Giao luu truc tuyen voi ong Nguyen Tu Quang

Thứ ba, 09 Tháng một 2007, 15:35 GMT+7
Giao luu truc tuyen voi ong Nguyen Tu Quang
Mot buoi tu van truc tuyen tren TNO. Anh Dao Ngoc Thach
Vao luc 14h30 ngay thu nam 11/1/2007, TNO se to chuc buoi giao luu truc tuyen voi ong Nguyen Tu Quang - Giam doc Trung tam An ninh mang BKIS, DH Bach khoa Ha Noi, va mot so chuyen gia cua Trung tam An ninh mang BKIS. Noi dung giao luu truc tuyen gom: Tinh hinh an ninh mang hien nay, cach bao mat, khac phuc su co; Hacker: ranh gioi giua hacker tot va xau... va mot so van de thoi su ban doc quan tam ve an ninh mang.


* Lieu he thong an ninh mang cua ta co dam bao khong bi hacker tan cong trong qua trinh chuyen tien dien tu va quan ly tai khoan cua khach hang gui tien?
(lscuong, 37 tuoi, Nam, 715 tran hung dao q5 tphcm, ngan hang)

- Nguyen Minh Duc - Truong phong an ninh ung dung BKAV: Viec he thong bi hacker tan cong hay khong, khong phu thuoc vao doi tuong bi tan cong, ma phu thuoc vao nguoi tan cong.

Chac ban dinh hoi, lieu hacker co can thiep duoc vao he thong chuyen tien cua cac ngan hang o Viet Nam.

Chung toi xin tra loi nhu sau:

Dieu nay con phu thuoc vao tung ngan hang va con phu thuoc vao viec thuc thi luat phap doi voi toi pham tren mang co duoc nghiem minh hay khong. Con BKIS luon trong tu the san sang ho tro cac ngan hang va co quan cong an trong viec dam bao an ninh mang o Viet Nam.



- Xin hoi 2 y + Moi phien ban Bkav cap nhat moi thi no duoc cap nhat mot so loai vi rut moi, xin hoi phien ban Bkav moi nay co diet nhung loai vi rut cu khong? + Theo anh chuong trinh diet vi rut Bkav so sanh voi cac chuong trinh diet vi rut khac nhu(Anti virutt, Avast vv....) thi cai nao khoe hon, diet duoc nhieu vi rut hon va mat manh mat yeu cua nhung loai chuong trinh. Xin cam on anh!
(Tien, 26 tuoi, Nam, Da Nang, Ky su Cau Duong)

- Anh Vu Ngoc Son (Truong phong Virus, Trung tam An ninh mang BKIS): Cac phien ban Bkav moi da bao gom tat ca cac dau hieu nhan biet nhung virus cu, vi vay ban chi can dung phien ban Bkav moi nhat la du.

Trong tinh hinh virus, spyware, adware xuat hien hang gio nhu hien nay, khi so sanh hieu qua giua cac phan mem diet virus, phai so sanh ca yeu to cong nghe va su ho tro cua chuyen gia doi voi khach hang su dung phan mem do. Vi vay, o thi truong Viet Nam hien nay, sau khi Bkis cho ra doi bo san pham thuong mai (BkavPro, BkavEnterprise, BkavGatewayScan), Bkav co uu the hon cac phan mem diet virus khac.



* Em co mot cau hoi muon hoi: the nao la mot hacker va muon tro thanh hacker co can dieu kien gi khong? va mot cau hoi nho nua la may tinh cua em hinh nhu bi nhiem virut cu mo len la hien len mot bieu tuong hinh tam giac mau vang va co ghi chu System Alert! cu tat di la lai hien len lam the nao de no mat di ? mong hoi am cua anh som nhat
(Nguyen Hoai Nam , 22 tuoi, Nam, 282 Binh Gia - F .10 - TPVung Tau, Le Tan )

- Ong Nguyen Tu Quang: Khai niem ve hacker rat rong va thay doi theo thoi gian. Truoc day, hacker duoc dung de chi nhung nguoi am hieu ve he thong, co kha nang phat hien ra cac loi cua he thong va xam nhap vao he thong khong qua nhung cach thong thuong.

