SlideShare une entreprise Scribd logo

How to Use FTP Files

C
crysatal16
Développement personnelTechnologie
1  sur  4
Télécharger pour lire hors ligne
Security Matters There IS an Intruder in My Computer – What Now? Lawrence R. Rogers The day’s chores are done and you’re ready to sit down at your home computer to do a little rec- reational web surfing and to catch up with your online friends. As you log in, you notice that your modem’s transmit and receive lights are on almost all the time. You soon discover that al- most everything is running slower and slower with each new program you start. And some of those programs don’t seem to be working as they once did. What’s going on here? Chances are your home computer system has suffered a break-in. And the changes made by the intruders probably won’t go away by themselves – you need to fix your computer. So much for a relaxing evening! Before you begin to tackle the task of fixing your broken computer, you first need to answer some questions. The answers will help to guide the repair process. 1. What changed? Intruders broke into your computer and probably changed it in some way. You need to figure out what they changed so that you can undo those changes. 2. How did they get in? Intruders took advantage of one or more weaknesses – vulnerabilities – in your computer. You need to figure out how they got in so that you can fix those vulner- abilities. It’s important to know how they got in because if you don’t, they may come back. 3. What do I need to change? Intruders may have been able to take advantage of vulnerabilities because of the way your computer is set up. You may need to make changes to thwart an- other attack. Examples are installing patches, installing and using a virus checker, and install- ing and using software and hardware firewalls. To help you to think about how to answer these questions, imagine that your house was broken into instead of your computer. You’re probably a lot more familiar with your house, so let’s use this analogy to apply what you already know to the task of repairing your computer. 1. What changed? To answer the What changed? question about your house, you and those you live with have a pretty good idea of what it looked like before the break-in. Since you already know this, you can more easily figure out what changed. With your computer, it’s a lot harder to know what it looked like before the break-in, that is, what files and folders were on your hard disk and what they contained. And your computer is much more sensitive to the locations of files and folders and their contents than is your house and its contents. For example, if your television were stolen, you could replace it with another television. But you don’t need to replace it with exactly the same television, and you don’t need to put it in exactly the same place. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 1
In contrast, with your computer you do have to replace moved, deleted, and changed files and folders with exactly what was there before, in most cases, and put them in the same place. Any- thing less might prevent your computer from working correctly. And it’s not just the files and folders you’ve created. Your computer came with many files and folders that are part of the operating system (Windows® for example) and its applications (Mi- crosoft® Word, Excel, Outlook, and others that you may have added, such as Intuit® Quicken). It is these files more so than your personal files and folders that must be in the same location and have the same content as before the break-in. So, what did those files and folders look like before the break-in, and where were they? Chances are you’re not really sure. Not only that, it’s hard to tell unless you’ve taken steps to record the kind of information that can help you decide what changed. To help you keep track of the files and folders on your computer and their content, you need to purchase or download a free version of a program called an integrity monitor. An integrity moni- tor checks files and folders to see what’s changed since they were last inspected. These programs use advanced mathematics so that even the smallest of changes can be detected. You run an in- tegrity monitor when you first set up your computer and then run it periodically to see what changed since the last time you checked. Sounds easy, doesn’t it? Unfortunately, it’s not as easy as it sounds. The challenge is to know what changes to files and folders can be expected as part of the routine operation of your computer. Unexpected changes are likely to be the result of something else, an intruder’s activities for example. How do you know what changes to expect? The vendors could tell you but they don’t, so you’ll have to figure that out for yourself. One way to do this is to run the integrity monitor once to de- termine what files and folders are there and what they contain. This process is called baselining. After you’ve baselined your computer, use it for a while and then run the monitor again. The changes you see should be expected. Over time, you’ll learn what’s okay and what’s not. And yes, it is a time-consuming and tedious process. But if you want to know what’s changed, that’s what it takes. Now, what do you do if you haven’t baselined your computer, so you can’t figure out what the intruder changed? The safest thing to do is to start all over again by formatting your hard drives, reinstalling your system and applications, and restoring important files from your backups. (You do have backups, don’t you?) Otherwise, you will be relying on files and folders that an intruder may have changed that are still on your hard disk. It’s a risk to use these files but a risk you might decide to accept. Nonetheless, when you don’t know for sure what files were changed, it’s safest to start all over again. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 2
2. How did they get in? Back at your house, there may be obvious signs such as a broken win- dow or a pried-open door. However, if the intruder used an unlocked door and then locked it on the way out, there may be no break-in signs. The point is sometimes it’s easy to figure out and other times it’s nearly impossible. Figuring how the intruders got into your computer presents the same problems. If intruders took advantage of a vulnerability in a program, there may no signs that that’s what they did. But if they sent an email message with a virus attached and text that belittles its reader for poor email security, then it’s more obvious how the break-in occurred. This type of computer intrusion analysis – called computer forensics – can be more art than science at times. Clues may be hard to come by. But a little detective work might reveal what happened to your computer. For example, if you use an integrity monitor, you might be able to determine how the intruders got in based on the files they changed. Since viruses are a popular method intruders use to break into computer systems, you may be able to relate the set of files changed on your computer to a virus the intruders used. Visit the anti-virus web sites to get information about viruses and the files they change. This may give you the clues you need to figure out how the intruders got in. There may be other clues lying around. For example, your computer might run slower and slower, as mentioned in the first paragraph. This could be an indication that one or more pro- grams are running constantly, perhaps sending traffic to other computers. Review the programs that are running on your computer and see which are using the most CPU time. Use this informa- tion as you used the “files changed” information from your integrity monitor to try to learn how the intruders broke in to your computer. 3. What do I need to change? Answering the What do I need to change? question about your house may be easy. You may keep a key to the front door under the flower pot on your front porch. A passerby who happens to see that there is a key there could use it to enter your house. This is a case where you need to change the way you set up your house to improve its security. Now back to your computer. If you can figure out how the intruders got in, you can more easily decide what you need to change to try to keep them out. For example, if they took advantage of a vulnerability and you don’t routinely install patches that would have fixed the vulnerability, then you need to start installing patches routinely. Or, if you use your home computer to read email and you aren’t running a virus scanner, you should install anti-virus software and use it, espe- cially when working with email. For a list of tasks you should routinely do to your home com- puter, read Home Computer Security (http://www.cert.org/homeusers/HomeComputerSecurity/). The message is that you might need to change how your computer is set up so that it is more re- sistant to intruders. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 3
Many home computers have been broken into, perhaps even yours. Knowing what to do after the break-in requires some advanced planning to reduce your repair effort and can greatly improve the chances that you’ve completely rid your computer of the intruder. It’s time well spent. About the Author Lawrence R. Rogers is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). The CERT Coordina- tion Center is a part of this program. Rogers’s primary focus is analyzing system and network vulnerabilities and helping to transition security technology into production use. His professional interests are in the areas of the administering systems in a secure fashion and software tools and techniques for creating new systems being deployed on the Inter- net. Rogers also works as a trainer of system administrators, authoring and delivering courseware. Before joining the SEI, Rogers worked for 10 years at Princeton University. Rogers co-authored the Advanced Programmer’s Guide to UNIX Systems V with Re- becca Thomas and Jean Yates. He received a BS in systems analysis from Miami Univer- sity in 1976 and an MA in computer engineering in 1978 from Case Western Reserve University. The views expressed in this article are the author’s only and do not represent directly or imply any official position or view of the Software Engineering Institute or Carnegie Mellon University. This article is intended to stimulate further discussion about this topic. The Software Engineering Institute (SEI) is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 4

