Kulokhu okuthunyelwe, sizozama ukuqondisa abafundi bethu emibonweni eyiphutha evamile mayelana nokuphepha kwamaseva abonakalayo futhi sisitshele ukuthi singawavikela kanjani kahle amafu abo aqashiwe ekupheleni kuka-2019. I-athikili ihloselwe ikakhulukazi amakhasimende ethu amasha nangase abe khona, ikakhulukazi lawo asanda kuthenga noma afuna ukuthenga , kodwa abakazazi kakhulu izindaba ze-cybersecurity kanye nokusebenza kwe-VPS. Sithemba ukuthi abasebenzisi abanolwazi bazoyithola iwusizo ngandlela-thile.
Izindlela Ezine Ezingalungile Zokuvikeleka Kwamafu
Kunemibono, evame kakhulu phakathi kwabanikazi bamabhizinisi nabaphathi (siyigqamisa ngokugqamile), lokho ukuqinisekisa ukuvikeleka kwe-cybersecurity kwezinsizakalo zamafu kuyinto yokuqala engadingekile, njengoba amafu ephephile (1), noma lona umsebenzi womhlinzeki wamafu: Ngikhokhele i-VPS - okusho ukuthi yonke into kufanele ilungiswe, ivikeleke futhi isebenze ngaphandle kwezinkinga (2). Kukhona nombono wesithathu, ojwayelekile kubo bobabili ochwepheshe bezokuphepha kolwazi kanye nosomabhizinisi: amafu ayingozi! Awekho amathuluzi okuvikela aziwayo anganikeza ukuvikeleka okwanele kwezindawo ezibonakalayo (3) — abaholi bamabhizinisi abanale ndlela balahla ubuchwepheshe bamafu ngenxa yokungathembani noma ukungaqondi kahle umehluko phakathi kwamathuluzi okuvikela endabuko nakhethekile (okuningi kuwo ngezansi). Isigaba sesine sezakhamizi siyakukholelwa lokho yebo, kufanele uvikele ingqalasizinda yakho yefu, ngoba kukhona ama-antivirus ajwayelekile (4).
Zonke lezi zindlela ezine azilungile - zingaletha ukulahlekelwa (ngaphandle kwendlela yokungasebenzisi nhlobo amaseva abonakalayo, kodwa nalapha akufanele udebeselele i-postulate yebhizinisi "inzuzo elahlekile nayo iwukulahlekelwa"). Ukukhombisa izibalo ngezinga elithile, nansi isicaphuna esivela embikweni we-Kaspersky Lab corporate support support professional uVladimir Ostroverkhov, thina ehlobo lika-2017. Ngaleso sikhathi, uKaspersky wenza ucwaningo phakathi kwezinkampani eziyizinkulungwane ezinhlanu ezivela emazweni angu-25 - lezi yizinkampani ezinkulu ezinabasebenzi abayizinkulungwane eziyinkulungwane nengxenye. U-75% wabo usebenzisa i-virtualization kodwa abafaki imali kwezokuphepha. Inkinga ayikalahlekelwa ukuhambisana kwayo namuhla:
“Cishe ingxenye yezinkampani [ezinkulu] ayisebenzisi noma isiphi isivikelo emishinini ebonakalayo, kanti enye ingxenye ikholelwa ukuthi noma iyiphi i-antivirus evamile iyokwanela. Zonke lezi zinkampani [ngasinye] zichitha ngokwesilinganiso cishe izigidi zamarandi [ngonyaka] ukuze ululame ngemva kwezigameko: uphenyo, ukubuyiselwa kwesistimu, ukunxeshezelwa kwezindleko, ukunxeshezelwa kokulahlekelwa okuvela ekugegeleni okukodwa... Ziyoba yini izindleko zabo uma beziyekethisa? Ukulahlekelwa okuqondile kokubuyiselwa, ukushintshwa kwemishini, isofthiwe... Ukulahlekelwa okungaqondile - idumela... Ukulahlekelwa kwesinxephezelo samakhasimende awo, okuhlanganisa isithunzi... Futhi nophenyo lwezehlakalo, ukushintshwa kwengqalasizinda ingxenye, ngoba isivele izifake ebucayini, lezi yizingxoxo nohulumeni, lokhu kuyizingxoxo nezinkampani zomshwalense, izingxoxo namakhasimende okufanele akhokhe isinxephezelo.”