O Viet Nam hien nay, rat nhieu truong hop co nhung hanh dong tan cong, hack, pha hoai nhung lai bao bien la hanh dong canh bao va tu nhan la hacker mu trang. Dieu nay gay nen su nhap nhang giua hacker mu den va hacker mu trang, moi nguoi khong phan biet duoc ro.

Theo quan diem cua chung toi, chi nen chia ra thanh 2 nhom:

- Nhom HACKER: nhung nguoi tan cong, hack, pha cac he thong mang,..
- Nhom chuyen gia an ninh mang: Nhung nguoi phat hien loi va thien chi thuc su, canh bao cu the cho cac quan tri de sua loi. Khong lam thay doi du lieu tren may chu.

Ngay tren the gioi khai niem mu den mu trang cung khong duoc cong nhan mot cach ro rang, chinh thong.

Chung ta nen thong nhat khong su dung khai niem hacker mu trang ma nhung nguoi thuc su lam viec tot va co nang luc trong linh vuc nay thi nen goi luon la cac chuyen gia an ninh mang.



* Em dang la sinh vien cua mot truong DH chuyen nganh hoc la CNTT. Em cung rat muon biet hacker la nhu the nao, va cach thuc hien do ra sao. Xin cho em hoi mot vai van de sau: Neu truong hop em da dot nhap vao duoc ben trong he thong cua mot web site bi loi bao mat thi em co quyen sua loi bao mat do hay khong hay la thong bao cho cac nhan vien quan tri website do biet. va neu lam nhu vay co bi xem la bi vi pham phap luat khong. Em xin noi rang em khong co muc dich pha hoai, danh cap tai lieu, hay la tung virus len mang. Em nghi rang minh o minh song o ngoai doi hay la 1 con nguoi ao tren mang thi quan trong nhat van la cai tam va dao duc cua minh. Song va lam viec co ich cho xa hoi la mot cong dan tot.Xin anh hay tra loi giup em. Em chan thanh cam on
(Vo Thanh Phong, 24 tuoi, Nam, 488/4 Dien Bien Phu F21. Q Binh Thanh TpHCM, sinh vien)

- Anh Vu Ngoc Son (Truong phong Virus, Trung tam An ninh mang Bkis): Khi phat hien ra mot website bi loi, ban khong nen sua doi bat ki thong tin nao tren website do. Hay tim cach lien lac ngay voi nhung nguoi co trach nhiem doi voi website bang email, dien thoai hoac bat ki phuong phap nao ma ban biet chac rang nguoi co trach nhiem se nhan duoc thong tin canh bao cua ban. Sau do ban co the tu van cho ho phuong huong, cach thuc sua chua lo hong. Neu ban co bat cu sua doi gi khi chua duoc phep la ban da vi pham luat.



* Toi khong biet lam cach nao de biet la may tinh cua minh co bi nhiem vi rut hay khong. Cach day vai thang may cua toi tu khoi dong lai moi khi tat may. Toi da cai lai may thi het tinh trang tren. khong biet la may tinh da het vi rut hoan toan hay chua?
(nguyen tien dat, 24 tuoi, Nam, 329/11 dbp p4 q3,tp.hcm, student)

- Ong Nguyen Tu Quang: Hien nay cac loai virus, spyware, worm... rat phuc tap, chung xuat hien moi hang ngay, va voi nguoi su dung thong thuong qua thuc se rat kho de co the tu nhan biet duoc cac dau hieu cua chung.

Vi vay, truoc tien ban nen su dung phan mem diet virus de kiem tra. Neu hien tuong khong het, ban nen goi cac chuyen gia de ho giup ban.