Recommandé

Computer class final
Computer class finalComputer class final
Computer class final
scrambler400
 
Web design and_hosting
Web design and_hostingWeb design and_hosting
Web design and_hosting
xmgkklglt1991
 
Sirt roundtable malicious-emailtrendmicro
Sirt roundtable malicious-emailtrendmicroSirt roundtable malicious-emailtrendmicro
Sirt roundtable malicious-emailtrendmicro
Sumit Tambe
 
Process and threads
Process and threadsProcess and threads
Process and threads
Merwin Arthur Guinto
 
NWSLTR_Volume8_Issue1
NWSLTR_Volume8_Issue1NWSLTR_Volume8_Issue1
NWSLTR_Volume8_Issue1
Charles Klondike
 
Water Quality Standards
Water Quality StandardsWater Quality Standards
Water Quality Standards
crysatal16
 
Introduction to Pilates Controlology & Exercises the EasyVigour Way
Introduction to Pilates Controlology & Exercises the EasyVigour Way Introduction to Pilates Controlology & Exercises the EasyVigour Way
Introduction to Pilates Controlology & Exercises the EasyVigour Way
crysatal16
 
Frequently Asked Questions
Frequently Asked QuestionsFrequently Asked Questions
Frequently Asked Questions
crysatal16
 

