NetworkSecurityThreats,MitigationTechniques,andProtocolsQ1.Whichdoyouthinkisagreatersecuritythreatintheweb,Serversideexecutablesorclientsideexecutablesandwhy?Ans.Clientsideexecutablesaregreaterthreatascomparestoserversideexecutablesasanyonecanaccessanywebsitefromanycorneroftheworldandthecanuploadanythingdangeroustoanyonewebsiteeveniftheyareblockedbythatwebsitepermanentlyeventhenthecanusevariousproxyservermethodstoaccessthatwebsite.Fromclientsidetheycanuploadanythingwhichisnotappropriateforourserverandalsotheycanalsotakeinformationfromourserverrelatedtootherpersonandusetheirinformationfortheirbenefits.Alsoifserverisconfiguredonceitistoughtoreconfigureitagainbutifclientscriptorexecutablesarecaughtonceandthenblockedthenanewonecanbegeneratedveryeasilybutifanyvulnerabilityisfoundoutinserverittooktimetoreconfigureit.Q2.WhatistheprimarysecurityvulnerabilityofFTPandwhatisthebestwaytomitigateit?Ans.BasicallywhyweuseFTP:i.Tosharefileii.Toincreaseuseofremotecomputingiii.Tosharedataefficientlyandreliablyiv.ToprotectuserfromvariationindifferentfilestoragesystemamonghostsThesearethemainmotivewhyFTPisusedbutItdonotincludesecuritythat’swhyitisbeenexploitedagainandagain.AsweknowFTPisusedtosharefilefromoneremotesystemtootherorwecansayfromanonymouslocation.SotherecanbedifferenttypeofsecuritythreatstoFTP:Readaccess:Itenablesanonymouspeopletoreadandaccesstofilesyouwantedtobepublicandinkeepingthempublicisnorisk.Theprimarysecuritythreatsare:1.Misconfiguration:Makingfileavailableevenifitisnotintendedtobepublic.2.Vulnerability:TheremustbesomevulnerabilityinIIScodewhichcanbeusedbysomeonetoattack.Writeaccess.EnablinganonymouspersontowriteanythingoursystemviaFTPisthegreatestsecuritythreat.IfanycanuploadanythingonoursiteorinoursystemandanyoneaccessitthenitwillbemuchbigproblemasanyonecanuploadanyvirusormayanythingPreview Mode
This document has 6 pages. Sign in to access the full document!