Ban co the goi dien toi Trung tam An ninh mang BKIS theo so 1900585850, de nhan duoc su tro giup cua chung toi. Neu hien tuong do thuc su do virus gay ra, toi tin chac rang chung toi se xu ly duoc. Chung toi chua "bo tay" voi bat ky virus may tinh nao xuat hien o Viet Nam ;-)



* Truoc tien cho em goi loi chuc suc khoe den anh Nguyen Tu Quang va toan bo can bo cua bao Thanh Nien. Mong anh Quang cho em biet nhung phuong phap co ban de bao ve cung nhu la ngan ngua hacker tan cong vao website. Va neu website da bi hacker tan cong thi cach khac phuc nhu the nao? Anh Quang co the gioi thieu cho em mot vai tai lieu hay va huu ich(sach, ebook hay website cung duoc) ve an ninh mang, bao mat website, ... bang tieng Viet duoc khong a? Cuoi cung, em kinh chuc anh Quang va toan bo can bo cua bao Thanh Nien mot nam moi doi dao suc khoe va cong tac tot! Em chan thanh cam on!
(Tran Hung, 22 tuoi, Nam, Quang Nam, Sinh vien)

- Ong Nguyen Tu Quang: Cam on ban, chuc ban va cac ban doc cua Bao Thanh Nien mot nam moi suc khoe va hanh phuc!

De phong chong hacker thi truoc tien, ve phia nhung nguoi chiu trach nhiem quan ly website, ngay tu khi xay dung he thong da phai danh mot phan quan trong cho thiet ke dam bao an ninh mang ca ve ha tang (phan cung) va ung dung (phan mem). Yeu cau cac nha cung cap phan mem (website) phai dam bao viet code an toan trong khi xay dung phan mem. Ra soat toan bo he thong, update cac ban sua loi truoc khi dua he thong vao van hanh.

Nen co chuyen gia tu van khi xay dung he thong. Neu co quan ban la don vi rat quan trong thi nen ap dung he thong ISO27001 – bo tieu chuan ve quan ly an toan thong tin.

Trong qua trinh van hanh, viec cap nhat nhung ban va va ra soat phat hien cac lo hong phai tro thanh cong viec thuong xuyen. Theo doi thong tin tren cac trang web an ninh mang de xem cac phan mem tren website cua minh su dung co bi loi hay khong? Neu co can cap nhat ngay ban sua loi.

http://www.bkav.com.vn
http://secunia.com
http://www.securityfocus.com
http://www.securiteam.com

Neu co dieu kien thi nen co mot Admin chuyen ve cac van de an ninh cho website.

Khi bi hacker tan cong, cac bien phap sau can phai thuc hien khan truong:

Nhanh chong khoanh vung he thong bi anh huong (su dung monitor, logfile...), tam thoi ngat ra khoi he thong. Sau do khoi phuc va tim nguyen nhan. Neu su viec phuc tap thi can lien he voi cac chuyen gia cua cac to chuc cuu ho may tinh (vi du BKIS, VNCERT). Neu su viec nghiem trong hon, can giu lai moi chung cu va trinh bao voi co quan Cong an (C15) de tim thu pham. Ban cung co the bao dieu do cho BKIS, chung toi se ho tro ban khac phuc su co cung nhu cung cac co quan cong an truy tim thu pham.



* Trung tam An ninh mang BKIS co ke hoach gi de ho tro cac cong ty phan mem trong nuoc cai thien ky nang bao mat cho cac phan mem ma ho viet?
(Tran Thanh Dan, 26 tuoi, Nam, SaigonTech - QTSC, Ky su - Giang Vien)

- Ong Nguyen Tu Quang: Dung nhu ban noi, qua thuc te chung toi thay phan lon cac website bi lo hong o Viet Nam la san pham cua cac cong ty phan mem cua chung ta. Do chinh la goc re sau xa cua van de tai sao co nhieu website bi lo hong den vay.

Chung toi da bat dau xuc tien viec dao tao cho mot so cong ty phan mem ve ky nang lap trinh an toan cung nhu nang cao nhan thuc ve viec can phai dau tu cho viec viet code an toan. Chung toi se mo rong viec nay trong nam toi.

Chi nhu vay moi giai quyet duoc triet de van de.



* May toi bi nhiem virus tu sinh ra file Autorun, lam the nao de diet duoc no? Cam on nhieu !
(nguyen van anh, 27 tuoi, Nam, quang nam, dien tu)

- Anh Vu Ngoc Son, Truong phong Virus, Trung tam An ninh mang BKIS: Day la loai virus lay qua USB va thoi gian qua co rat nhieu loai virus nhu vay xuat hien o Viet Nam. Ban co the dung BKAV phien ban moi nhat de diet.