Recommandé

Computer class final
Computer class finalComputer class final
Computer class final
scrambler400
 
Web design and_hosting
Web design and_hostingWeb design and_hosting
Web design and_hosting
xmgkklglt1991
 
Sirt roundtable malicious-emailtrendmicro
Sirt roundtable malicious-emailtrendmicroSirt roundtable malicious-emailtrendmicro
Sirt roundtable malicious-emailtrendmicro
Sumit Tambe
 
Process and threads
Process and threadsProcess and threads
Process and threads
Merwin Arthur Guinto
 
NWSLTR_Volume8_Issue1
NWSLTR_Volume8_Issue1NWSLTR_Volume8_Issue1
NWSLTR_Volume8_Issue1
Charles Klondike
 
Water Quality Standards
Water Quality StandardsWater Quality Standards
Water Quality Standards
crysatal16
 
Introduction to Pilates Controlology & Exercises the EasyVigour Way
Introduction to Pilates Controlology & Exercises the EasyVigour Way Introduction to Pilates Controlology & Exercises the EasyVigour Way
Introduction to Pilates Controlology & Exercises the EasyVigour Way
crysatal16
 
Frequently Asked Questions
Frequently Asked QuestionsFrequently Asked Questions
Frequently Asked Questions
crysatal16
 
Computer assignment on virus and memory and printer
Computer assignment on virus and memory and printerComputer assignment on virus and memory and printer
Computer assignment on virus and memory and printer
ShamzayAli
 
Network Administrator Career
Network Administrator CareerNetwork Administrator Career
Network Administrator Career
Bill Kuhl
 
Checking Windows for signs of compromise
Checking Windows for signs of compromiseChecking Windows for signs of compromise
Checking Windows for signs of compromise
Cal Bryant
 
How to protect your computer from viruses.
How to protect your computer from viruses.How to protect your computer from viruses.
How to protect your computer from viruses.
Acageron
 
SELJE - VFP and IT Security.pdf
SELJE - VFP and IT Security.pdfSELJE - VFP and IT Security.pdf
SELJE - VFP and IT Security.pdf
Eric Selje
 
Security - The WLF Principle
Security - The WLF PrincipleSecurity - The WLF Principle
Security - The WLF Principle
Marco Gralike
 
How to prevent a laptop crash
How to prevent a laptop crashHow to prevent a laptop crash
How to prevent a laptop crash
Shae
 
W01p2virus wayman robert
W01p2virus wayman robertW01p2virus wayman robert
W01p2virus wayman robert
robsworld
 
Operating systems
Operating systemsOperating systems
Operating systems
sandrahezro
 
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
gulshan16175gs
 
How to fix some common laptop problems
How to fix some common laptop problemsHow to fix some common laptop problems
How to fix some common laptop problems
Abie Anarna
 
Where Can I Get My Computer Questions Answered.pdf
Where Can I Get My Computer Questions Answered.pdfWhere Can I Get My Computer Questions Answered.pdf
Where Can I Get My Computer Questions Answered.pdf
Muhammad Waqas
 
SANS OUCH Newsletter April 2016
SANS OUCH Newsletter April 2016SANS OUCH Newsletter April 2016
SANS OUCH Newsletter April 2016
Gene Ferro
 
Ge powerpoint presentation group 4!
Ge powerpoint presentation group 4!Ge powerpoint presentation group 4!
Ge powerpoint presentation group 4!
Kenneth Regalado
 
Welcome to files
Welcome to filesWelcome to files
Welcome to files
Richard Rogers
 
BNI, 10-Minute Pres, IT Business
BNI, 10-Minute Pres, IT BusinessBNI, 10-Minute Pres, IT Business
BNI, 10-Minute Pres, IT Business
Progressive Integrations
 
Webinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionWebinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcription
Service2Media
 
Computers and Technology.
Computers and Technology.Computers and Technology.
Computers and Technology.
Nathan999531
 
Intro to web 2.0 Security
Intro to web 2.0 SecurityIntro to web 2.0 Security
Intro to web 2.0 Security
JP Bourget
 
June 2010 Cis Workshop Class
June 2010 Cis Workshop ClassJune 2010 Cis Workshop Class
June 2010 Cis Workshop Class
DaMotivator
 
a 7 BEST ABDOMINAL EXERCISES
a 7 BEST ABDOMINAL EXERCISESa 7 BEST ABDOMINAL EXERCISES
a 7 BEST ABDOMINAL EXERCISES
crysatal16
 
