A Comprehensive Approach to Abusing Locality in Shared Web Hosting Servers

机译：共享Web托管服务器中滥用位置的综合方法

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

With the growing of network technology along with the need of human for social interaction, using websites nowadays becomes critically important which leads in the increasing number of websites and servers. One popular solution for managing these large numbers of websites is using shared web hosting servers in order to decrease the overall cost of server maintenance. Despite affordability, this solution is insecure and risky according to high amount of reported defaces and attacks during recent years. In this paper, we introduce top ten most common attacks in shared web hosting servers which can occur because of the nature and bad configuration in these servers. Moreover, we present several simple scenarios that are capable of penetrating these kinds of servers even with the existence of several securing mechanisms. Finally, we provide a comprehensive secure configuration for confronting these attacks.

机译：随着网络技术的发展以及人们对社交互动的需求，如今使用网站变得至关重要，这导致网站和服务器数量的增加。一种用于管理大量网站的流行解决方案是使用共享的Web托管服务器，以降低服务器维护的总体成本。尽管负担得起，但是由于近年来报告的大量污损和攻击，该解决方案是不安全且有风险的。在本文中，我们介绍了共享Web托管服务器中最常见的十大攻击，这是由于这些服务器的性质和错误的配置而导致的。此外，我们提出了几种简单的方案，即使存在几种安全机制，这些方案也可以穿透这类服务器。最后，我们提供了一种全面的安全配置来应对这些攻击。

著录项

来源
《2013 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications》|2013年|1620-1625|共6页
会议地点 Melbourne(AU)
作者
Mirheidari Seyed Ali; Arshad Sajjad; Khoshkdahan Saeidreza; Jalili Rasool;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
CSRF Token Poisoning; Convenient Phishing; Data Confidentiality Violation; Data Integrity Violation; Fast Brute Force; Intensive LFI; Log Poisoning; Log Snooping; Session Poisoning; Session Snooping; Shared Web Hosting;

机译：CSRF令牌中毒;便捷的网络钓鱼;违反数据保密性;违反数据完整性;快速暴力破解;密集LFI;日志中毒;日志监听;会话中毒;会话监听;共享Web托管;;

相似文献

外文文献
中文文献
专利

1. A Rational Approach to Hosting: Smart scalability with Verio Web Servers for Windows [J] . .Net Developer's Journal . 2007,第1期

机译：合理的托管方法：适用于Windows的Verio Web服务器的智能可伸缩性
2. p2pWeb: An open, decentralized infrastructure of Web servers for sharing ephemeral Web content [J] . Marc Sanchez-Artigas, rnJordi Pujol-Ahullo, rnLluis Pamies-Juarez, Computer networks . 2010,第12期

机译：p2pWeb：Web服务器的开放式，去中心化基础结构，用于共享临时Web内容
3. A COMPREHENSIVE APPROACH FOR SHARING SEMANTIC WEB TRUST RATINGS [J] . Jie Zhang, Robin Cohen Computational Intelligence . 2007,第3期

机译：共享语义Web信任评级的综合方法
4. A Comprehensive Approach to Abusing Locality in Shared Web Hosting Servers [C] . Mirheidari Seyed Ali, Arshad Sajjad, Khoshkdahan Saeidreza, IEEE International Conference on Trust, Security and Privacy in Computing and Communications . 2013

机译：滥用共享Web托管服务器中的众所周知的综合方法
5. A System for Sharing Abuse Data with Web Hosting Providers. [D] . Weeden, Matthew. 2017

机译：与虚拟主机提供商共享滥用数据的系统。
6. Comprehensive Review of Web Servers and Bioinformatics Tools for Cancer Prognosis Analysis [O] . Hong Zheng, Guosen Zhang, Lu Zhang, 2020

机译：全面评估Web服务器和生物信息学工具进行癌症预后分析
7. Abusing Locality in Shared Web Hosting [O] . Nick Nikiforakis, Wouter Joosen, Martin Johns 2015

机译：在共享虚拟主机中滥用局部性

A Comprehensive Approach to Abusing Locality in Shared Web Hosting Servers

摘要

著录项

相似文献

相关主题

期刊订阅