Trong truong hop co the la loai virus vua moi xuat hien, ban hay goi dien hay email cho BKIS, chung toi se huong dan lay mau va cap nhat vao phien ban moi. Viec nay co the giai quyet trong vai tieng dong ho. Hay dung ngan ngai lien lac voi chung toi neu ban gap phai van de voi virus.



* Dung tu buc tuong lua (MS ISA 2004) lam cach nao de biet chinh xac may tram trong mang LAN dang bi nhiem VIRUS ?
(Nguyen Phuc Vinh, 34 tuoi, Nam, So 23, duong 30/4, P1,TP.My Tho, Tien Giang, IT)

- Ong Nguyen Tu Quang: Dung tu phia mot firewall thi chi co the quan sat duoc cac connection. Tuy nhien khong nhieu loai virus tao ra connection nhu vay, do do neu chi su dung firewall thi khong hieu qua trong viec chong virus, ban can trien khai mot giai phap chong virus tong the cho he thong thi moi dam bao luon luon san sang doi pho voi moi tinh huong.



* Neu cac hacker nuoc ngoai tan cong website o VN, BKIS co the tim duoc thu pham nhu da tung tim ra o Viet Nam hay khong?
(Chau Minh Nguyen , 20 tuoi, Nu, Ha noi, Sinh vien)

- Ong Nguyen Tu Quang: Cung giong nhu cac vu an ngoai cuoc song, co nhung truong hop tim ra thu pham, nhung cung co the co nhung truong hop khong tim ra thu pham. Neu thu pham o nuoc ngoai, thi phuong phap de truy tim cung giong nhu o trong nuoc. Tat nhien se co nhung kho khan, vi luc do se phai co su lien he voi cac co quan chuc nang tai noi xuat phat cuoc tan cong.

Hien nay, BKIS la dai dien cua Viet Nam trong Hiep hoi cac To chuc Cuu ho may tinh cua khu vuc Chau A - Thai Binh Duong, cac co quan cong an cua Viet Nam cung tham gia vao he thong Interpol. Voi su giup do cua cac to chuc do, trong nhung truong hop can thiet, toi tin rang viec tim ra thu pham la co the. Cung nhu Viet Nam cung da giup cac to chuc noi tren truy tim ra cac toi pham tren mang phat dong tan cong hay vi pham tu Viet Nam.



* Thua ong Nguyen Tu Quang, toi khao khat tro thanh mot hacker. Toi biet ranh gioi giua tot va xau that khong ro rang. Vay ong co khuyen khich toi, hay nhung nguoi giong nhu toi tro thanh mot hacker khong? Toi muon tro thanh hacker, boi vi toi khong biet nguoi ta tan cong may tinh cua minh bang cach nao.Toi rat vui duoc nhan cau tra loi cua ong. Cam on ong.
(Nguyen Van Hung, 23 tuoi, Nam, 12 hung vuong ,tphcm, sinh vien)

- Ong Nguyen Tu Quang: Nhu tren toi da noi, ranh gioi giua hacker mu den, mu trang la rat mong manh va chua ro rang, vay ban nen phan dau tro thanh mot chuyen gia an ninh mang. Nhu vay ban se co the lam duoc nhung viec tot nhu ban mong muon va cung khong so bi hieu nham, giup ich cho moi nguoi cung nhu chinh minh.



* Anh Quang co nhan xet gi voi tinh trang virut dang lan tran mang nhu hien nay! Voi tu cach la giam doc anh ninh mang anh co bien phap gi voi nhung loai virut moi xuat hien nay ko? O truong em virut qua nhieu ko sao ma hoc duoc het! Cam on anh!
(Le Pham My, 21 tuoi, Nam, 28 Nguyen Tri Phuong - Hue, Chuyen vien mang)

- Ong Nguyen Tu Quang: Dung la khong chi o Viet Nam ma tren toan the gioi, virus dang tran lan.

Tai Viet Nam, theo thong ke cua chung toi, co 880 virus moi xuat hien trong nam 2006, binh quan 2,4 virus moi mot ngay, tang gan gap 4 lan so voi so virus xuat hien trong nam 2005 (232), cho thay su bung no ve virus may tinh tai Viet Nam trong nam qua.

