原文出处:http://luckiss.blogcn.com/diary,15268145.shtml
以下网址是用于测试你的系统跟浏览器的安全性网站,
http://www.pcflank.com/test.htm
我以下测试均在不开任何防火墙和防病毒的ubuntu8.04默认设置下进行:
1。首先是普通的木马和浏览器的测试,以下是测试后结果图片:
以下是详细分析:
Check for vulnerabilities of your computer system to remote attacks
We have scanned your system for open ports and for ports visible to others on the Internet. As a rule an open port means your computer is vulnerable to attacks by crackers. They gain access to your computer and its files through these open ports.
At Risk!
Warning!
The test found visible port(s) on your system: 21, 23, 80, 135, 137, 138, 139, 1080, 3128
Recommendation:
Install personal firewall software. PC Flank recommends Outpost Firewall Pro.
If you have already installed and are using a firewall, check if it is set to make all the ports of your computer invisible (hidden). If it is, then get new firewall software and redo this test.
Trojan horse check
The test scanned your system to find signs of a Trojan. If a Trojan horse is on your computer a cracker can access your system's files and your personal data.
At Risk!
Warning!
The test found visible ports on your system: 27374, 12345, 1243, 31337, 12348.
The following Trojans use these ports: SubSeven, NetBus, SubSeven, Back Orifice, BioNet
Although these ports are visible, they are not open, so your system is not infected. However, having visible ports on your system means your computer can be "seen" over the Internet. This makes it very easy for skillful intruders to explore your system.
Recommendation:
Install personal firewall software and use an anti-Trojan program. Anti-trojans to consider are: The Cleaner, PestPatrol or Tauscan.
If you have a firewall, check if it is set to make all your computer ports invisible (hidden). If it is, then it failed miserably. Replace it and redo this test.
Browser privacy check
The test checked if your web browser reveals any private information while you visit Web sites. Usually such information is: the last site visited, your locale and who your Internet Service Provider is.
Danger!
Danger!
While visiting web sites your browser reveals private information about you and your computer. It sends information about previous sites you have visited. It may also save special cookies on your hard drive that have the purpose of directing advertising or finding out your habits while web surfing.
Recommendation:
We advise you to get personal firewall software. If you already have a firewall program adjust it to block the distribution of such information.
To compare your results to results of other users click on "Overall Stats".
2。然后进行溢出攻击测试
测试结果:
然后我再打开Firestarter防火墙对两个项目再测试一次:
1。首先是普通的木马和浏览器的测试结果:
Check for vulnerabilities of your computer system to remote attacks
We have scanned your system for open ports and for ports visible to others on the Internet. As a rule an open port means your computer is vulnerable to attacks by crackers. They gain access to your computer and its files through these open ports.
Safe
Safe!
Trojan horse check
The test scanned your system to find signs of a Trojan. If a Trojan horse is on your computer a cracker can access your system's files and your personal data.
Safe
Safe!
There is no evidence of a Trojan horse on your system.
Recommendation:
The absence of a Trojan horse on your system does not mean this problem cannot happen, of course. Anti-virus and/or anti-Trojan software should be installed and used on your system. Anti-trojans to consider are: The Cleaner, PestPatrol or Tauscan.
If you already use this type of software on your system, its virus definitions (virus database) should regularly be updated.
Browser privacy check
The test checked if your web browser reveals any private information while you visit Web sites. Usually such information is: the last site visited, your locale and who your Internet Service Provider is.
Danger!
Danger!
While visiting web sites your browser reveals private information about you and your computer. It sends information about previous sites you have visited. It may also save special cookies on your hard drive that have the purpose of directing advertising or finding out your habits while web surfing.
Recommendation:
We advise you to get personal firewall software. If you already have a firewall program adjust it to block the distribution of such information.
To compare your results to results of other users click on "Overall Stats".
2。然后进行溢出攻击测试
测试结果同样:
总结:
1。ubuntu8.04系统的默认配置安全性还是比较高的,在没开防火墙之前有几个端口被扫描出可以被
利用,在这里我需要说明一下:像subseven跟mysql服务是自己需要使用到,默认的ubuntu8。04是没有开
放这些端口的,对于溢出攻击8.04系统也表现出很高的安全性。如果大家对ubuntu8。04的端口开放还
不放心,最简单的方法是推荐大家使用Firestarter防火墙,至于使用IP tables来进行防范,对于新手来
说我觉得没有必要,当然大家有兴趣还是可以学习一下
2。目前系统最大的安全问题应该还是在浏览器的安全性问题上,ubuntu8.04的默认浏览器是firefox3.0
beta5 ,很明显无论是否打开防火墙,浏览器的安全性还是处于Danger的不及格水平,在浏览器安全性
的提高方面我会继续研究,到时会再继续告诉大家,但我想对大家说的是如果连firefox3.0 beta5都处于
Danger的水平,ie的安全性就更加值得怀疑了。