Kungani lezi zindlela zingasebenzi
Indlela 1: Amafu aphephile, awadingi ukuvikelwa. Cishe izingcezu eziyizinkulungwane ezingama-240 zohlelo olungayilungele ikhompuyutha ezibonakala nsuku zonke ziphila kahle ngaphakathi kwamafu: kusukela kukhodi elula ebhalwe ingane yesikole futhi yafakwa ku-inthanethi (okusho ukuthi ingalimaza idatha) kuya ekuhlaselweni okuyinkimbinkimbi okuhlosiwe okwenzelwe izinhlangano ezithile, izimo nezimo zinhle kakhulu hhayi nje kuphela ukwephula kanye nokweba idatha, kodwa futhi "ukufihla" ngokwabo. Ingqalasizinda ebonakalayo nayo iyathakazelisa kubaduni: kulula kakhulu ukugebenga futhi uthole ukufinyelela kuyo yonke imishini yakho ebonakalayo kanye nedatha ngesikhathi esisodwa, kunokuzama ukugebenga iseva yomzimba ngayinye ngokuhlukana. Futhi, kufanelekile ukucabangela ukuthi ngaphakathi kwengqalasizinda ebonakalayo, ikhodi enonya isakazeka ngesivinini esikhulu - amashumi ezinkulungwane zemishini angangenwa ngemizuzu eyishumi, okulingana nobhubhane (bona lokhu okushiwo ngenhla. ). Izinhlelo ezinonya nemisebenzi ye-ransomware enomthelela ekuvuzeni kwedatha yenkampani cishe ngama-27% yenani eliphelele “lezingozi” zamafu. Ubungozi obukhulu emafini: ukuxhumana okungavikelekile nokufinyelela okungagunyaziwe - cishe u-80% usuwonke (ngokocwaningo ngosizo oluvela ku-Check Point Software Technologies Ltd. ungumhlinzeki oholayo wezixazululo ze-cybersecurity kohulumeni namabhizinisi emhlabeni jikelele.
Indlela yesi-2: Ukuvikela ingqalasizinda yamafu kuwumthwalo womhlinzeki we-VPS. Lokhu kuyiqiniso ngokwengxenye, ngoba umhlinzeki weseva ebonakalayo uyakukhathalela ukuzinza kwezinhlelo zayo kanye nezinga eliphakeme ngokwanele lokuvikelwa kwezingxenye eziyinhloko zamafu: amaseva, amadivaysi okugcina, amanethiwekhi, ukwenziwa kwezinto ezibonakalayo (okulawulwa yisivumelwano sezinga lesevisi, i-SLA) . Kodwa akudingeki akhathazeke ngokuvimbela izinsongo zangaphakathi nezangaphandle ezingase zivele kungqalasizinda yamafu yeklayenti. Ake sizivumele isifaniso samazinyo lapha. Njengoba selikhokhe ngisho nemali eningi ngokufakelwa okuhle, iklayenti lomtholampilo wamazinyo liyaqonda ukuthi ukusebenza kahle kwe-prosthesis kuncike kakhulu kuye (iklayenti). Udokotela wamazinyo, ngakolunye uhlangothi, wenza konke okudingekayo mayelana nokuphepha: wakhetha izinto ezisezingeni eliphezulu, "wanamathisela" ngokuthembekile ukufakelwa, akazange aphazamise ukulunywa, welapha izinsini ngemva kokuhlinzwa, njll. Futhi uma umsebenzisi ayilandeli imithetho yenhlanzeko esikhathini esizayo, kuzoba, isibonelo, , vula izigqoko zebhodlela zensimbi ngamazinyo akho futhi wenze ezinye izenzo ezifanayo ezingaphephile, ngeke kwenzeke ukuqinisekisa ukusebenza kahle kwezinyo elisha. Indaba efanayo iyasebenza ekuqinisekiseni ukuphepha kwamafu okungu-100% ku-VPS eqashwe kumhlinzeki. "Ngaphandle kwegunya" lomhlinzeki wesevisi yefu, ukuvikela idatha yeklayenti kanye nezinhlelo zokusebenza kuwumthwalo wakhe siqu.