De doi pho voi viec nay, cu co virus nao xuat hien tai Viet Nam, chung toi luon co gang cap nhat som nhat. Binh quan, cu 1 den 1 ngay ruoi, chung toi dua ra ban cap nhat cho phien ban moi.



* Gui anh Quang! Truoc het toi rat kham phuc anh trong linh vuc quan ly an ninh mang. Toi cung la nguoi rat yeu tin hoc nhung hinh nhu chua co duyen voi nghe nay. Xin hoi anh: Doi voi nhung nguoi nhu toi muon hoc cach bao mat, an ninh mang truc tuyen thi hoc o dau? Bat dau nhu the nao?
(Trinh dang Tuan, 30 tuoi, Nam, tp Thai Binh, Cong nhan)

- Ong Nguyen Tu Quang: Cam on ban da tin tuong.

De tro thanh chuyen gia an ninh mang, truoc tien ban can hoc de nam vung cac kien thuc nen tang nhu vi xu ly, assembly, lap trinh he thong, lap trinh mang, quan tri mang... Sau do ban co the tu hoc hoac tham gia cac khoa chuyen ve an ninh mang, vi du nhu Security+, CISSP (Certified Information Systems Security Professional)...

Ban cung co the tham gia cac khoa dao tao ve an ninh mang cua BKIS cung nhu mot so don vi khac tai Viet Nam nhu SaigonCTT, Athena... Xin nhan manh la de thuc su tro thanh chuyen gia, truoc khi tham gia cac khoa hoc nay, ban nhat thiet phai nam vung cac kien thuc nen tang nhu toi da ke tren.



Theo cac Anh, chi co nen co1 nganh rieng ve bao mat trong ruong Dai hoc? Co nen dao tao ve bao mat cho cac Quan tri mang o cac co quan Nha nuoc nham giup ho tu bao ve he thong mang cua ho?
(Long Phi, 17 tuoi, Nam, Long Xuyen, Hoc sin)

- Ong Nguyen Tu Quang: Dung la hien nay o Viet Nam, hau nhu chua co truong dai hoc nao dao tao chuyen nganh ve an ninh mang. Vi the se can co nhung truong co chuyen nganh hep nhu vay.

Cac quan tri mang o VIet Nam hien nay phan lon co duoc kinh nghiem la do tu "may mo", vi the cac co quan nen tao dieu kien cho ho tham gia cac khoa hoc chuyen ve an ninh mang.



* May vi tinh cua toi nhiem virus hacktool ma chuong trinh Norton Antivirus chi bao (partial) ma khong diet duoc. Xin cho biet cach giai quyet?
(Vu Dieu Dinh, 54 tuoi, Nam, 36A9 Cau Kinh P25 Binh Thanh TPHCM, Ky su)

- Ong Vu Ngoc Son, truong phong Virus, Trung tam An ninh mang BKIS: Chao bac, trong nhung truong hop nhu vay, bac hay goi dien len Trung tam An ninh mang BKIS, chac chan chung toi se giup bac xu ly duoc cac van de virus ma bac gap phai.



* Cho toi hoi hien nay co phai phan lon cac website Viet Nam con rat nhieu thieu sot trong van de bao mat? De khac phuc cac lo hong thi phai lam gi?
(Trinh Thanh Tuan, 23 tuoi, Nam, 32 Le Hong Phong - TP Hue, sinh vien)

- Ong Nguyen Minh Duc - Truong phong an ninh ung dung BKIS: Trong nam qua, theo danh gia cua BKIS co khoang 26% website o Viet Nam ton tai diem yeu. Cac website nay thuong mac phai nhung loi sau:

Lap trinh khong an toan:

- SQL Injection: khong kiem tra tinh hop le cua cac bien dau vao, khien tin tac co the chen cac cau lenh SQL nguy hiem
- XSS: khong kiem tra tinh hop le cua cac bien dau vao, khien tin tac co the chen cac doan script nguy hiem
- Khong kiem tra dinh dang file upload

Quan tri he thong may chu chua chat che:

- Khong cap nhat thuong xuyen cac ban va PM nhu he dieu hanh, web server, database server...
- Phan quyen chua tot
- Dat mat khau quan tri yeu
- Mo nhieu dich vu khong can thiet
....

