TOM Technology News Safety Organization US System Network Security Association (SANS Institute) announced this week, published in 2004, the top 20 network security risks list. In fact, this list consists of two parts, including 10 Windows security hazards and 10 UNIX and Linux related security hazards.
Alan Palp, director of SANS, said that the agency released this list to provide a reference to enterprises and organizations, so that system administrators have once again confirmed that these security hazards have been properly resolved in their own management systems. He said: "When you tell the system administrator to test thousands of vulnerabilities, companies are almost stagnant, so we have to pick up 20 security risks published every year."
The list of SANs is binding to many of the global security research experts and suggestions, including the National Infrastructure Protection Center and the National Infrastructure Self-centers (National Infrastructure Security Coordination) CENTRE) and other important departments. This year is already the fifth annual security hidden row list of Sans. In addition to publishing a list of security hazards, SANS also issued a detailed description of this type of security hazard, and provides specific solutions.
The first place in Windows security risks is the web server and service, while the first bit of Unix security hazard is the Bind Domain Name Systems. There are also many security risks for the first time, such security hidden dangers include File Sharing Applications and INSTANT MESSAGING in the Windows list. Ross Patel, which is responsible for the list: "Experts feel worried about file sharing and point-to-point files, because they are easy to operate and the application is very extensive."
The web browsers (web browsers) in the list of Windows are also a popular topic, Patel said: "Experts are the most enthusiastic about the discussion of web browsers. At the beginning of this year, many discovered in IE browser Severe vulnerabilities, and even experts suggest that users stop using this browser. "
The security hidden danger list announced by the US System Network Security Association:
Windows top ten security risks:
1 Web Server and Services (Web Servers & Services)
2 Workstation Service (Workstation Service)
3 Windows Remote Access Service (Windows Remote Access Services)
4 Microsoft SQL Server (Microsoft SQL Server)
5 Windows Authentication
6 Web Browser (Web Browsers)
7 File Sharing (File-Sharing Applications)
8 LSAS Exposures
9 Email Client (Mail Client)
10 Instant Messaging
UNIX top ten security risks:
1 Bind Domain Name System (Bind Domain Name System)
2 Web Server (Web Server)
3 certification (Authentication)
4 version control system (Version Control Systems)
5 Email Transport Service (Mail Transport Service)
6 Simple Network Management Agreement (Simple Network Management Protocol)
7 Open Secure Connection Communication Layer 8 Enterprise Services NIS / NFS Configuration (Misconfiguration of Enterprise Services NIS / NFS)
9 databases (Databases)
10 kernel
From:
Tom.com