Indlela 3: Awekho amathuluzi okuvikela anganikeza ukuvikeleka okwanele kwezindawo ezibonakalayo. Lutho neze. Kunezixazululo ezikhethekile zokuphepha kwamafu, esizoxoxa ngazo engxenyeni yokugcina ye-athikili.
Indlela yesi-4: Ukusebenzisa isivikeli magciwane esijwayelekile (ukuvikelwa kwendabuko). Kubalulekile ukwazi lapha ukuthi amathuluzi okuvikela endabuko wonke umuntu ajwayele ukuwasebenzisa kumakhompuyutha endawo awaklanyelwe izindawo ezibonakalayo ezisabalalisiwe (“awaboni” ukuthi ukuxhumana kwenzeka kanjani phakathi kwemishini ebonakalayo) futhi awavikeli ingqalasizinda ebonakalayo yangaphakathi kusuka. imizamo yokugebenga yangaphakathi. Kalula nje, isofthiwe ye-antivirus evamile ayisebenzi efwini. Ngasikhathi sinye, ezifakwe ku-WM ngayinye, zisebenzisa inani elikhulu lezinsiza ze-ecosystem yonke lapho zihlola amagciwane nezibuyekezo, "zimosha" inethiwekhi futhi zinciphisa umsebenzi wenkampani, kodwa ngenxa yalokho, zinikeza cishe Ukusebenza kahle kwe-zero emsebenzini wabo oyinhloko.
Ezigabeni ezimbili ezilandelayo ze-athikili, sizobhala ukuthi yiziphi izingozi ezingavela lapho inkampani isebenza emafini (eyimfihlo, yomphakathi, exubile) futhi sikutshele ukuthi lezi zingozi zingagwenywa kanjani futhi kufanele zigwenywe ngendlela efanele.
Izingozi ezihlala zisongela izinsiza zamafu
▍ Ukuhlaselwa kwenethiwekhi yesilawuli kude
Lolu uhlobo oluhlukene lomthelela olimazayo wolwazi ohlelweni lwekhompiyutha esabalalisiwe, olwenziwa ngokuhlelwa ngamashaneli okuxhumana ukuze kuzuzwe izinjongo ezihlukene. Okuvame kakhulu kubo:
- Ukuhlasela kwe-DDoS (). Ukuthunyelwa okukhulu kwezicelo zolwazi kuseva ngenhloso yokusebenzisa izinsiza noma umkhawulokudonsa ohlelweni oluhlaselwe ukuze kucishwe uhlelo oluqondiwe, ngaleyo ndlela kudale umonakalo enkampanini. Isetshenziswa izimbangi njengenkonzo yangokwezifiso, abaphangi, izishoshovu zezepolitiki kanye nohulumeni ukuthola izinzuzo zezepolitiki. Ukuhlaselwa okunjalo kwenziwa kusetshenziswa i-botnet - inethiwekhi yamakhompiyutha ane-bots efakwe kuwo (isoftware engase ibe namagciwane, izinhlelo zokulawula ikhompyutha okude namathuluzi okufihla ku-OS), asetshenziswa abaduni bekude ukusabalalisa ugaxekile kanye ne-ransomware. . Funda okwengeziwe kokuthunyelwe kwethu .
- Izikhukhula ze-Ping - ukubangela ukugcwala komugqa.
- I-Ping Yokufa - ukubangela ukuqandisa, ukuqalisa kabusha kanye nokuphahlazeka kwesistimu.
- Ukuhlaselwa kwezinga lohlelo lokusebenza — ukuthola ukufinyelela kukhompuyutha evumela ukuthi izinhlelo zokusebenza zethulwe i-akhawunti ethile (uhlelo olukhethekile).
- Ukuhlukaniswa kwedatha — ngokuvalwa kohlelo oluphuthumayo ngenxa yokuchichima kwebuffer yesoftware.
- Ama-Autorooters - ukwenza ngokuzenzakalelayo inqubo yokugebenga ngokuskena inani elikhulu lamasistimu ngesikhathi esifushane ngokufaka i-rootkit.
- Ukuhogela — ukulalela isiteshi.
- Ukubekwa kwephakheji - ukushintshela kukhompuyutha yakho ukuxhumana okusungulwe phakathi kwamanye amakhompyutha.
- Ukuhlukaniswa kwephakethe kumzila - ukuthola amaphasiwedi omsebenzisi nolwazi oluvela ku-imeyili.
