{"id":276,"date":"2020-04-05T23:07:14","date_gmt":"2020-04-05T21:07:14","guid":{"rendered":"http:\/\/tech.sosthe.sk\/?p=276"},"modified":"2020-04-06T16:28:22","modified_gmt":"2020-04-06T14:28:22","slug":"1-10-pocitacova-bezpecnost","status":"publish","type":"post","link":"http:\/\/tech.sosthe.sk\/index.php\/2020\/04\/05\/1-10-pocitacova-bezpecnost\/","title":{"rendered":"1.10.\u2002Po\u010d\u00edta\u010dov\u00e1 bezpe\u010dnos\u0165"},"content":{"rendered":"

P\u00f4vodn\u00e1 predstava internetu bola, \u017ee ju tvor\u00ed skupina navz\u00e1jom si d\u00f4veruj\u00facich pou\u017e\u00edvate\u013eov komunikuj\u00facich cez transparentn\u00fa sie\u0165. S pr\u00edchodom zauj\u00edmav\u00fdch d\u00e1t (osobn\u00e9 \u00fadaje, internet banking) pri\u0161la do internetu aj kriminalita. Do internetu sa zap\u00e1jame, aby sme vyu\u017e\u00edvali v\u0161etko dobr\u00e9, \u010do poskytuje. Okrem u\u017eito\u010dn\u00fdch webov\u00fdch str\u00e1nok (ako je napr. t\u00e1to), e-mailov, telefon\u00e1tov, filmov a hudby, si m\u00f4\u017eeme \u013eahko do po\u010d\u00edta\u010da dopravi\u0165 aj zl\u00fd softv\u00e9r, naz\u00fdvan\u00fd glob\u00e1lne\u00a0malware<\/strong>.<\/p>\n

Z\u00e1kladn\u00e9 sp\u00f4soby \u0161\u00edrenia predstavuj\u00fa v\u00edrusy, tr\u00f3jske kone a \u010dervy.<\/p>\n

V\u00edrusy<\/strong>\u00a0s\u00fa programy, ktor\u00e9 si zavedieme do po\u010d\u00edta\u010da akt\u00edvnym spusten\u00edm stiahnut\u00e9ho obsahu, napr\u00edklad pr\u00edlohy mailu. V\u00edrusy sa obvykle sami rozmno\u017euj\u00fa a preposielaj\u00fa \u010fal\u0161\u00edm zariadeniam a pou\u017e\u00edvate\u013eom.<\/p>\n

Tr\u00f3jske kone<\/strong>\u00a0sa tie\u017e dost\u00e1vaj\u00fa do po\u010d\u00edta\u010dov akt\u00edvnou \u010dinnos\u0165ou pou\u017e\u00edvate\u013ea, naj\u010dastej\u0161ie nav\u0161t\u00edven\u00edm (ne)vhodnej webovej str\u00e1nky. Sami sa u\u017e \u010falej ne\u0161\u00edria.<\/p>\n

\u010cervy<\/strong>\u00a0sa do zariadenia dostan\u00fa bez pri\u010dinenia pou\u017e\u00edvate\u013ea, naj\u010dastej\u0161ie napadnut\u00edm nejakej deravej neaktualizovanej slu\u017eby, ktor\u00e1 za nich spust\u00ed ich k\u00f3d. \u010cervy sa obvykle \u0161\u00edria enormne r\u00fdchlo.<\/p>\n

Po napadnut\u00ed po\u010d\u00edta\u010da m\u00e1 obvykle malware nejak\u00fd z\u00e1mer. Medzi najob\u013e\u00fabenej\u0161ie \u0161kodliv\u00e9 zamerania patria spyware, adware a backdoor. Typick\u00fd\u00a0spyware<\/strong>\u00a0predstavuj\u00fa napr\u00edklad keyloggery zaznamen\u00e1vaj\u00face ka\u017ed\u00e9 stla\u010denie znakov na kl\u00e1vesnici (vr\u00e1tane hesiel) alebo len zaznamen\u00e1van\u00edm prehliadan\u00fdch webov\u00fdch str\u00e1nok. Zozbieran\u00e9 inform\u00e1cie s\u00fa n\u00e1sledne posielan\u00e9 na ur\u010den\u00e9 miesto na internete.<\/p>\n

Backdoory<\/strong>\u00a0navonok nevykon\u00e1vaj\u00fa \u017eiadnu \u0161kodliv\u00fa \u010dinnos\u0165 na danom po\u010d\u00edta\u010di, len \u010dakaj\u00fa na to, kedy ich \u00fato\u010dn\u00edk zobud\u00ed. Backdoory sa obvykle pou\u017e\u00edvaj\u00fa na\u00a0DDoS (distributed denial of service) \u00fatoky<\/strong>. DDoS \u00fatoky s\u00fa ur\u010den\u00e9 na ochromenie resp. znepr\u00edstupnenie nejak\u00e9ho sie\u0165ov\u00e9ho zdroja. Na to je potrebn\u00e9 ma\u0165 dostato\u010dne ve\u013ek\u00fd po\u010det napadnut\u00fdch po\u010d\u00edta\u010dov (tzv. botnet), z ktor\u00fdch sa posiela ve\u013ek\u00e9 mno\u017estvo paketov smerom k cie\u013eu. Ten je zahlten\u00fd a norm\u00e1lni pou\u017e\u00edvatelia ho nem\u00f4\u017eu vyu\u017e\u00edva\u0165.<\/p>\n

\u0160kodi\u0165 na sieti sa d\u00e1 aj bez napadnutia v\u00e1\u0161ho po\u010d\u00edta\u010da. Sta\u010d\u00ed odpo\u010d\u00fava\u0165 (sniffova\u0165) cudziu komunik\u00e1ciu hocikde na ceste medzi odosielate\u013eom a pr\u00edjemcom. Tak\u00fdmto sp\u00f4sobom sa d\u00e1 odhali\u0165 heslo \u010di in\u00e9 d\u00f4vern\u00e9 inform\u00e1cie. Okrem odpo\u010d\u00favania je niekedy mo\u017en\u00e9 aj zahadzova\u0165 alebo meni\u0165 pakety v cudzej komunik\u00e1cii (Man in the middle \u00fatoky). \u010eal\u0161\u00edm be\u017en\u00fdm \u00fatokom je vyd\u00e1vanie sa za niekoho in\u00e9ho (IP spoofing).<\/p>\n

Aby sme boli schopn\u00ed t\u00fdmto \u00fatokom \u010deli\u0165 mus\u00edme rozumie\u0165 tomu, ako siete funguj\u00fa (na to je tento predmet) a na \u010dom s\u00fa zalo\u017een\u00e9 \u00fatoky.<\/p>\n","protected":false},"excerpt":{"rendered":"

P\u00f4vodn\u00e1 predstava internetu bola, \u017ee ju tvor\u00ed skupina navz\u00e1jom si d\u00f4veruj\u00facich pou\u017e\u00edvate\u013eov komunikuj\u00facich cez transparentn\u00fa sie\u0165. S pr\u00edchodom zauj\u00edmav\u00fdch d\u00e1t (osobn\u00e9 \u00fadaje, internet banking) pri\u0161la…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"_links":{"self":[{"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/posts\/276"}],"collection":[{"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/comments?post=276"}],"version-history":[{"count":1,"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/posts\/276\/revisions"}],"predecessor-version":[{"id":277,"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/posts\/276\/revisions\/277"}],"wp:attachment":[{"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/media?parent=276"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/categories?post=276"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/tech.sosthe.sk\/index.php\/wp-json\/wp\/v2\/tags?post=276"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}