System attacks — Take control of the stronghold

Add to my library

H5833 V1 Article

System attacks — Take control of the stronghold

Author : Laurent LEVIER

Publication date: April 10, 2006 | Lire en français

Add to my library Add to my library

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

Overview

Read this article from a comprehensive knowledge base, updated and supplemented with articles reviewed by scientific committees.

Read the article

AUTHOR

  • Laurent LEVIER : Certified Information Systems Security Professional (CISSP) - Certified Information Security Manager (CISM) - Internal Network Security Officer, Equant Télécommunications

 INTRODUCTION

We have seen in the and that it is possible for an ill-intentioned person to map a network, even if it is protected by security equipment, but also, while remaining at a distance, to harm this network by, for example, altering its routing functions, deceiving some of the equipment it hosts by usurping IP addresses and many other techniques.

We also discovered that machines placed on remote networks could themselves fall prey to the hacker, either to access the information they contain, or to use them as a "rebound" platform to gain access to other equipment, such as the firewall. from the network it protects, or a secondary system in a three-tier architecture, for example.

So far, the hacker has only worked on level 3 of the OSI model of the TCP/IP protocol. While he has discovered the existence of listening network services, he is still unsure whether he can use a particular port to carry out his attack. He's still missing one piece of information: which is the most interesting weak point?

Here, we'll look at the concept of a weakness, and the consequences it can have for a hacker, and vice versa for the victim. Of course, assessing the presence of a particular weakness requires us to consider not only the network layer, but also the higher layers which offer more possibilities.

...

Acronyms and abbreviations

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?


Ongoing reading
System attacks — Take control of the stronghold

Article included in this offer

"Security of information systems"

( 88 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details

Contenus associés

Sur le même sujet

Veille personnalisée : Inscrivez-vous !

Dans les ressources documentaires

Annuaires LDAP - Aspects sécurité

La sécurité et les annuaires électroniques ont toujours été indéfectiblement liés, et cela dans deux doma...

Logiciels libres - Licences et gestion de projet

L’édition de logiciels libres a vu le jour grâce à l'expansion et à la vulgarisation de l'informatique. E...

Tous les livres blancs
Article Vers un nouveau record des cyberattaques ?
25 September 2019
Vers un nouveau record des cyberattaques ?

Année après année, c’est toujours le même constat : peu ou mal protégées, les entreprises et les administrations sont de plus en plus nombreuses à être victimes...

Toutes les actualités
Contact us