|
E-mail and Internet Security Issues
E-mail:
- SMTP - Works as a message transfer agent.
- POP - Is an Internet mail server protocol that supports incoming and outgoing messages. Once the messages are downloaded from the POP server, they are usually deleted from that server.
- IMAP Is an Internet protocol that enables users to access mail on a mail server. Messages can be downloaded or leave them on the mail server within her remote message folder, referred to as a mailbox.
Hack and Attack Methods:
- Port Scanning and Networking mapping:
Networking mapping tools send out seemingly benign packets to many different systems on a network.
Port scanning identifies open port on a computer.
- Superzapping:
Is a utility used in IBM mainframe centers and has the capability to bypass access control within operating systems.
- Browsing:
Is a general term used by intruder to obtain information that they are not authorized to access.
Can be accomplished by looking through another person's files kept on a server or workstation, rummaging through garbage looking for information that was carelessly thrown away or reviewing information that has been saved on diskettes.
- Sniffers
Tools that monitors traffic as it passes by.
The tool is either a piece of hardware or software that runs on a computer with its network interface card (NIC) in promiscuous mode.
- Session Hijacking
An attacker putting herself in the middle of a conversation without being detected.
- Password Cracking
Capture and reveal passwords -
- Dictionary attack: Is when a large list of words is fed into a hacking tool. This tool runs a one-way hash on the captured password and on each word in the list. The tool compares the hashing results to see if they match. If they do match, the tool has discovered the password, if not it moves to the next word in the list.
- Brute force attack: A tool will try many different variations of characters, run a hash value on each variation and compare it to the hash value of the captured password.
- Backdoors
Is a program that is installed by an attacker to enable her to come back into the computer at a later date without having to supply login credentials or go through any type of authorization process.
|
|