De khac phuc thi nhu o tren anh Quang da tra loi, ngay tu khi thiet ke he thong da phai dua van de an ninh mang vao, trong luc van hanh he thong thi phai thuong xuyen theo doi cac ban tin an ninh mang de biet cac phan mem minh dang su dung co bi lo hong hay khong va cach va nhu the nao.



* Co cach nao de khoa 1 cong (port ) bi mo bat hop phap, co che de mo va dong 1 port?
(Dinh Ngoc Thuan, 30 tuoi, Nam, Nam Dinh, CNTT)

- Ong Nguyen Minh Duc, Truong phong An ninh Ung dung, BKIS: Chao ban, de kiem soat va quan ly duoc cac cong tren he thong, ban co the su dung firewall (tuong lua). Khi do nguyen tac thuong duoc ap dung se la: chi mo nhung cong can thiet, con lai la cam. Tuong lua se ngan chan cac hanh dong mo cong bat hop phap tren he thong cua ban, giup ban tranh khoi nguy co bi hacker loi dung mo "cua hau" (back door) de tham nhap vao he thong.



* Chao anh Nguyen Tu Quang. Em rat lay lam kham phuc vi su phat trien cung nhu dong gop cua BKIS doi voi nen CNTT nuoc nha. Anh co the bat mi mot chut ve kinh nghiem thanh cong cua anh khong? Yeu to con nguoi hay yeu to cong nghe quan trong hon??? Em xin co cau hoi thu 2: Trien vong cua nghe An Ninh Mang o Viet Nam. Em xin cam on!
(doilucbuon, 23 tuoi, Nam, Ha Noi, Sinh Vien)

- Ong Nguyen Tu Quang: Cam on ban da tin tuong BKIS.

Doi voi an ninh mang thi dung la con nguoi moi la yeu to quyet dinh. Cuoc chien dau voi virus hay cac vu hack thuc ra la cuoc chien giua nguoi voi nguoi. Thuc ra thi toi cung khong co bi quyet gi dac biet, toi xin dung cau khau hieu cua anh em trong Trung tam de noi len bi quyet cua toi, do la: "Hay lam viec het minh, nhung dieu tot dep se den voi ban". Nghe thi co ve "sach vo" nhung qua thuc do chinh la nhung gi ma toi rut ra duoc trong cong viec cua minh noi chung va trong nhieu nam lam ve an ninh mang noi rieng.



* Mang noi bo trong 1 cong ty, lam the nao de kiem soat va ngan chang virut. IP cong ty han che bang cach khong cho dung o mem, CD, chan cong USB, theo anh nhu vay co dung khong, hay la IT khong co trinh do???
(Hoang Xuan Toan, 31 tuoi, Nam, Quan Toan, HP, marketing)

- Ong Vu Ngoc Son: De ngan chan virus hieu qua cho mot doanh nghiep ban nen ap dung giai phap chong virus tong the nhu sau:

1. Chan virus ngay tren duong vao ra he thong mang noi bo (Internet Gateway). Thong thuong cac hang diet virus se cung cap phan mem Gateway Scan de phuc vu muc dich nay.

2. Bao ve cho toan bo cac may tram trong mang, su dung phan mem diet virus hoat dong theo mo hinh client/server - giai phap Enterprise. Quan ly tap trung thong nhat va cap nhat tu dong, nhanh chong cho tat ca cac Antivirus Client thong qua mot Server. Nguoi quan tri he thong mang co the nam duoc tinh hinh virus trong toan mang, biet duoc may nao trong mang nhiem virus, loai virus gi, luon san sang voi moi tinh huong de dua ra bien phap xu ly kip thoi.

Doi voi cac co quan khi chua duoc trang bi giai phap chong virus tong the thi mot so quan tri ap dung viec cam dung o dia mem, CD, USB de trao doi du lieu, viec nay han che duoc phan nao su lay lan cua virus, tuy nhien khong triet de.


Viet Bao
 

E-mail Email bài viết này

Bài viết mới:

Các bài viết khác:

Tiếp theo >>

Việt Báo - Tin Xã Hội >>