Abdominal Muscle Strain
Abdominal Muscle StrainAbdominal Muscle Strain
Abdominal Muscle Strain
crysatal16
 

Contenu connexe

Similaire à How to Use FTP Files

Security - The WLF Principle
Security - The WLF PrincipleSecurity - The WLF Principle
Security - The WLF Principle
Marco Gralike
 
W01p2virus wayman robert
W01p2virus wayman robertW01p2virus wayman robert
W01p2virus wayman robert
robsworld
 
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
gulshan16175gs
 
Ge powerpoint presentation group 4!
Ge powerpoint presentation group 4!Ge powerpoint presentation group 4!
Ge powerpoint presentation group 4!
Kenneth Regalado
 
Webinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionWebinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcription
Service2Media
 

Similaire à How to Use FTP Files (20)

Computer assignment on virus and memory and printer
Computer assignment on virus and memory and printerComputer assignment on virus and memory and printer
Computer assignment on virus and memory and printer
 
Network Administrator Career
Network Administrator CareerNetwork Administrator Career
Network Administrator Career
 
Checking Windows for signs of compromise
Checking Windows for signs of compromiseChecking Windows for signs of compromise
Checking Windows for signs of compromise
 
How to protect your computer from viruses.
How to protect your computer from viruses.How to protect your computer from viruses.
How to protect your computer from viruses.
 
SELJE - VFP and IT Security.pdf
SELJE - VFP and IT Security.pdfSELJE - VFP and IT Security.pdf
SELJE - VFP and IT Security.pdf
 
Security - The WLF Principle
Security - The WLF PrincipleSecurity - The WLF Principle
Security - The WLF Principle
 
How to prevent a laptop crash
How to prevent a laptop crashHow to prevent a laptop crash
How to prevent a laptop crash
 
W01p2virus wayman robert
W01p2virus wayman robertW01p2virus wayman robert
W01p2virus wayman robert
 
Operating systems
Operating systemsOperating systems
Operating systems
 
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
1. In OS, multiple jobs can run in parallel and finish faster than i.pdf
 
How to fix some common laptop problems
How to fix some common laptop problemsHow to fix some common laptop problems
How to fix some common laptop problems
 
Where Can I Get My Computer Questions Answered.pdf
Where Can I Get My Computer Questions Answered.pdfWhere Can I Get My Computer Questions Answered.pdf
Where Can I Get My Computer Questions Answered.pdf
 
SANS OUCH Newsletter April 2016
SANS OUCH Newsletter April 2016SANS OUCH Newsletter April 2016
SANS OUCH Newsletter April 2016
 
Ge powerpoint presentation group 4!
Ge powerpoint presentation group 4!Ge powerpoint presentation group 4!
Ge powerpoint presentation group 4!
 
Welcome to files
Welcome to filesWelcome to files
Welcome to files
 
BNI, 10-Minute Pres, IT Business
BNI, 10-Minute Pres, IT BusinessBNI, 10-Minute Pres, IT Business
BNI, 10-Minute Pres, IT Business
 
Webinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcriptionWebinar Security: Apps of Steel transcription
Webinar Security: Apps of Steel transcription
 
Computers and Technology.
Computers and Technology.Computers and Technology.
Computers and Technology.
 
Intro to web 2.0 Security
Intro to web 2.0 SecurityIntro to web 2.0 Security
Intro to web 2.0 Security
 
June 2010 Cis Workshop Class
June 2010 Cis Workshop ClassJune 2010 Cis Workshop Class
June 2010 Cis Workshop Class
 

Plus de crysatal16

a 7 BEST ABDOMINAL EXERCISES
a 7 BEST ABDOMINAL EXERCISESa 7 BEST ABDOMINAL EXERCISES
a 7 BEST ABDOMINAL EXERCISES
crysatal16
 
Abdominal Muscle Strain
Abdominal Muscle StrainAbdominal Muscle Strain
Abdominal Muscle Strain
crysatal16
 
Ab Exercises During Pregnancy By Pauline Go
Ab Exercises During Pregnancy By Pauline Go Ab Exercises During Pregnancy By Pauline Go
Ab Exercises During Pregnancy By Pauline Go
crysatal16
 
