22 June 2011

[Securityoverride.com] Forensics Level 1


Bài viết liên quan:

Ngồi luyện forensic tý vậy :))
1. Reg 1 account tại http://securityoverride.com
2. Check mail và thử nghiệm nào

Level 1:



The following is a wireshark trace file of an FTP authentication forensics1.rar.
Find the username and password of the FTP authentication and enter it below to receive credit.
Username:

Password:
The server IP is 192.168.0.1 and client IP is 192.168.0.3
Wireshark is a network protocol analyzer for Unix and Windows and can be downloaded here.
===================================================================
Rồi...
Tải cái Forensic1.rar về xem nào..........




Vấn đê chốt là:

The original FTP specification is an inherently unsecure method of transferring files because there is no method specified for transferring data in an encrypted fashion. This means that under most network configurations, user names, passwords, FTP commands and transferred files can be captured by anyone on the same network using a packet sniffer. This is a problem common to many Internet protocol specifications written prior to the creation of SSL, such as HTTP, SMTP and Telnet. The common solution to this problem is to use either SFTP (SSH File Transfer Protocol), or FTPS (FTP over SSL), which adds SSL or TLS encryption to FTP as specified in RFC 4217.
Ở đây còn 1 số vấn đề nhỏ như port, cơ chế.   . . v.v. Tự Google nhé... :)

0 comments:

Post a Comment

Để lại góp ý của bạn để blog của mình hoàn thiện hơn :))