´ÙÀ½ ÀÌÀü Â÷·Ê

11. º¸¾È °ü·Ã ÀÚ·á.

À¯´Ð½º º¸¾È ÀϹݿ¡ ´ëÇÑ È¤Àº Ưº°È÷ ¸®´ª½º º¸¾È¿¡ ´ëÇÑ ÈǸ¢ÇÑ »çÀÌÆ®µéÀÌ Á¤¸» ¸¹ÀÌ ÀÖ´Ù. Çϳª ÀÌ»óÀÇ º¸¾È °ü·Ã ¸ÞÀϸµ ¸®½ºÆ®¿¡ °¡ÀÔÇØ¼­ ÃÖ½ÅÀÇ º¸¾È ¼öÁ¤ »çÇ×µéÀ» µû¶ó°¡´Â °ÍÀº ¸Å¿ì Áß¿äÇÏ´Ù. ÀÌ·± ¸®½ºÆ®µéÀº ´ë°³ ¸Å¿ì ºÐ·®ÀÌ ÀûÀ¸¸é¼­µµ À¯ÀÍÇÏ´Ù.

11.1 FTP »çÀÌÆ®µé

CERT´Â ÄÄÇ»ÅÍ ÀÀ±Þ ´ëÀÀ ÆÀ(Computer Emergency Response Team)ÀÇ ¾àÀÚ´Ù. À̵éÀº ÃÖ±ÙÀÇ °ø°Ý »ç°Ç°ú ¼öÁ¤»çÇ׵鿡 ´ëÇÑ °æº¸¸¦ ÀÚÁÖ ¹ß¼ÛÇÑ´Ù. cert.org

Replay´Â ¸¹Àº º¸¾È ÇÁ·Î±×·¥µéÀ» ÀúÀåÇϰí ÀÖ´Ù. Replay´Â ¹Ì±¹ ¾È¿¡ ÀÖÁö ¾Ê±â ¶§¹®¿¡ ¹Ì±¹ÀÇ ¼öÃâ Á¦ÇÑ ±ÔÁ¤¿¡ µû¸¦ Çʿ䰡 ¾ø´Ù. replay.com

Matt Blaze´Â CFSÀÇ ÀúÀÚÀ̸ç Ź¿ùÇÑ º¸¾È Àü¹®°¡ÀÌ´Ù. Matt Blaze's stuff

tue.nlÀº ³×´ú¶õµå¿¡ ÀÖ´Â ÈǸ¢ÇÑ º¸¾È °ü·Ã ftp »çÀÌÆ®ÀÌ´Ù. ftp.win.tue.nl

11.2 ±âŸ À¥ »çÀÌÆ®

ÇØÄ¿ FAQ´Â ÇØÄ¿µé¿¡ ´ëÇÑ FAQÀÌ´Ù. The Hacker FAQ

COAST ¾ÆÄ«À̺ê´Â ¸¹Àº À¯´Ð½º º¸¾È ÇÁ·Î±×·¥°ú Á¤º¸¸¦ °¡Áö°í ÀÖ´Ù. COAST

Rootshell.comÀº Å©·¡Ä¿µéÀÌ ¿äÁò ¾²´Â ħÅõ¹æ¹ý¿¡ ´ëÇØ ¾Ë¾Æº¸±â¿¡ ÁÁÀº »çÀÌÆ®ÀÌ´Ù. rootshell.com exploits

BUGTRAQÀº º¸¾È °ü·Ã ¹®Á¦¿¡ ´ëÇÑ »óȲº¸°í¸¦ ¹ßÇ¥ÇÑ´Ù. BUGTRAQ archives

ÄÄÇ»ÅÍ ÀÀ±Þ ´ëÀÀ ÆÀ, CERT´Â À¯´Ð½º ½Ã½ºÅÛ¿¡ ´ëÇØ ÈçÈ÷ °¡ÇØÁö´Â °ø°ÝÀ» º¸°íÇÑ´Ù. CERT home

´í ÆÄ¸Ó (Dan Farmer)´Â SATAN°ú ¸¹Àº ´Ù¸¥ º¸¾È µµ±¸µéÀÇ ÀúÀÚÀ̸ç, ±×ÀÇ È¨ »çÀÌÆ®¿¡´Â º¸¾È µµ±¸µé »Ó ¾Æ´Ï¶ó º¸¾È¿¡ ´ëÇÑ Èï¹Ì·Î¿î °³°ý ±Ûµéµµ ÀÖ´Ù. ´í ÆÄ¸ÓÀÇ trouble.org

