Virus 1062020 1 Memoryresident virus Runs whenever certain
![Procedure call E. g. , finger aabbcc [PC] aa bb cc ret para 2](https://slidetodoc.com/presentation_image/d9bf62b13461305f8cfeb920df5c43ae/image-5.jpg "Procedure call E. g. , finger aabbcc [PC] aa bb cc ret para 2")
![Buffer overflow E. g. , finger aabb…zz zz [PC] aa bb cc … …](https://slidetodoc.com/presentation_image/d9bf62b13461305f8cfeb920df5c43ae/image-6.jpg "Buffer overflow E. g. , finger aabb…zz zz [PC] aa bb cc … …")
- Slides: 22
Virus 10/6/2020 1
Memory-resident virus Runs whenever certain interrupts occur. 10/6/2020 2
Encrypted virus To conceal signature. 10/6/2020 3
Unix address space Low address Program Statically allocated data Stack High address 10/6/2020 4
Procedure call E. g. , finger aabbcc [PC] aa bb cc ret para 2 para 1 Stack 10/6/2020 Buffer area allocated by called fingerd (512 bytes) Return address High address 5
Buffer overflow E. g. , finger aabb…zz zz [PC] aa bb cc … … zz para 2 para 1 Malicious program (binary) Return address Stack 10/6/2020 6
Epidemic rsh attack Bootstrap finger attack sendmail attack Worm proper Upload request Worm proper New victim 10/6/2020 Infested machine 7
Firewall location Intranet Internet Intranet -Packet filter and/or - Application gateway 10/6/2020 8
Typical configurations DMZ 10/6/2020 9
(a) Filtering router Mail server (port=25) Filtering router Internet Intranet 10/6/2020 10
Filtering router implementation Action Our host Port Their host Port Block * * SPIGOT * Allow Our-Mail. Serv 25 * * Allow Our-Web. Serv 80 * * 10/6/2020 11
(b) Filtering router and Bastion host Internet Protected Intranet Router only permits traffic to/from bastion host 10/6/2020 12
(c) Demilitarized Zone (DMZ) Modem access Bastion host inside router Protected intranet Internet outside router Web server DMZ 10/6/2020 13
HTTP proxy 10/6/2020 14
Local HTTP proxy Proxy Server Internet (B) HTTP (A) Proxy HTTP www. company. com: 80 Client (A) is configured to use proxy HTTP via (B) Sends GET page. html to http: //www. company. com/ on behalf of (A). 10/6/2020 15
RMI thru firewall HTTP server Internet client_stub RMI server port POST “data” to www. company. com: 80/cgi-bin/ java-rmi. cgi? forward=<rmi. Server. Port> 10/6/2020 16
Private network 10/6/2020 17
Hybrid network 10/6/2020 18
Virtual private network 10/6/2020 19
Addressing in a VPN 10/6/2020 20
Tunneling 10/6/2020 21
Virtual Private Network (VPN) Intranet A Internet Intranet B Tunneling Router RA Router RB RB 200 Station 100 10/6/2020 Data encrypted Station 200 22
Ownedcore
Whenever the weather
Diversatech plastics group
Whenever possible, child car safety seats should be placed
A diver is 30 metres/99 feet underwater
Section 2-4 chemical reactions and enzymes
Whenever or when ever
Whenever an interaction occurs in a system
Is amazing how you can speak right to my heart
Radiation examples
What are contending nationalist loyalties
An interaction occurs whenever:
A leaping frog is an example of which type of motion
I will follow you wherever you blank
Whenever there is too little friction or traction
Conflict occurs whenever
An interaction occurs whenever:
Urgent move emt
Swabis conjunctions
A current is said to exist whenever _____.
An interaction occurs when:
Energy of four forces quick check
Your river runs with love for me
