Sawubona wonke umntu!
Namhlanje ndifuna ukuthetha ngesisombululo selifu sokukhangela kunye nokuhlalutya ubuthathaka beQualys Vulnerability Management, kweyiphi enye yethu .
Ngezantsi ndiza kubonisa indlela ukuskena ngokwayo kuququzelelwe kwaye loluphi ulwazi malunga nobuthathaka obunokufunyanwa ngokusekelwe kwiziphumo.
Yintoni enokuskenwa
Iinkonzo zangaphandle. Ukuskena iinkonzo ezinokufikelela kwi-Intanethi, umxhasi usinika iidilesi zabo ze-IP kunye neempawu (ukuba iskeni kunye nokuqinisekiswa kuyafuneka). Siskena iinkonzo sisebenzisa ilifu le-Qualys kwaye sithumela ingxelo esekelwe kwiziphumo.
Iinkonzo zangaphakathi. Kule meko, iskena sijonga ubuthathaka kwiiseva zangaphakathi kunye neziseko zonxibelelwano. Ukusebenzisa iskena esinjalo, unoluhlu lweenguqulelo zeenkqubo zokusebenza, izicelo, izibuko ezivulekileyo kunye neenkonzo emva kwazo.
Iskena se-Qualys sihlonyelwe ukuskena ngaphakathi kweziseko zoncedo zomthengi. Ilifu le-Qualys lisebenza njengeziko lomyalelo kule scanner apha.
Ukongeza kwiseva yangaphakathi kunye ne-Qualys, ii-agent (I-Agent ye-Cloud) inokufakwa kwizinto eziskeniweyo. Baqokelela ulwazi malunga nenkqubo yendawo kwaye benze phantse akukho mthwalo kuthungelwano okanye iinginginya abasebenza kuzo. Ulwazi olufunyenweyo luthunyelwa kwilifu.
Kukho amanqaku amathathu abalulekileyo apha: ukuqinisekiswa kunye nokukhethwa kwezinto zokuskena.
- Ukusebenzisa uQinisekiso. Abanye abathengi bacela ukuskena ibhokisi emnyama, ngakumbi kwiinkonzo zangaphandle: basinika uluhlu lweedilesi ze-IP ngaphandle kokuchaza inkqubo kwaye bathi "yiba njengehacker." Kodwa abahlaseli abafane benze ngobumfama. Xa kuziwa ekuhlaselweni (kungekhona ukuqaphela), bayayazi into abayiqhekezayo.
Ngokungaboniyo, ii-Qualys zinokukhubeka kwiibhena zenkohliso kwaye ziskene endaweni yenkqubo ekujoliswe kuyo. Kwaye ngaphandle kokuqonda ukuba yintoni kanye kanye eza kuskenwa, kulula ukuphosakela useto lweskena kwaye "ncamathisela" inkonzo ejongwayo.
Ukuskena kuya kuba luncedo ngakumbi ukuba wenza iitshekhi zoqinisekiso phambi kweenkqubo eziskenwayo (ibhokisi emhlophe). Ngale ndlela iskena siya kuqonda apho sivela khona, kwaye uya kufumana idatha epheleleyo malunga nobuthathaka benkqubo ekujoliswe kuyo.
I-Qualys ineenketho ezininzi zokuqinisekisa. - Ii-asethi zeqela. Ukuba uqala ukuskena yonke into kanye kwaye ungakhethi, kuya kuthatha ixesha elide kwaye wenze umthwalo ongeyomfuneko kwiinkqubo. Kungcono ukuqokelela amaqela kunye neenkonzo ngokwamaqela ngokusekelwe kukubaluleka, indawo, uguqulelo lwe-OS, ukubaluleka kweziseko ezingundoqo kunye nezinye iimpawu (kwi-Qualys zibizwa ngokuba ngamaQela e-Asethi kunye neeTagi ze-Asethi) kwaye ukhethe iqela elithile xa uskena.
- Khetha ifestile yobugcisa ukuskena. Nokuba sele ucingile kwaye ulungiselele, ukuskena kudala uxinzelelo olongezelelweyo kwinkqubo. Akuyi kubangela ukuthotywa kwenkonzo, kodwa kungcono ukhethe ixesha elithile kuyo, njenge-backup okanye i-rollover yohlaziyo.
Unokufunda ntoni kwezi ngxelo?
Ngokusekelwe kwiziphumo zokuskena, umxhasi ufumana ingxelo engayi kuqulatha kuphela uluhlu lwabo bonke ubuthathaka obufunyenweyo, kodwa kunye neengcebiso ezisisiseko zokuzisusa: uhlaziyo, amabala, njl. njl. ungazenzela eyakho. Ukuze ungabhideki kuzo zonke iiyantlukwano, kungcono ukuba uqale uzigqibele ngala manqaku alandelayo:
- Ngubani oza kujonga le ngxelo: umphathi okanye ingcali yezobugcisa?
- loluphi ulwazi ofuna ukulufumana kwiziphumo zokuskena? Umzekelo, ukuba ufuna ukufumanisa ukuba zonke iipatches eziyimfuneko zifakiwe kunye nendlela umsebenzi owenziwa ngayo ukuphelisa ubuthathaka obufunyenwe ngaphambili, le yingxelo enye. Ukuba ufuna nje ukuthatha uluhlu lwazo zonke iinginginya, ngoko enye.
