以下网址是用于测试你的系统跟浏览器的安全性网站,
http://www.pcflank.com/test.htm
我以下测试均在不开任何防火墙和防病毒的ubuntu8.04默认设置下进行:
1。首先是普通的木马和浏览器的测试,以下是测试后结果图片:
以下是详细分析:
Check for vulnerabilities of your computer system to remote attacks
We
have scanned your system for open ports and for ports visible to others
on the Internet. As a rule an open port means your computer is
vulnerable to attacks by crackers. They gain access to your computer
and its files through these open ports.
 | |
| Warning!
The test found visible port(s) on your system: 21, 23, 80, 135, 137, 138, 139, 1080, 3128 |
Recommendation:
Install personal firewall software. PC Flank recommends Outpost Firewall Pro.
If
you have already installed and are using a firewall, check if it is set
to make all the ports of your computer invisible (hidden). If it is,
then get new firewall software and redo this test.
Trojan horse check
The
test scanned your system to find signs of a Trojan. If a Trojan horse
is on your computer a cracker can access your system's files and your
personal data.
| |
| Warning!
The test found visible ports on your system: 27374, 12345, 1243, 31337, 12348.
The following Trojans use these ports: SubSeven, NetBus, SubSeven, Back Orifice, BioNet
Although
these ports are visible, they are not open, so your system is not
infected. However, having visible ports on your system means your
computer can be "seen" over the Internet. This makes it very easy for
skillful intruders to explore your system. |
Recommendation:
Install personal firewall software and use an anti-Trojan program. Anti-trojans to consider are: The Cleaner, PestPatrol or Tauscan.
If
you have a firewall, check if it is set to make all your computer ports
invisible (hidden). If it is, then it failed miserably. Replace it and
redo this test.
Browser privacy check
The
test checked if your web browser reveals any private information while
you visit Web sites. Usually such information is: the last site
visited, your locale and who your Internet Service Provider is.
 | | Danger!
While
visiting web sites your browser reveals private information about you
and your computer. It sends information about previous sites you have
visited. It may also save special cookies on your hard drive that have
the purpose of directing advertising or finding out your habits while
web surfing. |
Recommendation:
We
advise you to get personal firewall software. If you already have a
firewall program adjust it to block the distribution of such
information.
To compare your results to results of other users click on "Overall Stats".
2。然后进行溢出攻击测试
测试结果:
然后我再打开Firestarter防火墙对两个项目再测试一次:
1。首先是普通的木马和浏览器的测试结果:
Check for vulnerabilities of your computer system to remote attacks
We
have scanned your system for open ports and for ports visible to others
on the Internet. As a rule an open port means your computer is
vulnerable to attacks by crackers. They gain access to your computer
and its files through these open ports.
 | | Safe! |
Trojan horse check
The
test scanned your system to find signs of a Trojan. If a Trojan horse
is on your computer a cracker can access your system's files and your
personal data.
| | Safe!
There is no evidence of a Trojan horse on your system. |
Recommendation:
The absence of a Trojan horse on your system does not mean this problem
cannot happen, of course. Anti-virus and/or anti-Trojan software should
be installed and used on your system. Anti-trojans to consider are: The Cleaner, PestPatrol or Tauscan.
If you already use this type of software on your system, its virus definitions (virus database) should regularly be updated.
Browser privacy check
The
test checked if your web browser reveals any private information while
you visit Web sites. Usually such information is: the last site
visited, your locale and who your Internet Service Provider is.
| | Danger!
While
visiting web sites your browser reveals private information about you
and your computer. It sends information about previous sites you have
visited. It may also save special cookies on your hard drive that have
the purpose of directing advertising or finding out your habits while
web surfing. |
Recommendation:
We
advise you to get personal firewall software. If you already have a
firewall program adjust it to block the distribution of such
information.
To compare your results to results of other users click on "Overall Stats".
2。然后进行溢出攻击测试
测试结果同样:
Results of the test:
Exploits test
|
|
Your system successfully defended itself from this attack! |
总结:
1。ubuntu8.04系统的默认配置安全性还是比较高的,在没开防火墙之前有几个端口被扫描出可以被
利用,在这里我需要说明一下:像subseven跟mysql服务是自己需要使用到,默认的ubuntu8。04是没有开
放这些端口的,对于溢出攻击8.04系统也表现出很高的安全性。如果大家对ubuntu8。04的端口开放还
不放心,最简单的方法是推荐大家使用Firestarter防火墙,至于使用IP tables来进行防范,对于新手来
说我觉得没有必要,当然大家有兴趣还是可以学习一下
2。目前系统最大的安全问题应该还是在浏览器的安全性问题上,ubuntu8.04的默认浏览器是firefox3.0
beta5 ,很明显无论是否打开防火墙,浏览器的安全性还是处于Danger的不及格水平,在浏览器安全性
的提高方面我会继续研究,到时会再继续告诉大家,但我想对大家说的是如果连firefox3.0 beta5都处于
Danger的水平,ie的安全性就更加值得怀疑了。
