��㾫ȷ�� ַ��ϵͳȫ��_�й�IT��ά��www.cnitom.com

��ַ��ϵͳ��¼�ƣ��IPS��ǳ��Ƴ��ַ��簲ȫ��Ʒ��ϵĸ��ֲ��㹥��WEB��ݿ��Ӧ�÷��ι��Ϊ��ϡ��ַ��ϵͳ��Ʒ�߰��׵�ǧ�׼��ͬ�ͺŵĲ�Ʒ��β��ѡȡ��ǧ��ַ��ϵͳNDP1000��

ͼ1 ��ַ��ϵͳNDP1000

��Ʒ��

��IPS��ɣ��ĺ��档��ϵͳ��Ҫ��ݿ��֧�֣��Access��SQL�ȡ��ɹ��ġ��ۺ��ʾ��ġ��־��ġ��û��ơ��ݿ⵼��6��ɣ��Լ��ʵʱ��ء�

��

�Ա��β��Ե��ݰ��¼��ʾ��ַ�ʽ��־��Ʒ��ȹ��ܡ��༶��Ʒ��ȫ�ԡ��Լ��ַ��Ͳ�Ʒ��ܵȸ��档��ڵ�ǰ��ϵĺڿ͹��Խ��Խ��ؼ��Ӧ�ò�ĸ��ֿ��ŷ��ϣ��Ϊ�ṩ��ַ��Ʒ��Ƿ��ܹ��Щ��ֽ��о�ȷ�ļ��Ǳ�֤ҵ��е��Ҫǰ�ᡣΪ��Ч��IPS�ķ��Ҫ��ҵ��Webҵ��֣��ͼ��£�

ͼ2��

��֮һ��ҵ��

��ǰ��ҵ��㹥��Ҫ��没��ľ��ŵȡ��ڲ��У��ö��ֻ��Ϲ�Ϊ��没��ľ��ŵȹ��ߣ��IPS��˲��ԡ�

��Թ��ߣ�

��ʹ��IIS5HACK��imap_exp��MS03-051��IDAHack��SqlExec��sqlhello��MSF��IISMiscOverflowV2_Build0013��messenger�ȣ�

��ľ��Ų��ʹ�ö��֮��Ҹ��ӡ��ӡ�Զ��ȣ�

��没��ʹ��Readme.exe��Httpext.dll,tftp32.exe�ȣ�

��Խ��

��NDP1000��Щ��ľ��๥��桢��Ϊ��ȷ��⣬ʵʱ�ϱ��ʾ��ı��ݲ��Խ��Ч��ϡ�

��IPS��ϻ��ڹ��ԭ��ڹ��Ϸ��Լ��ƺ��ǳ�ר��˶Ը��㹥��Ϊ��ʶ��ͨ��Щ��ߺͳ��Ŀ��飬��IPS�ܹ�ȫ��ȷ��⣬��ϡ�

��֮��WEBҵ��

��Web�ܹ��Ĺ㷺Ӧ�ã��Web��ֹ��SQLע�빥��Web��վ��ҳ��ȡ��Ա��룬�ƻ��վ��ݵȶ��Ϊ��Ϊͻ��β��Web��ձ��SQLע��;ܾ��񹥻�Ϊ��ֹ��ϳ��ߵķ�ʽ��IPS��WEBҵ��˲��ԡ�

��SQLע�빥��

��Է��

�ֹ��ݿ�ע��䣬��磺�ж��Ƿ��ע��㡢�½⵱ǰ��ݱ��е��ֶ��ͨ��char��β²⡢��ѯ��Ա��ֶ��ȣ�

��Խ��

��IPS��GET��Cookie��Post�ȶ��SQLע�빥��о�ȷ��⣬ʵʱ�ϱ��ʾ��ı��ݲ��Խ��Ч��ϣ�ͬʱ��֤�˶��Web��ʵķ��С�

��ܾ��񹥻�

��Թ��ߣ�

ICMP Flood��UDP Flood��Syn Flood��ACK Flood�ȣ�

��Խ��

��IPS��Զ��ÿ��Flood��ֵ��ܱ��󲢷��Զ��IP��ܱ��󲢷��Ȳ��ͬʱ�߱�Flood��ߣ��ܹ��ֹ��߷��ľܾ��񹥻��ϡ�

��ʱ�Ȳ��ܲ��У��IPSNDP1000��ﵽ˫��ǧ��٣��н�С��ӳ١��Ӧ�ò��ܲ��У��ֱ��µļ��Ȼ��100��

��

��Ա��ǳ��ַ��ϵͳNDP1000��ü򵥡��Ѻá��ơ��ú��нϸߵļ��ر��WEBҵ��棬��ֳ��˶Ը��WEBӦ�ù��ĸ�ʶ��ʺͷ��һ��н�ǿ��ҵ��Ϣ��Ĵ��ַ��ܵĲ�Ʒ��

��㾫ȷ���� �������ַ���ϵͳȫ������

��㾫ȷ�� ַ��ϵͳȫ��