Ron's Core Workouts - Abs and Back Crunch Circuit Safety First!
Ron's Core Workouts - Abs and Back Crunch Circuit Safety First! Ron's Core Workouts - Abs and Back Crunch Circuit Safety First!
Ron's Core Workouts - Abs and Back Crunch Circuit Safety First!
crysatal16
 
Abdominal exercises
Abdominal exercises Abdominal exercises
Abdominal exercises
crysatal16
 
A Flatter Stomach Just 3 Steps Away
A Flatter Stomach Just 3 Steps AwayA Flatter Stomach Just 3 Steps Away
A Flatter Stomach Just 3 Steps Away
crysatal16
 
5 Most Effective Abdominal Exercises
5 Most Effective Abdominal Exercises 5 Most Effective Abdominal Exercises
5 Most Effective Abdominal Exercises
crysatal16
 
abdominal exercises
abdominal exercisesabdominal exercises
abdominal exercises
crysatal16
 
Five Must Know AB Exercises
Five Must Know AB Exercises Five Must Know AB Exercises
Five Must Know AB Exercises
crysatal16
 
VHS / S-VHS / VHS-C / MINI-DV Transfer to DVD
VHS / S-VHS / VHS-C / MINI-DV Transfer to DVDVHS / S-VHS / VHS-C / MINI-DV Transfer to DVD
VHS / S-VHS / VHS-C / MINI-DV Transfer to DVD
crysatal16
 
Prices Feb, 2008
Prices Feb, 2008Prices Feb, 2008
Prices Feb, 2008
crysatal16
 
Tape Duplication to DVD
Tape Duplication to DVDTape Duplication to DVD
Tape Duplication to DVD
crysatal16
 
Master Copy 7_7_07_FINAL
Master Copy 7_7_07_FINALMaster Copy 7_7_07_FINAL
Master Copy 7_7_07_FINAL
crysatal16
 
SATV Duplication Transfer (2).tif
SATV Duplication Transfer (2).tif SATV Duplication Transfer (2).tif
SATV Duplication Transfer (2).tif
crysatal16
 
Super 8, Regular 8, and 16mm Transfer Service
Super 8, Regular 8, and 16mm Transfer ServiceSuper 8, Regular 8, and 16mm Transfer Service
Super 8, Regular 8, and 16mm Transfer Service
crysatal16
 
Innovation Studios
Innovation Studios Innovation Studios
Innovation Studios
crysatal16
 
Patchin Pictures Film Transfer Information Sheet
Patchin Pictures Film Transfer Information SheetPatchin Pictures Film Transfer Information Sheet
Patchin Pictures Film Transfer Information Sheet
crysatal16
 
honestech VHS to DVD 3.0
honestech VHS to DVD 3.0honestech VHS to DVD 3.0
honestech VHS to DVD 3.0
crysatal16
 
TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...
TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...
TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...
crysatal16
 
DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5
DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5 DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5
DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5
crysatal16
 

Plus de crysatal16 (20)

a 7 BEST ABDOMINAL EXERCISES
a 7 BEST ABDOMINAL EXERCISESa 7 BEST ABDOMINAL EXERCISES
a 7 BEST ABDOMINAL EXERCISES
 
Abdominal Muscle Strain
Abdominal Muscle StrainAbdominal Muscle Strain
Abdominal Muscle Strain
 
Ab Exercises During Pregnancy By Pauline Go
Ab Exercises During Pregnancy By Pauline Go Ab Exercises During Pregnancy By Pauline Go
Ab Exercises During Pregnancy By Pauline Go
 
Ron's Core Workouts - Abs and Back Crunch Circuit Safety First!
Ron's Core Workouts - Abs and Back Crunch Circuit Safety First! Ron's Core Workouts - Abs and Back Crunch Circuit Safety First!
Ron's Core Workouts - Abs and Back Crunch Circuit Safety First!
 
Abdominal exercises
Abdominal exercises Abdominal exercises
Abdominal exercises
 
A Flatter Stomach Just 3 Steps Away
A Flatter Stomach Just 3 Steps AwayA Flatter Stomach Just 3 Steps Away
A Flatter Stomach Just 3 Steps Away
 
5 Most Effective Abdominal Exercises
5 Most Effective Abdominal Exercises 5 Most Effective Abdominal Exercises
5 Most Effective Abdominal Exercises
 
abdominal exercises
abdominal exercisesabdominal exercises
abdominal exercises
 
Five Must Know AB Exercises
Five Must Know AB Exercises Five Must Know AB Exercises
Five Must Know AB Exercises
 
