文章分类 -  security

RPM and GPG: How to verify Linux packages before installing them
摘要:copy from : https://www.redhat.com/sysadmin/rpm-gpg-verify-packages Large and popular RPM repositories are typically replicated around the world. The 阅读全文
posted @ 2024-01-11 10:01 saaspeter 阅读(27) 评论(0) 推荐(0) 编辑
Bell-LaPadula model and Biba model
摘要:这两个安全模型在看cissp osg教材的时候不懂,报的培训班老师也没讲解原理及为什么,直观上,这两个模型就是对立的。看了11 hours cissp书后恍然大悟,这是本好书。摘抄如下: Bell-LaPadula includes the following rules and propertie 阅读全文
posted @ 2023-08-14 10:53 saaspeter 阅读(77) 评论(0) 推荐(0) 编辑
Do Stored Procedures Protect Against SQL Injection?
摘要:copy from: https://learn.microsoft.com/zh-cn/archive/blogs/brian_swan/do-stored-procedures-protect-against-sql-injection When I’ve asked people about 阅读全文
posted @ 2023-03-21 22:27 saaspeter 阅读(29) 评论(0) 推荐(0) 编辑
简单描述Malware的类型
摘要:以下分类是根据CISSP OSG中的分类。 1. Virus: Viruses are self-replicating executable programs that attach themselves to or within another executable file with the 阅读全文
posted @ 2023-03-20 21:08 saaspeter 阅读(48) 评论(0) 推荐(0) 编辑
搬运工:What is a Rootkit?
摘要:from:https://www.fortinet.com/resources/cyberglossary/rootkit Rootkit Definition A common rootkit definition is a type of malware program that enables 阅读全文
posted @ 2023-03-20 16:01 saaspeter 阅读(27) 评论(0) 推荐(0) 编辑
SAML vs OAuth
摘要:一直对这两个的应用场景有所疑惑。参考这个:What is SAML vs OAuth? Find out what's different - Auth0 ,在此记录下。 SAML (Security Assertion Markup Language) is a well-established, 阅读全文
posted @ 2023-03-02 00:39 saaspeter 阅读(53) 评论(0) 推荐(0) 编辑
国内互联网公司进入欧美需要加强网络安全
摘要:转自: https://zhuanlan.zhihu.com/p/598105882 读了最近发生的蔚来数据泄漏的报道:蔚来数据泄漏:黑客有理,车主遭殃 ,感觉国内企业普遍不太重视网络安全及数据的保护,隐私的保护等安全问题。 当我们的造车新势力雄心壮志进军欧美市场的时候,可能会碰到一个下马威(如果他 阅读全文
posted @ 2023-01-12 23:26 saaspeter 阅读(36) 评论(0) 推荐(0) 编辑

点击右上角即可分享
微信分享提示