most of the risks in the first place). Based on the past experience of several of our people, we suggest that you have the following key positions in the control, you can achieve more with less effort immediate effect: 1) port control. All server non-business ports are all closed to the internet, managing ...

This article from today's information security industry separatist, with the three features of enclosure and hardware, this paper analyzes the increasingly serious gap between information security and cloud platform with typical cloud platform architecture, and puts forward corresponding solutions, that is, three development trends of information security: the defense of information security itself in depth (Defense in Depth), software defined by the combination of application and information security, defines information security (Software tabbed infomation), combines virtualization technology and information security to drive ...

The field of information security hides a dark secret from us: We are fighting a losing war and losing our position at an alarming rate in the form of data leaks. This is not because we are not trying to protect the assets of the enterprise, but because it is a simple fact: the attackers have more time and tools to attack than our defenses. Some enterprises simply do not have enough money to invest in the resources needed for information security programs, while others try to deploy "half-baked" information security programs to meet compliance requirements with minimal personnel and budgets. Visible, we are fighting a war and ...

SMTP server Code of Practice: Incoming messages. Check the address of the message. If the address of the message is a local address, save the message for retrieval. If it is a remote address, forward the message. The SMTP server features the same as the packet router, except that the SMTP service is dedicated to mail. Most SMTP servers can store and forward messages as needed. The SMTP server has security requirements on two different tasks: Protect the server from being compromised. The server must be equipped with protective armor to prevent external attacks, if the external offensive success will make the attackers unauthorized ...