VHS / S-VHS / VHS-C / MINI-DV Transfer to DVD
VHS / S-VHS / VHS-C / MINI-DV Transfer to DVDVHS / S-VHS / VHS-C / MINI-DV Transfer to DVD
VHS / S-VHS / VHS-C / MINI-DV Transfer to DVD
 
Prices Feb, 2008
Prices Feb, 2008Prices Feb, 2008
Prices Feb, 2008
 
Tape Duplication to DVD
Tape Duplication to DVDTape Duplication to DVD
Tape Duplication to DVD
 
Master Copy 7_7_07_FINAL
Master Copy 7_7_07_FINALMaster Copy 7_7_07_FINAL
Master Copy 7_7_07_FINAL
 
SATV Duplication Transfer (2).tif
SATV Duplication Transfer (2).tif SATV Duplication Transfer (2).tif
SATV Duplication Transfer (2).tif
 
Super 8, Regular 8, and 16mm Transfer Service
Super 8, Regular 8, and 16mm Transfer ServiceSuper 8, Regular 8, and 16mm Transfer Service
Super 8, Regular 8, and 16mm Transfer Service
 
Innovation Studios
Innovation Studios Innovation Studios
Innovation Studios
 
Patchin Pictures Film Transfer Information Sheet
Patchin Pictures Film Transfer Information SheetPatchin Pictures Film Transfer Information Sheet
Patchin Pictures Film Transfer Information Sheet
 
honestech VHS to DVD 3.0
honestech VHS to DVD 3.0honestech VHS to DVD 3.0
honestech VHS to DVD 3.0
 
TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...
TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...
TRANSFER VIDEO TAPE (VHS) TO VIDEO TAPE. Any system to any system ...
 
DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5
DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5 DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5
DVD / VHS / Hi-8 / Digital-8 Recorder with Camera – Room # 5
 

Dernier

KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...
KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...
KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...
Cara Menggugurkan Kandungan 087776558899
 
Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7
Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7
Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7
9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
February 2024 Recommendations for newsletter
February 2024 Recommendations for newsletterFebruary 2024 Recommendations for newsletter
February 2024 Recommendations for newsletter
ssuserdfec6a
 
the Husband rolesBrown Aesthetic Cute Group Project Presentation
the Husband rolesBrown Aesthetic Cute Group Project Presentationthe Husband rolesBrown Aesthetic Cute Group Project Presentation
the Husband rolesBrown Aesthetic Cute Group Project Presentation
brynpueblos04
 
Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...
Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...
Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...
mitaliverma221
 

Dernier (15)

Dadar West Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Dadar West Escorts 🥰 8617370543 Call Girls Offer VIP Hot GirlsDadar West Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Dadar West Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
 
KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...
KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...
KLINIK BATA Jual obat penggugur kandungan 087776558899 ABORSI JANIN KEHAMILAN...
 
Social Learning Theory presentation.pptx
Social Learning Theory presentation.pptxSocial Learning Theory presentation.pptx
Social Learning Theory presentation.pptx
 
Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7
Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7
Girls in Mahipalpur (delhi) call me [🔝9953056974🔝] escort service 24X7
 
Pokemon Go... Unraveling the Conspiracy Theory
Pokemon Go... Unraveling the Conspiracy TheoryPokemon Go... Unraveling the Conspiracy Theory
Pokemon Go... Unraveling the Conspiracy Theory
 
2023 - Between Philosophy and Practice: Introducing Yoga
2023 - Between Philosophy and Practice: Introducing Yoga2023 - Between Philosophy and Practice: Introducing Yoga
2023 - Between Philosophy and Practice: Introducing Yoga
 
SIKP311 Sikolohiyang Pilipino - Ginhawa.pptx
SIKP311 Sikolohiyang Pilipino - Ginhawa.pptxSIKP311 Sikolohiyang Pilipino - Ginhawa.pptx
SIKP311 Sikolohiyang Pilipino - Ginhawa.pptx
 
Colaba Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Colaba Escorts 🥰 8617370543 Call Girls Offer VIP Hot GirlsColaba Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Colaba Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
 
March 2023 Recommendations for newsletter
March 2023 Recommendations for newsletterMarch 2023 Recommendations for newsletter
March 2023 Recommendations for newsletter
 
February 2024 Recommendations for newsletter
February 2024 Recommendations for newsletterFebruary 2024 Recommendations for newsletter
February 2024 Recommendations for newsletter
 
