-
Recent Posts
Recent Comments
Archives
- December 2013
- November 2013
- March 2012
- February 2012
- December 2011
- November 2011
- October 2011
- August 2011
- July 2011
- June 2011
- May 2011
- March 2011
- February 2011
- January 2011
- October 2010
- August 2010
- July 2010
- May 2010
- April 2010
- March 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
Categories
Meta
友站連結
Tag Archives: 理論
資訊安全的策略 : 深度防禦
介紹深度防禦,和在資訊安全的應用 Continue reading
Posted in 中文文章, 資訊安全
Tagged Deep defence, Defence in depth, 深度防禦, 理論, 資安, 資訊安全
Comments Off on 資訊安全的策略 : 深度防禦
別讓危險成為預設的行為,讓危險的行為比安全的行為更麻煩
危險的行為 對於寫程式而言,很多預設的行為都是相當危險的,舉一些最常見的例子SQL Injection、XSS、Buffer overflow,我們可以從這些幾個最常出現被攻擊的類形,都有一個共同的特點,就是它們通常都是因為預設的行為很危險,我們一個一個來看