- I-IP spoofing - ukuze i-hacker ngaphakathi noma ngaphandle kwenethiwekhi ikwazi ukuzenza ikhompuyutha engathenjelwa. Lokhu kwenziwa ngokusebenzisa i-IP address spoofing.
- Brute force attack (brute force) - ukukhetha igama eliyimfihlo ngokuzama izinhlanganisela. Basebenzisa ubungozi ku-RDP ne-SSH.
- I-Smurf — ukunciphisa ukusebenza kwesiteshi sokuxhumana kanye/noma ukuhlukanisa ngokuphelele inethiwekhi ehlaselwe.
- I-DNS spoofing — ukulimaza ubuqotho bedatha ohlelweni lwe-DNS “ngokufaka ubuthi” inqolobane ye-DNS.
- Ukwethenjwa komsingathi — ukuze ukwazi ukuqhuba iseshini neseva egameni lomsingathi othembekile.
- Izikhukhula ze-TCP SYN — ukuchichima imemori yeseva.
- Indoda-phakathi - ngokuntshontshwa kolwazi, ukuhlanekezelwa kwedatha edluliswayo, ukuhlaselwa kwe-DoS, ukugetshengwa kweseshini yamanje yokuxhumana ukuze kufinyelelwe ezinsizeni zenethiwekhi yangasese, ukuhlaziywa kwethrafikhi ukuze kutholwe ulwazi mayelana nenethiwekhi nabasebenzisi bayo.
- Ubuhlakani benethiwekhi — ukufunda ulwazi mayelana nenethiwekhi nezinhlelo zokusebenza ezisebenza kubasingathi ngaphambi kokuhlasela.
- Ukuqondisa kabusha imbobo wuhlobo lokuhlasela olusebenzisa umsingathi osengozini ukuze kudlule ithrafikhi ngohlelo lokuvikela. Isibonelo, uma i-firewall ixhunywe kubasingathi abathathu (izinsizakalo zangaphandle, zangaphakathi, nezomphakathi), khona-ke umsingathi wangaphandle uyakwazi ukuxhumana nomsingathi wangaphakathi ngokudlulisela izimbobo kumsingathi wezinsizakalo zomphakathi.
- Themba ukuxhashazwa - ukuhlaselwa okwenzeka lapho othile esebenzisa ubudlelwano obuthenjwayo ngaphakathi kwenethiwekhi. Isibonelo, ukugebenga isistimu eyodwa ngaphakathi kwenethiwekhi yezinkampani (amaseva e-HTTP, i-DNS, i-SMTP) kungaholela ekugetshengeni amanye amasistimu.
▍ Ubunjiniyela bezenhlalo
- Ubugebengu bokweba imininingwane ebucayi — ukuthola ulwazi oluyimfihlo (amaphasiwedi, izinombolo zekhadi lasebhange, njll.) ngokuthumela ama-imeyili egameni lezinhlangano ezaziwayo namabhange.
- Ukuhogela iphakethe (Ama-packet sniffers) - ukuthola ukufinyelela olwazini olubalulekile, okuhlanganisa namagama ayimfihlo. Iphumelela kakhulu ngenxa yokuthi abasebenzisi bavamise ukusebenzisa kabusha igama labo lomsebenzisi nephasiwedi ukuze bathole ukufinyelela kuzinhlelo zokusebenza namasistimu ahlukahlukene. Ngale ndlela, i-hacker ingathola ukufinyelela ku-akhawunti yomsebenzisi wesistimu futhi idale i-akhawunti entsha ngayo ukuze ibe nokufinyelela kunethiwekhi nezinsiza zayo nganoma yisiphi isikhathi.
- Ukuziphendulela - ukuhlasela okubhaliwe kusetshenziswa ukuxhumana kwezwi, inhloso yakho ukuphoqa isisulu ukuthi senze isenzo.
- Ihhashi leTrojan - inqubo esekelwe emizweni yesisulu: ukwesaba, ilukuluku. Uhlelo olungayilungele ikhompuyutha ngokuvamile lutholakala njengokunamathiselwe kwe-imeyili.
