审计网络安全5.pdfVIP

Auditing Network Security Common Findings © 2005 Protiviti Inc. EOE SANS Top 20 Vulnerabilities – Windows • Source: /top20/ • W1 Web Servers Services • W2 Workstation Service • W3 Windows Remote Access Services • W4 Microsoft SQL Server (MSSQL) • W5 Windows Authentication • W6 Web Browsers • W7 File-Sharing Applications • W8 LSAS Exposures • W9 Mail Client • W10 Instant Messaging Common Findings 2 SANS Top 20 Vulnerabilities – Unix • Source: /top20/ • U1 BIND Domain Name System • U2 Web Server • U3 Authentication • U4 Version Control Systems • U5 Mail Transport Service • U6 Simple Network Management Protocol (SNMP) • U7 Open Secure Sockets Layer (SSL) • U8 Misconfiguration of Enterprise Services NIS/NFS • U9 Databases • U10 Kernel Common Findings 3 External Review Trends Issue Risk Occurrence Trend Web Application Programming Issues High Authentication Issues Medium Patching Issues High Architecture Issues Low Port and Service Issues Low Configuration Issues Low Change Management Issues Low Common Findings 4 Internal Review Trends Issue Risk Occurrence Trend Authentication Issues