• No results found

Network Security. Demo: Web browser

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Network Security. Demo: Web browser"

Copied!
18
0
0

Loading.... (view fulltext now)

Download now ( 18 Page )

Full text

(1)

Network Security

Demo:

(2)

Email Messages

9 An email message can be instantly forwarded around the globe, even if accidentally.

– Do not write anything in a message that you will later regret!

– Read over the message before you send it!

9 Email messages can carry dangerous attachments.

– Do not open any file attached to a message unless you are absolutely certain of the sender of the message and the safety of the attachment.

(3)

Viruses & Trojan Horses

9 Viruses and trojan horses are programs designed to

replicate themselves as they pass from computer to computer - and usually do harm!

9 They are usually passed by a user opening an infected attachment. Don’t do that!

9 You should have a good antivirus program on your home computer and keep it up-to-date on the latest viruses.

(4)

Viruses & Trojan Horses

(cont’d)

9

Real viruses are reported at a number of sites:

Symantec.com – Viruses & Risks

http://www.symantec.com

McAfee.com – Threat Center

(5)

Hoax Viruses

9

Hoax virus warnings are frequently sent by email,

and unknowing users forward them to all of their

friends. Two known factors make a successful

virus hoax:

(1) technical sounding language, and

(2) credibility by association, in that the

warning appears to come from a knowledgeable

person.

(6)

Internet Hoaxes

9

Hoax viruses (and other myths and urban legends)

are reported at several sites:

Urban Legends and Folklore

-http://urbanlegends.about.com/

Symantec Antivirus Research Center

-http://www.symantec.com/avcenter/hoax.html

Truth or Fiction

-http://www.truthorfiction.com

(7)

Chain Email

9 Chain email letters are related to hoax virus warnings in

that they often spread false information, and they ask to be forwarded to “all of your friends.”

9 You should NOT forward chain letters.

9 Forwarding chain letters of any type is a violation of the acceptable use policy at UH (and at most, if not all,

Internet Service Providers).

(8)

Web Bugs

9 A web bug is an object – usually an invisible image – that is embedded in a web page or e-mail and allows checking that a user has viewed the page or e-mail.

9 If in an email, when the image is loaded, the request to the remote server to get the images tells the server you have read the message…the email address is a good one.

=>Disable automatic image display in email

9 If in a web page, the image is usually loaded from an

advertiser’s server, not the server from which the page was loaded, so that the advertiser can track your browsing.

(9)

Block remote images in email

(10)

Block remote images in browser

(11)

Cookies

9 An HTTP cookie is text sent by a server to a web browser and then sent back unchanged by the browser each time it accesses that server.

9 During a session, cookies are used for maintaining specific information about users, such as the contents of electronic shopping carts. (good!)

9 Third-party cookies: If an advertising image is retrieved

from a remote (third party) server other than that of the original web page, that remote server can maintain a

cookie – a tracking cookie – that follows your tracks between web sites. (not so good)

(12)

Block third-party cookies in browser

(13)

Phishing

9

Phishing attempts to fraudulently acquire

sensitive information, such as passwords and

credit card details, by masquerading as a

trustworthy person or business in an email or

instant message.

9

The user is told to “verify your account” and is

provided a link to click on for doing so.

9

But the text containing the link does not match the

link itself, which actually directs the user to an

(14)

Phishing

(cont’d)

9 For example, the text might look like this:

https://service.capitalone.com/...

9 but the actual link behind the text might be:

http://www.capitalone0.go.ro/onlinebanking.capitalone. com/CAPITALONE/index.html

=>Don’t click on that link!

(15)

apparent link actual link

(16)

Spam

9

Spamming is the abuse of electronic messaging

systems to send unsolicited, bulk messages.

9

Email is the most recognized form, but spam also

targets instant messaging, blogs, chat rooms, etc.

9

Although all types of unwanted messages – chain

email, viruses, phishing attempts – could be

considered spam, the term is most commonly

attributed to unsolicited advertising.

9

Your most important defenses against spam are

(17)

Security Tips

9 Make your passwords hard to guess, change frequently.

9 Disable remote images in email and browser.

9 Disable third-party cookies in your browser.

9 Use a firewall.

9 Use anti-virus software. (McAfee)

9 Use adware and spyware detectors. (Ad-Aware, Spybot)

9 Keep all software patched up-to-date. (Windows Update)

9 Don’t open unexpected attachments.

9 Don’t click on phishing links.

9 Use an email spam filter.

9 Protect your email address.

9

(18)

References

Download now ( PDF - 18 Page - 349.01 KB )

Related documents

Essays on the production and commercialization of new scientific knowledge

Quality: We measure quality (Q in our formal model) by observing the average number of citations received by a scientist for all the papers he or she published in a given

Devi Ahilya Vishwavidyalaya, Indore School of Computer Science & IT

All the figures and tables should be labeled (Times New Roman 11) and included in list of figures and list of tables respectively.

On the evolution of Afro-Bolivian Spanish subject-verb agreement: Variation and Change

As inter-speaker variability among these the two groups was minimal, ranging from 0% to 2% of lack of concord in the 21-40 group and from 41% to 46% in the 71+ generation, we

Ethnogenesis: The Construction and Dynamics of the Honors Classroom Culture

Such a collegiate cul- ture, like honors cultures everywhere, is best achieved by open and trusting relationships of the students with each other and the instructor, discussions

Present and future of surface-enhanced Raman scattering

52 Precisely synthesizing plasmonic nanostructures in ultrahigh yield; creating the plasmonically enhanced EM field on many nanostructures, often assembled in a reproducible

Chasing the rainbow: pleasure, sex-based sociality and consumerism in navigating and exiting the Irish Chemsex scene

Four basic themes emerged from the analysis; social and cyber arrangements within the Dublin Chemsex scene; poly drug use and experiences of drug dependence; drug and sexual

Split Fluorescent Protein Engineering and Applications

When transfecting HEK 293T cells with either “mIFP-P2A-mNG2(full)” or “mIFP- P2A-mNG211SpyCatcher and mNGX1-10 (X represent 2, 3A or 3K)”, we observed both mNG31-10

The role of the patient in evaluating quality of care

The PROMs questionnaire used in the national programme, contains several elements; the EQ-5D measure, which forms the basis for all individual procedure