Emotional Freedom Technique Tapping Points Diagram.pdf
Emotional Freedom Technique Tapping Points Diagram.pdfEmotional Freedom Technique Tapping Points Diagram.pdf
Emotional Freedom Technique Tapping Points Diagram.pdf
 
Goregaon West Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Goregaon West Escorts 🥰 8617370543 Call Girls Offer VIP Hot GirlsGoregaon West Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
Goregaon West Escorts 🥰 8617370543 Call Girls Offer VIP Hot Girls
 
Exploring Stoic Philosophy From Ancient Wisdom to Modern Relevance.pdf
Exploring Stoic Philosophy From Ancient Wisdom to Modern Relevance.pdfExploring Stoic Philosophy From Ancient Wisdom to Modern Relevance.pdf
Exploring Stoic Philosophy From Ancient Wisdom to Modern Relevance.pdf
 
the Husband rolesBrown Aesthetic Cute Group Project Presentation
the Husband rolesBrown Aesthetic Cute Group Project Presentationthe Husband rolesBrown Aesthetic Cute Group Project Presentation
the Husband rolesBrown Aesthetic Cute Group Project Presentation
 
Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...
Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...
Call Girls In Mumbai Just Genuine Call ☎ 7738596112✅ Call Girl Andheri East G...
 

How to Use FTP Files

  • 1. Security Matters There IS an Intruder in My Computer – What Now? Lawrence R. Rogers The day’s chores are done and you’re ready to sit down at your home computer to do a little rec- reational web surfing and to catch up with your online friends. As you log in, you notice that your modem’s transmit and receive lights are on almost all the time. You soon discover that al- most everything is running slower and slower with each new program you start. And some of those programs don’t seem to be working as they once did. What’s going on here? Chances are your home computer system has suffered a break-in. And the changes made by the intruders probably won’t go away by themselves – you need to fix your computer. So much for a relaxing evening! Before you begin to tackle the task of fixing your broken computer, you first need to answer some questions. The answers will help to guide the repair process. 1. What changed? Intruders broke into your computer and probably changed it in some way. You need to figure out what they changed so that you can undo those changes. 2. How did they get in? Intruders took advantage of one or more weaknesses – vulnerabilities – in your computer. You need to figure out how they got in so that you can fix those vulner- abilities. It’s important to know how they got in because if you don’t, they may come back. 3. What do I need to change? Intruders may have been able to take advantage of vulnerabilities because of the way your computer is set up. You may need to make changes to thwart an- other attack. Examples are installing patches, installing and using a virus checker, and install- ing and using software and hardware firewalls. To help you to think about how to answer these questions, imagine that your house was broken into instead of your computer. You’re probably a lot more familiar with your house, so let’s use this analogy to apply what you already know to the task of repairing your computer. 1. What changed? To answer the What changed? question about your house, you and those you live with have a pretty good idea of what it looked like before the break-in. Since you already know this, you can more easily figure out what changed. With your computer, it’s a lot harder to know what it looked like before the break-in, that is, what files and folders were on your hard disk and what they contained. And your computer is much more sensitive to the locations of files and folders and their contents than is your house and its contents. For example, if your television were stolen, you could replace it with another television. But you don’t need to replace it with exactly the same television, and you don’t need to put it in exactly the same place. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 1
  • 2. In contrast, with your computer you do have to replace moved, deleted, and changed files and folders with exactly what was there before, in most cases, and put them in the same place. Any- thing less might prevent your computer from working correctly. And it’s not just the files and folders you’ve created. Your computer came with many files and folders that are part of the operating system (Windows® for example) and its applications (Mi- crosoft® Word, Excel, Outlook, and others that you may have added, such as Intuit® Quicken). It is these files more so than your personal files and folders that must be in the same location and have the same content as before the break-in. So, what did those files and folders look like before the break-in, and where were they? Chances are you’re not really sure. Not only that, it’s hard to tell unless you’ve taken steps to record the kind of information that can help you decide what changed. To help you keep track of the files and folders on your computer and their content, you need to purchase or download a free version of a program called an integrity monitor. An integrity moni- tor checks files and folders to see what’s changed since they were last inspected. These programs use advanced mathematics so that even the smallest of changes can be detected. You run an in- tegrity monitor when you first set up your computer and then run it periodically to see what changed since the last time you checked. Sounds easy, doesn’t it? Unfortunately, it’s not as easy as it sounds. The challenge is to know what changes to files and folders can be expected as part of the routine operation of your computer. Unexpected changes are likely to be the result of something else, an intruder’s activities for example. How do you know what changes to expect? The vendors could tell you but they don’t, so you’ll have