Ukuba umsebenzi wakho kukubonisa umfanekiso omfutshane kodwa ocacileyo kubaphathi, ngoko unako ukwenza Ingxelo yeSigqeba. Bonke ubuthathaka buya kuhlelwa ngokweeshelufa, amanqanaba okubaluleka, iigrafu kunye nedayagramu. Umzekelo, ubuthathaka obuphezulu abali-10 okanye obona buthathaka buqhelekileyo.
Kuba igcisa likhona Ingxelo yobugcisa nazo zonke iinkcukacha kunye neenkcukacha. Ezi ngxelo zilandelayo zinokwenziwa:
Ingxelo yababuki zindwendwe. Into eluncedo xa ufuna ukuthatha uluhlu lwezibonelelo zakho kwaye ufumane umfanekiso opheleleyo wobuthathaka bomkhosi.
Yile nto uluhlu lweenginginya ezihlalutyiweyo lujongeka ngathi, lubonisa i-OS esebenza kubo.
Masivule umkhosi womdla kwaye sibone uluhlu lwe-219 yobuthathaka efunyenweyo, ukuqala kowona ubalulekileyo, inqanaba lesihlanu:
Emva koko unokubona iinkcukacha zobuthathaka ngamnye. Apha sibona:
- xa ubuthathaka bufunyenwe okokuqala nelokugqibela,
- amanani okuba semngciphekweni kwimizi-mveliso,
- isiqwenga ukuphelisa ukuba sesichengeni,
- ingaba zikhona naziphi na iingxaki zokuthotyelwa kwe-PCI DSS, NIST, njl.,
- kukho ukuxhaphaza kunye ne-malware kobu buthathaka,
- bubuthathaka obufunyenweyo xa uskenwa nge/ngaphandle koqinisekiso kwinkqubo, njl.
Ukuba oku akusiyo iskena sokuqala - ewe, kufuneka uhlolisise rhoqo π - ngoko ngoncedo Ingxelo yoMkhwa Uyakwazi ukulandelela amandla okusebenza kunye nobuthathaka. Ubume bobuthathaka buya kuboniswa xa kuthelekiswa nokuskena kwangaphambili: ubuthathaka obufunyenwe ngaphambili kwaye buvaliwe buya kuphawulwa njengento esisigxina, engavalwanga - esebenzayo, emitsha - emitsha.
Ingxelo yokuba sesichengeni. Kule ngxelo, i-Qualys iya kwakha uluhlu lobuthathaka, iqala ngeyona nto ibalulekileyo, ebonisa ukuba ngowuphi umamkeli oza kubamba obu buthathaka. Ingxelo iya kuba luncedo ukuba uthatha isigqibo sokuqonda ngokukhawuleza, umzekelo, bonke ubuthathaka benqanaba lesihlanu.
Unokwenza ingxelo eyahlukileyo kuphela kubuthathaka benqanaba lesine nelesihlanu.
Ingxelo yePatch. Apha ungabona uluhlu olupheleleyo lweepatches ezifuna ukufakwa ukuphelisa ubuthathaka obufunyenweyo. Kwipetshi nganye kukho inkcazo yokuba bubuphi ubuthathaka obulungisayo, apho inginginya / inkqubo ekufuneka ifakwe kuyo, kunye nekhonkco lokukhuphela ngokuthe ngqo.
Ingxelo yokuThotyelwa kwePCI DSS. Umgangatho we-PCI DSS ufuna ukuskena iinkqubo zolwazi kunye nezicelo ezifumaneka kwi-Intanethi rhoqo ngeentsuku ezingama-90. Emva kokuskena, unokuvelisa ingxelo eya kubonisa ukuba yintoni na isiseko esingahlangabezani neemfuno zomgangatho.
IiNgxelo zokuLungisa ukuba semngciphekweni. I-Qualys inokudityaniswa nedesika yenkonzo, kwaye ke bonke ubuthathaka obufunyenweyo baya kuguqulelwa ngokuzenzekelayo kumatikiti. Usebenzisa le ngxelo, unokulandelela inkqubela kumatikiti agqityiweyo kunye nobuthathaka obusombululweyo.
Vula iingxelo zezibuko. Apha ungafumana ulwazi kumazibuko avulekileyo kunye neenkonzo ezisebenza kuwo:
okanye uvelise ingxelo malunga nobuthathaka kwizibuko ngalinye:
Ezi zizifanekiso nje zengxelo eziqhelekileyo. Unokwenza eyakho imisebenzi ethile, umzekelo, bonisa kuphela ubuthathaka obungekho ngaphantsi kwenqanaba lesihlanu lokugxeka. Zonke iingxelo ziyafumaneka. Ifomathi yengxelo: CSV, XML, HTML, PDF and docx.
Kwaye khumbula: Ukhuseleko aluyosiphumo, kodwa yinkqubo. Ukuskena ngexesha elinye kunceda ukubona iingxaki ngeli xesha, kodwa oku akukho malunga nenkqubo yokulawula ubuthathaka obupheleleyo.
Ukwenza kube lula kuwe ukuba wenze isigqibo ngalo msebenzi wesiqhelo, senze inkonzo esekelwe kuLawulo lwe-Qualys Vulnerability.
Kukho unyuso kubo bonke abafundi beHabr: Xa u-odola inkonzo yokuskena unyaka, iinyanga ezimbini zokuskena zisimahla. Izicelo zinokushiywa , kwindawo ethi βAmagqabantshintshiβ bhala uHabr.
umthombo: www.habr.com