Re: Have I been hacked?

To: debian-user@lists.debian.org
Subject: Re: Have I been hacked?
From: Frédéric Marchal <frederic.marchal@wowtechnology.com>
Date: Thu, 15 Jan 2015 12:40:01 +0100
Message-id: <[🔎] CAJ7R-8QRKuPS3dyb3mz-Wng3k8gTzUOTH8-nDFcd4WQ2-6fepA@mail.gmail.com>
In-reply-to: <[🔎] 20150113171319.GA31019@fever.havannah.local>
References: <[🔎] 20150106180456.GA8657@fever.havannah.local> <[🔎] 9799365.fXC8NsNPWO@merkaba> <[🔎] 20150113171319.GA31019@fever.havannah.local>

2015-01-13 18:13 GMT+01:00 Danny <mynixmail@gmail.com>:
> Am I right in saying that there is actually nothing new when it comes to
> networking ... hear me out ... the internet (and most networks out there) still
> works on TCP/IP which is 40 odd years old (70's) ... a car mechanic only needs
> to know how an engine works ... you can bolt on many other things onto an engine
> and add a pletora of sensors to it but essentially it remains an engine ... if
> you understand the way an engine or an automatic/manual transmission works you can
> confidently service/overhaul any engine/transmission  because they all are made up of the same
> stuff and they all work the same ... and this is my point with TCP/IP ...
> EVERYTHING is dumped on top of TCP/IP ... yet it remains the same ... a black
> hat only needs to know TCP/IP in order to knock on your door ... once he knocked
> on your door it means that he has found you ... he knows you are there ... all he
> has to do is look at the Matrix screen ... am I making sense? ...

Being a hacker requires a bit more knowledge than TCP/IP.

To build upon your analogy, TCP/IP is more like the path to your
house. If offers no security beyond what you gain by mounting watch on
your doorstep.

Every open port on your server is like a door or a window.

The protocol carried by TCP/IP and recognized by the server
application listening on the open port is the lock on the door or
window.

Your login/credential is the key to the door.

Hackers are like thieves trying to break into your house. A thief
knows about various types of locks, doors and windows. He knows that
some windows break if a pressure is applied on the upper corner
opposite the hinges. Such a type of lock is easily defeated by
drilling just below the barrel. Some kind of door is best attacked by
breaking through the lower panel, and so on.

A hacker can find your server the same way a thief can find your
house. He just walk around and look at what may be a worthwhile
target.

A hacker knows about the protocols and server applications. He knows
their strengths and weaknesses and will attack where it is easier when
he sees an opportunity.

That is the reason you must update your server on a regular basis. It
removes old safety measures the hackers know how to break.

And when the house is properly secured, a thief may knock at the door
and sweet talk the owner into letting him in. Hackers do that too :-)

Frederic

Reply to:

References:
- Have I been hacked?
  - From: Danny <mynixmail@gmail.com>
- Re: Have I been hacked?
  - From: Martin Steigerwald <Martin@lichtvoll.de>
- Re: Have I been hacked?
  - From: Danny <mynixmail@gmail.com>

Prev by Date: Re: problem with corrupted root password
Next by Date: Re: Have I been hacked?
Previous by thread: Re: Have I been hacked?
Next by thread: Re: Have I been hacked?
Index(es):
- Date
- Thread