- Quid mayelana ne-quo (bese ngenxa yalokhu, i-quid pro quo) - umhlaseli uxhumana nawe ngocingo lwenkampani noma i-imeyili ngaphansi kwesithunzi somsebenzi wosekelo lwezobuchwepheshe, ubika izinkinga kukhompuyutha yesisulu futhi ethembisa ukuzixazulula. Umgomo ukufaka isofthiwe futhi ukhiphe imiyalo enonya kule khompyutha.
- I-apula lomgwaqo - ukutshala imidiya yesitoreji esinegciwane ezindaweni zomphakathi ezinkampani (i-flash drive endlini yangasese, idiski ku-elevator), ifakwe imibhalo eqoshiwe evusa ilukuluku.
- Ukuqoqa ulwazi ezinkundleni zokuxhumana.
▍Imisebenzi
Noma ikuphi ukuhlasela okungekho emthethweni nokungagunyaziwe okuhloselwe ukuthola idatha, ukuphazamisa ukusebenza kwesistimu, noma ukubamba ukulawula uhlelo kubizwa nge-exploit. Zibangelwa amaphutha enqubweni yokuthuthukiswa kwesofthiwe, ngenxa yalokho kuvela ubuthakathaka ohlelweni lokuvikela uhlelo, olusetshenziswa ngempumelelo izigebengu ze-inthanethi ukuze zithole ukufinyelela okungenamkhawulo ohlelweni ngokwalo, futhi ngalo kukhompyutha yonke futhi kuqhubekele phambili. inethiwekhi yemishini.
▍Ukuphazamiseka kwama-akhawunti
Ukugetshengwa kwe-akhawunti yesisebenzi senkampani ngumuntu wangaphandle ukuze kufinyelelwe olwazini oluvikelwe: kusukela ekubambeni ulwazi (okuhlanganisa nomsindo) nokhiye ngohlelo olungayilungele ikhompuyutha ukuya ekungeneni endaweni yokugcina impahla yesiphathi solwazi.
▍Ukuphazamiseka kwezindawo zokugcina
Ukutheleleka kwamaseva okugcina izifaki zesofthiwe, ukubuyekezwa nemitapo yolwazi.
▍Izingozi zangaphakathi zenkampani
Lokhu kubandakanya ukuputshuka kolwazi ngenxa yephutha labasebenzi benkampani ngokwabo. Lokhu kungaba ubudedengu obulula noma izenzo ezinonya zangamabomu: kusukela ekucekeleni phansi ngamabomu izinqubomgomo zokuphepha zokuphatha kuye ekuthengisweni kolwazi oluyimfihlo kubantu besithathu. Lokhu kungase futhi kubandakanye ukufinyelela okungagunyaziwe, izixhumanisi zokusebenzelana ezingavikelekile, ukulungisa kabi izinkundla zamafu, nokufakwa/ukusetshenziswa kwezinhlelo zokusebenza ezingagunyaziwe.
Manje ake sibheke ukuthi ungaluvimbela kanjani uhlu olubanzi (futhi olukude noluphelele) lwezinkinga zokuphepha zamafu.
Izixazululo zesimanje zokuphepha zamafu ezikhethekile
Yonke ingqalasizinda yamafu idinga ukuvikeleka okuphelele, okunezendlalelo eziningi. Izindlela ezichazwe ngezansi zizokusiza ukuthi uqonde ukuthi iphakheji yokuphepha yamafu kufanele ibe yini.
▍Ama-antivirus
Kubalulekile ukukhumbula ukuthi noma iyiphi i-antivirus yendabuko ngeke ithembeke lapho uzama ukunikeza ukuphepha kwamafu. Udinga ukusebenzisa isixazululo esiklanyelwe ngokukhethekile izindawo ezibonakalayo kanye namafu, futhi ukufakwa kwayo nakho kunemithetho yayo kulokhu. Namuhla, kunezindlela ezimbili zokuqinisekisa ukuphepha kwamafu usebenzisa ama-antivirus akhethekile anezingxenye eziningi athuthukiswe kusetshenziswa ubuchwepheshe bakamuva: ukuvikela okungenamenzeli kanye nokuvikela i-ejenti elula.