¸®´ª½º º¸¾È WWW´Â ¸®´ª½º ½Ã½ºÅÛÀÇ º¸¾È¿¡ ´ëÇÑ ÁÁÀº ÀÚ·á¿øÀÌ´Ù. Linux Security WWW

·¦Å¸ÀÏ (Reptile)ÀÇ °³ÀÎ »çÀÌÆ®¿¡´Â ¸®´ª½º º¸¾È¿¡ °üÇÑ ÁÁÀº Á¤º¸µéÀÌ ¸¹ÀÌ ÀÖ´Ù. Reptiles Linux Security Page

Infilsec¿¡´Â ¾î¶² Ãë¾àÁ¡ÀÌ Æ¯Á¤ÇÑ Ç÷§Æû¿¡ ¿µÇâÀ» ÁÖ´ÂÁö ¾Ë·ÁÁÖ´Â Ãë¾àÁ¡ ¿£Áø(vulnerability engine)ÀÌ ÀÖ´Ù. Infilsec vunerability engine

CIAC´Â ÈçÇÑ Ä§ÀÔ »ç°Çµé¿¡ ´ëÇØ Á¤±âÀûÀÎ º¸¾È º¸°í¼­µéÀ» º¸³»ÁØ´Ù. CIAC bulitins

¸®´ª½º PAM (ÀåÂø½Ä ÀÎÁõ ¸ðµâ: Pluggable Authentication Modules)Àº http://www.kernel.org/pub/linux/libs/pam/.

11.3 ¸ÞÀϸµ ¸®½ºÆ®

¹÷Æ®·¢ (Bugtraq): ¹÷Æ®·¢À» ±¸µ¶ÇÏ·Á¸é, º»¹®¿¡ subscribe bugtraqÀ̶ó°í ½á¼­ listserv@netspace.org·Î ¸ÞÀÏÀ» º¸³»¸é µÈ´Ù. (º¸°üµÈ ³»¿ëÀ» º¸·Á¸é À§ÀÇ ¸µÅ©¸¦ º¸¶ó).

CIAC: º»¹®¿¡ (Á¦¸ñ¿¡ ¸»°í) subscribe ciac-bulletin¶ó°í ½á¼­ majordomo@tholia.llnl.gov¿¡ e-mailÀ» º¸³»¶ó.

11.4 µµ¼­ ¸ñ·Ï

º¸¾È °ü·Ã ¼­ÀûµéÀº Á¤¸» ¸¹ÀÌ ÀÖ´Ù. ÀÌ Ç׿¡¼­´Â ÀÌ·± Ã¥µé °¡¿îµ¥ Á¶±Ý¸¸ ³ª¿­ÇϰíÀÚ ÇÑ´Ù. º¸¾ÈÀ» Àü¹®ÀûÀ¸·Î ´Ù·é Ã¥µé »Ó ¾Æ´Ï¶ó, ½Ã½ºÅÛ °ü¸®¿¡ ´ëÇÑ ¸¹Àº Ã¥µéÀÌ º¸¾È¿¡ ´ëÇØ¼­ ´Ù·ç°í ÀÖ´Ù.

Building Internet Firewalls By D. Brent Chapman & Elizabeth D. Zwicky

1st Edition September 1995

ISBN: 1-56592-124-0

Practical UNIX & Internet Security, 2nd Edition By Simson Garfinkel & Gene Spafford

2nd Edition April 1996

ISBN: 1-56592-148-8

Computer Security Basics By Deborah Russell & G.T. Gangemi, Sr.

1st Edition July 1991

ISBN: 0-937175-71-4

Linux Network Administrator's Guide By Olaf Kirch

1st Edition January 1995

ISBN: 1-56592-087-2

PGP: Pretty Good Privacy By Simson Garfinkel

1st Edition December 1994

ISBN: 1-56592-098-8

Computer Crime A Crimefighter's Handbook By David Icove, Karl Seger & William VonStorch (Consulting Editor Eugene H. Spafford)

1st Edition August 1995

ISBN: 1-56592-086-4


´ÙÀ½ ÀÌÀü Â÷·Ê