to figure that out for yourself. One way to do this is to run the integrity monitor once to de- termine what files and folders are there and what they contain. This process is called baselining. After you’ve baselined your computer, use it for a while and then run the monitor again. The changes you see should be expected. Over time, you’ll learn what’s okay and what’s not. And yes, it is a time-consuming and tedious process. But if you want to know what’s changed, that’s what it takes. Now, what do you do if you haven’t baselined your computer, so you can’t figure out what the intruder changed? The safest thing to do is to start all over again by formatting your hard drives, reinstalling your system and applications, and restoring important files from your backups. (You do have backups, don’t you?) Otherwise, you will be relying on files and folders that an intruder may have changed that are still on your hard disk. It’s a risk to use these files but a risk you might decide to accept. Nonetheless, when you don’t know for sure what files were changed, it’s safest to start all over again. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 2
  • 3. 2. How did they get in? Back at your house, there may be obvious signs such as a broken win- dow or a pried-open door. However, if the intruder used an unlocked door and then locked it on the way out, there may be no break-in signs. The point is sometimes it’s easy to figure out and other times it’s nearly impossible. Figuring how the intruders got into your computer presents the same problems. If intruders took advantage of a vulnerability in a program, there may no signs that that’s what they did. But if they sent an email message with a virus attached and text that belittles its reader for poor email security, then it’s more obvious how the break-in occurred. This type of computer intrusion analysis – called computer forensics – can be more art than science at times. Clues may be hard to come by. But a little detective work might reveal what happened to your computer. For example, if you use an integrity monitor, you might be able to determine how the intruders got in based on the files they changed. Since viruses are a popular method intruders use to break into computer systems, you may be able to relate the set of files changed on your computer to a virus the intruders used. Visit the anti-virus web sites to get information about viruses and the files they change. This may give you the clues you need to figure out how the intruders got in. There may be other clues lying around. For example, your computer might run slower and slower, as mentioned in the first paragraph. This could be an indication that one or more pro- grams are running constantly, perhaps sending traffic to other computers. Review the programs that are running on your computer and see which are using the most CPU time. Use this informa- tion as you used the “files changed” information from your integrity monitor to try to learn how the intruders broke in to your computer. 3. What do I need to change? Answering the What do I need to change? question about your house may be easy. You may keep a key to the front door under the flower pot on your front porch. A passerby who happens to see that there is a key there could use it to enter your house. This is a case where you need to change the way you set up your house to improve its security. Now back to your computer. If you can figure out how the intruders got in, you can more easily decide what you need to change to try to keep them out. For example, if they took advantage of a vulnerability and you don’t routinely install patches that would have fixed the vulnerability, then you need to start installing patches routinely. Or, if you use your home computer to read email and you aren’t running a virus scanner, you should install anti-virus software and use it, espe- cially when working with email. For a list of tasks you should routinely do to your home com- puter, read Home Computer Security (http://www.cert.org/homeusers/HomeComputerSecurity/). The message is that you might need to change how your computer is set up so that it is more re- sistant to intruders. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 3
  • 4. Many home computers have been broken into, perhaps even yours. Knowing what to do after the break-in requires some advanced planning to reduce your repair effort and can greatly improve the chances that you’ve completely rid your computer of the intruder. It’s time well spent. About the Author Lawrence R. Rogers is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). The CERT Coordina- tion Center is a part of this program. Rogers’s primary focus is analyzing system and network vulnerabilities and helping to transition security technology into production use. His professional interests are in the areas of the administering systems in a secure fashion and software tools and techniques for creating new systems being deployed on the Inter- net. Rogers also works as a trainer of system administrators, authoring and delivering courseware. Before joining the SEI, Rogers worked for 10 years at Princeton University. Rogers co-authored the Advanced Programmer’s Guide to UNIX Systems V with Re- becca Thomas and Jean Yates. He received a BS in systems analysis from Miami Univer- sity in 1976 and an MA in computer engineering in 1978 from Case Western Reserve University. The views expressed in this article are the author’s only and do not represent directly or imply any official position or view of the Software Engineering Institute or Carnegie Mellon University. This article is intended to stimulate further discussion about this topic. The Software Engineering Institute (SEI) is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University. news@sei interactive 4Q 2003 http://www.interactive.sei.cmu.edu 4