Trojans: A Trojan horse is a malicious program that pretends to be a benign application. Trojans are
seemingly harmless programs that hide a malicious activity, such as a keystroke logger that could capture
all passwords or any other sensitive information entered, without the knowledge of the user.
Password cracking: Password attacks can be implemented using several methods, including brute force
attacks, Trojan horse programs, IP spoofing, and packet sniffers. Generally, password attacks refer to
repeated attempts to identify a valid user account or password. These repeated attempts are called brute
force attacks.
Buffer overflows: Buffers are memory locations in a system that are used to store data and generally
hold a predefined amount of finite data. A buffer overflow occurs when a program attempts to store data
in a buffer, when data is larger than the size of the allocated buffer. An analogy is filling an empty glass
(buffer) of 1 liter capacity with 1.5 liters of liquid (data). The initial 1 liter will be held with no problem,
with the 0.5 liters spilling over, just as with buffer overflow.
IP spoofing: An IP spoofing attack occurs when an intruder attempts to disguise itself by pretending to
have the source IP address of a trusted host to gain access to specified resources on a trusted network.
Pages:
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350