þѹ UNIX ͹ SA ѺѡҤʹ¢

кԡҹ ѹ ٹԡ к ҹкءöѴáѺкͺͧ ҡѭҧ ش͹ ѧкѧ֧ͧԸͧѹѭԴ кٹԡ˹Էҧ Թͧءк дѺӤѭͧҹ 2 дѺ кººҧѹ ˹ SA System Administrator ¡ root superuser ԷöԹѴк٧شǺкҹҧºͧ

ԡҹͧ SA

çͧ SA ͡к ѧѡɳ˹ѡ ͧ SA Ѵкöʹͧͧͧҡش ѡɳͧҹö͡ѡɳ˭ ѧ
- ǡѺҹк ҹءкöҹк ͧѺͺҹԨóͧ SA ͹ ѧ˹ѡҧ˹ͧ SA ˹ҹѺ ˹öѾҡҧ ͧ ҧçѹͧźŴ͡ҡк աͧ֡ͧͧҹ
- ԴͿк شͧẺŵʡԧ Ѿҡҧ ѹ ѾҡüѹѺӹǹҹ ҧͧѡɳҹ ԴѾҡҧ ֧ա§ѹ SA ͧԴǺԴա Ϳ ǹҡ
- ͧ ͧк óкԴ ͧ ͧѺԧк§ѹҡ ͧ٭ԷҾͧкǹ˹ ֧ͧ˹ͧ SA ѴԹͧ ǧ˹ ͧͧҧ
- ѭҧ ԴкͿ
- ѡʹͧк ֧´

ҧ SA

֧ͧдѺӤѭ SA Ӥѭ٧ش SA öԹءҧкͺ ѧ͡Ѻҷͧ SA ͧԶվԶѹ ѡɳ ͧ SA
1. ֧ҹͧк ǹͧͧ, Ϳ, ͧöѺѭԴ
2. ͺͺ´͹ ҡ SA ԴҴҧк
3. ѺԴͺ٧ Ѻ
4. سШ SA öǹѺ¹ŧءҧкͧ ѧس֧Ӥѭ SA ءͧ (SA ͧѺ)
5. ؤسѵ 1-4

ʹ

ءͧǹҹ ҧѺҡѺ ٹԡ ˹öҹͧ áͧؤؤ˹֧ѹ ѧʻͧ͡ҵѡʹк

ѡʹ

شʹѡʹк öѡسѵѡ ѧ Ѻѡʹʺ
1. ѡѺ (Security) ֧ءءҧк ػóҧ ôö֧ؤѺԷ
2. ѡʹ˹ (Integrity) ҧ ¹ŧ§ؤѺԷ ¹ŧ
3. ѡ (Avilability) ػóҧ к֧ͧ ͧ ͹ͧԷػóҧ

ͧӹ֧

͡ѡʹҡҡ ҡǺҧءԡ ҡ ҹͧѴѧҧҡ Ӻҡ кѡʹ ͡ҡͧӹ֧֧ѡҧ ͧ ֡ͧҹкѡ
1. кѡʹͧçç
2. ԷԡѺشҹ
3. Ǩͺкҧͺͺ֧ҹءҧ
4. ˹ԷԷҧػóҧ
5. ѡʹͧ ҡҡǹ˭

ҧ

͹֧ѡͧѹѡʹ ؤҧԴ¡Ѻкҧ ؤҧ Ҩͧ

ҹкͧ§

ؤѴѹҡ ǹ˭֧֡ ѹԴҡǹ˭á Դҡ֧ó rm źӤѭ

ǡʹʹҡͧԪ (Hacker)

ؤǹ˭ѡö (ҧҴѭӹ֡) ͺ͹кѡʹ ǹ˭ؤöк§Сش͹ͧккҺ ҨöԷҾͧкŴŧ ѡɳٻ кǧ˹ ؤͧѹҡ

ǡʹǧѺ

ǡǧѺ ҧҧáԨ Ѻشʹͧѷ

ͧͧ

ӹǹѭǡѺѡʹԴҡкҨҧҧ ҡͧҵҧ ͡к͡кѡʹͧͧ

Ըҧ

ŧ֧ش͹ͧкǹ˹ ˹ش͹öѺ Դ Ըҹѹ Ѵѧ
1. ͺҹ ǹ˭ؤѡѹ
2. ͧѴ¡ ͧ (Protocal Analyzer) ѡѺҧ
3. ѹ (Trojan horse) ¹ʤԻ ҧҾ͹ѺҾ͹ (login) кءС ʤԻ ѧҹҹҹͧѧͧ Ҩ˹ дش ѧҡ¡ͧ login ԧ͡ ѧҧ 1 ҧ SU
ҹͧʤԻԴͧҡѺä ˹äͧ͹ äͧк ˹ PATH :/bin:/usr/bin ᷹ /bin:/usr/bin:: ǹö˹ͧ .profile
4. е (trap door) ¹ ѡ¹Ե setuid Եҹ¹ user id 0 ( root) ҡ¹öҧԷ Ѻ root

Ǻҧ

Ǻѡʹͧ͡кǺѹ
- Ǻ͡к (Physical Security) ͧѹҧҾ Ҩ
1. Ѵѧؤšҹк ҨѴ
2. ͡ػóҹк
3. Ӥѭŧ෻ʹʤźк͡
- Ǻк (Logical Security) ͧѹкͧ 2 Сѡ
1. ͧѹǡѺǨͺ
2. ͧѹǡѺк

ͧѹǡѺ

кٹԡءҹ ҹкǨͺҹ١ͧ кóҹçѺк
ҹҹáӤѭҡк ѧǹͧҹ֧¡ 2 ˹͹˹кҹ ա˹ /etc/passwd ʴҹҨʴҹ ءöҹ

ҧáѺҹ

1. ѡҹѺ
2. ҹѭ Ţ ѭѡɳ ٻͧѡ ǹ˭Ѿ Фǹ ͧôͧǧѺ
3. ¹ҹ ǹҧкö˹ͧ¹ҹ ¹ҹ passwd ѧٻ 2

ͧѹǡѺк

ѡɳкٹԡѡɳ ǹǺ ǹ˹Էҧ Ѻ ǹѴԹҧö ҡ§ ԷǡѺҹ ¹ѹ ҹ͡ 3 ͧ (owner) ͧ (group) (other) ͡ҡٹԡҧкѧöѺ crypt (ٹԡ͡Ѱԡ) ǹѡʹա˹

ػ

кؤ˹кҹҧԷҾҡش ͧͧʹӤѭҡ ͧҧԹ ҡҵ֧͹Թ Դк ѡʹԸ˹ ѴѭҡѺ ǹ˭к֧ҭкк˭ ҡԴѭѴҨǹҧѭԵѵѺ" ԵôкѡԴѺ


¹ : ӻ԰
: ˹ѧä Ѻ͹Ҿѹ 2536
Last update : 17/03/1999