Isivikelo esingena-agent. Kuthuthukiswe yi-VMware futhi kungenzeka kuphela ngezixazululo zayo. Imishini emibili eyengeziwe ebonakalayo isetshenziswa kuseva ebonakalayo enemishini ebonakalayo: Iseva Yokuphepha (SVM) kanye Nesivimbeli Sokuhlasela Kwenethiwekhi (NAB). Akukho lutho olubekwe ngaphakathi komunye nomunye wabo. I-antivirus kernel kuphela efakwe ku-SVM - idivayisi yokuphepha ezinikele. Emshinini we-NAB, le ngxenye inomthwalo wemfanelo kuphela wokuqinisekisa ukuxhumana phakathi kwemishini ebonakalayo nokuthi kwenzekani ku-ecosystem (kanye nokuxhumana nobuchwepheshe be-NSX). Le SVM ihlola yonke ithrafikhi ezayo kuseva ebonakalayo. Yakha iqoqo lezinqumo, ezitholakala kuyo yonke imishini ebonakalayo yokuvikela ngokusebenzisa inqolobane yesinqumo esivamile. Umshini ngamunye wokuvikeleka obonakalayo ufinyelela leli chibi kuqala, esikhundleni sokuskena lonke uhlelo - lesi simiso sikuvumela ukuthi unciphise izindleko zensiza futhi usheshise ukusebenza kwe-ecosystem.
Ukuvikelwa nge-ejenti yokukhanya. Ithuthukiswe nguKaspersky futhi ayinayo imikhawulo ye-VMware. Njengokuvikeleka okungenamsebenzi, injini ye-antivirus ifakiwe ku-SVM, kodwa ngokungafani nayo, kukhona ne-ejenti engasindi efakwe ngaphakathi kwe-WM ngayinye. I-ejenti akenzi ukuhlola, kodwa iqapha kuphela yonke into eyenzekayo ngaphakathi kwe-WM yomdabu ngokusekelwe kubuchwepheshe benethiwekhi yokuzifundela. Lobu buchwepheshe bukhumbula ukulandelana okufanele kwezinhlelo zokusebenza; Lapho ubhekene neqiniso lokuthi ukulandelana kwezenzo zohlelo lokusebenza ngaphakathi kwe-WM akwenzeki ngendlela efanele, kuyayivimba.
Okuningi mayelana , kodwa mayelana nendlela yokufaka isivikelo se-anti-virus nge-ejenti yokukhanya yeseva yakho ebonakalayo, (ngezansi kwekhasi kukhona abathintwayo bosekelo lwezobuchwepheshe obungama-24/7 uma unemibuzo).
▍ Ukuhlanganiswa namasevisi ukuvimbela noma ukulungisa izinkinga zokuphepha kwamafu
- Shintsha izinkundla zokuphatha. Lawa ngamasevisi afakazelwe asekela izinqubo ze-ITSM eziwumgogodla wenkampani, okuhlanganisa nokuvikeleka kwe-IT nezigameko. Ngokwesibonelo, ServiceNow, Remedy, JIRA.
- Amathuluzi okuskena okuphepha. Ngokwesibonelo, Rapid7, Qualys, Tenable.
- Amathuluzi okuphatha ukucushwa. Zikuvumela ukuthi wenze ngokuzenzakalelayo ukusebenza kwamaseva futhi ngokwenza kube lula ukusetha nokugcinwa kwamashumi, amakhulu ngisho nezinkulungwane zamaseva ezingasatshalaliswa emhlabeni wonke. Isibonelo, i-TrueSight Server Automation, i-IBM BigFix, i-TrueSight Vulnerability Manager, i-Chef, i-Puppet.
- Vikela amathuluzi okuphatha isexwayiso. Ikuvumela ukuthi unikeze isevisi eqhubekayo futhi uqhubeke uqaphe isimo phakathi nezigameko, unikeze ukusekelwa okunekhono kokuhlanganiswa kwefoni, imilayezo, ne-imeyili (Ngokusho kwe-Cisco, ngaphezu kuka-85% wemilayezo ye-imeyili ibingogaxekile ngoJulayi 2019, okungenzeka ukuthi iqukethe uhlelo olungayilungele ikhompuyutha, imizamo yobugebengu bokweba imininingwane ebucayi, njll. Namuhla, uhlelo olungayilungele ikhompuyutha ngokuvamile luthunyelwa ngezinhlobo “ezivamile” zokunamathiselwe kwi-imeyili: izinanyathiselwa ezinonya ezivame kakhulu kuma-imeyili amafayela e-Microsoft Office. ). Ithuluzi elinjalo kungaba, isibonelo, OpsGenie.
