Back to Question Center
0

Semalt: Ukuqonda Imisebenzi Ye-Botnet Nge-Botnet Ukungena

1 answers:

I-Botnets ingenye yezinselele ezinkulu zokuphepha kwe-IT ezibhekene nabasebenzisi bekhompyutha namuhla. Izinkulungwane ze-botmasters zisebenza ngehora ukugwema imigwaqo yokuphepha eyakhiwe izinkampani zokuphepha nezinye izinhlangano ezikhathazekile. Umnotho we-botnet, ngokubunzima kwawo, ukhula ngokumangalisayo. Mayelana nalokhu, uFrank Abagnale, uMphathi we-Semalt Wempumelelo yeMakhasimende, angathanda ukukutshela ngomkhuba owusizo wenkampani yekhompyutha yeCisco.

Ucwaningo lwamuva lwethimba lokucwaninga lezokuphepha le-Cisco, litholwe ukuthi kukhona abahlaziyi be-botmasters abenza ama-US $ 10,000 ngesonto kusuka emisebenzini ye-bot. Ngalolu hlobo lokugqugquzela abantu abazoba nesithakazelo ekutholeni izandla zabo ebugebengu, izigidigidi zabasebenzisa ikhompyutha abangaboni kahle zisengozini enkulu yemiphumela yokuhlaselwa kwe-botnet.

Ithimba lokucwaninga le-Cisco, ekucwaningweni kwabo, lihlose ukuqonda ama-botmasters amasu ahlukahlukene asetshenziselwa ukwehlisa imishini. Nazi izinto ezimbalwa imizamo yabo eyasiza ekutholeni:

Qaphela i-Internet Relay Chat (IRC) ithrafikhi

Iningi lama-botnets isebenzisa i-Inthanethi Yokudlulisa Ingxoxo (i-IRC) njengohlaka lomyalo nokulawula. Ikhodi yomthombo ye-IRC iyatholakala kalula. Ngakho-ke, ama-botmasters amasha nabangenalwazi asebenzisa i-IRC traffic ukusakaza amabhodlela alula.

Abasebenzisi abaningi abangalindelekile abaziqondi izingozi ezingase zibe khona zokujoyina inethiwekhi yengxoxo, ikakhulu lapho umshini wabo ungavikelekile ngokuhlukunyezwa ngenye indlela ye-Intrusion Prevention System.

Ukubaluleka kwesistimu yokutholakala kwe-intrusion

Uhlelo lokutholakala kwe-intrusion luyingxenye ebalulekile yenethiwekhi. Igcina umlando wezixwayiso kusuka kwithuluzi lokuphathwa kwezokuphepha kwe-intanethi esetshenzisiwe futhi ivumela ukulungiswa kwesistimu yekhompiyutha eye yabhekana nokuhlaselwa kwe-botnet. Uhlelo lokubona lwenza umcwaningi wokuphepha ukwazi ukuthi ibhodlela lenzani. Kubuye kusize ukunquma ukuthi yiluphi ulwazi oluye lwahlehliswa.

Bonke ama-botmasters akuzona ama-computer geek

Ngokungafani nokucabangela abaningi, ukuqhuba ibhodlela akudingi isipiliyoni sekhompyutheni esithuthukile noma ulwazi lochwepheshe lwekhowudi kanye nokuxhumana. Kukhona abahlaziyi be-botmasters abakwazi ngempela ukwenza imisebenzi yabo, kodwa abanye bangamane nje. Ngenxa yalokho, amanye ama-bots adalwe ngekhono eliphakeme kunezinye. Kubalulekile ukugcina kokubili izinhlobo zabahlaseli ekucabangeni ukuzivikela kwenethiwekhi. Kodwa kubo bonke, umgqugquzeli oyinhloko uthola imali elula ngomzamo omncane. Uma inethiwekhi noma umshini uthatha isikhathi eside kakhulu ukuyekethisa, i-botmaster iqhubekela phambili ekuhlosweni okulandelayo.

Imfundo ebalulekile ekuvikelekeni kwenethiwekhi

Imizamo yokuphepha isebenza kuphela ngemfundo yomsebenzisi. Abaphathi besistimu bavame ukufaka imishini evuliwe noma bathathe i-IPS ukuvikela umshini ekusebenziseni. Kodwa-ke, uma umsebenzisi engazi kahle ngezindlela ezihlukahlukene zokugwema izinsongo zokuphepha njengama-botnets, ukusebenza kahle kwamathuluzi okuphepha okwamanje kunqunyelwe.

Umsebenzisi kudingeka afundiswe njalo ngokuziphatha okuphephile. Lokhu kusho ukuthi ibhizinisi kumele likhulise isabelomali sayo emfundweni yomsebenzisi uma kuncishiswa ukunciphisa amathuba okubamba amaseva ogaxekile, ukweba kwedatha, kanye nezinye izinsongo zomshukela.

Ama-Botnets avame ukuvela njengenhlawulo enethiwekhi. Uma ithrafikhi kusuka kumunye noma imishini eminingi kwinethiwekhi iphuma kwabanye, umshini (s) ungahle ukhishwe. Nge-IPS, kulula ukubona amandla okubheja kwe-botnet, kodwa kubalulekile ukuthi umsebenzisi azi ukuthi angayibona kanjani izaziso ezinikezwe izinhlelo zokuphepha njenge-IPS. Abacwaningi bezokuphepha kufanele futhi bahlale beqaphile ukuze babone imishini ehlanganyela ngokuziphatha okungavamile.

November 29, 2017
Semalt: Ukuqonda Imisebenzi Ye-Botnet Nge-Botnet Ukungena
Reply