▍Sebenzisa ukuvikela
Njengoba ukuxhashazwa kuyimiphumela yokuba sengozini kwesofthiwe, abathuthukisi besofthiwe okufanele balungise amaphutha emkhiqizweni wabo. Kuyisibopho sabasebenzisi ukufaka ngesikhathi amaphakheji okubuyekeza namapeshi ngokushesha ngemva kokukhululwa kwawo. Ukusebenzisa ithuluzi lokusesha nokufaka elizenzakalelayo noma umphathi wohlelo onalesi sici kukusiza ukuthi ugweme ukulahlekelwa izibuyekezo. Ukuvikela ukuxhaphaza okuzenzakalelayo kwakhelwe ohlelweni oluchazwe ngenhla .
▍I-Firewall
I-firewall, i-firewall. Ihlunga futhi ilawule ithrafikhi yenethiwekhi ngokwemithetho emiswe ngaphambilini. I-firewall ingamelwa njengokulandelana kwezihlungi ezicubungula ukugeleza kolwazi lwenethiwekhi. Ukucushwa okufanelekile kwe-firewall kusebenza ngempumelelo ngokumelene nokuhlaselwa kwe-brute force. Ungavumela ukuxhumana kwe-RDP noma kwe-SSH kuphela kumakheli athile e-IP omnikazi weseva futhi uvikele iseva emizamweni yokuqagela iphasiwedi. Ama-firewall akhona kuwo wonke amasistimu wokusebenza wesimanje. Ngaphezu kwalokhu, i-akhawunti yomuntu siqu ye-RUVDS inikeza i-firewall yamahhala ezingeni lempahla yenethiwekhi. Ngakho, ithrafikhi yenethiwekhi engadingeki ngeke ifinyelele umshini obonakalayo, kodwa izohlungwa ezingeni lesikhungo sedatha. Ukuze kube lula iklayenti okwengeziwe, imithetho yokuhlunga evame ukusetshenziswa kakhulu yengezwe ku-firewall interface. Uma ikheli le-IP lishintshiwe, iklayenti lingavele liye ku-akhawunti yalo siqu futhi lihlele umthetho ngaphandle kokungena kuseva.
▍ Ukuvikelwa ekuhlaselweni kwe-DDoS
Kukhona isevisi eyengeziwe engathengwa kuyo
umhlinzeki wamaseva abonakalayo (nangokoqobo). Isekelwe kubuchwepheshe bokuhlaziya ithrafikhi yenethiwekhi, okuthi, isibonelo, ku-RUVDS yenziwa 24/7, futhi ukuvikelwa kungamelana ngokuzinzile kuze kufike ku-1500 Gbit/s. Ukhokhela kuphela ithrafikhi oyidingayo. Manje iphromoshini e-RUVDS inyanga yokuqala mahhala I-0.5 Mbit / s, bese isuka ku-400 rub. ngenyanga.
▍Ukwakha nokufeza ukuthobela imithetho
Imithetho ebhaliwe nekhishiwe yomsebenzisi nemithetho yezinyathelo zokuvuselela (uhlelo lokuphendula isigameko se-cybersecurity) inesisindo esibalulekile ezindabeni zokuphepha kwamafu ngokombono wesici somuntu, okuhlanganisa nokugebenga kusetshenziswa izindlela zobunjiniyela bomphakathi. Leli phuzu lihlanganisa ukukhawulela ukufinyelela kwabasebenzi, ukuhlonza izinhlelo zokusebenza zefu eziyinhloko zenkampani (azikho ezinye izinhlelo zokusebenza ngaphandle kwalezo ezimbalwa "ezisohlwini olumhlophe" olunjalo ezingafakwa), kanye nokuqinisekisa ukuvikeleka kwamadivayisi eselula angasetshenziswa enkampanini ukuxhumana. nengqalasizinda yefu yenkampani, nokulawulwa kwedivayisi, enesibopho sezinqubomgomo zokusetshenziswa kwemidiya yangaphandle.
Sithemba ukuthi isihloko besiwusizo. Njengenhlalayenza, siyakwamukela ukuphawula okwakhayo, ulwazi olusha, imibono ethokozisayo, kanye nemibiko yanoma yikuphi ukungalungi okubhaliwe.
Source: www.habr.com
