[oracle@1 ~]$ sqlplus / as sysdba
SQL*Plus: Release 11.2.0.2.0 Production on Wed Jan 11 07:45:51 2012
Copyright (c) 1982, 2010, Oracle. All rights reserved.
Connected to:
Oracle Database 11g Enterprise Edition Release 11.2.0.2.0 - 64bit
Production
With the Partitioning, Real Application Clusters, Automatic Storage
Management, OLAP,
Data Mining and Real Application Testing options
SQL> select distinct owner from dba_segments where
tablespace_name='USERS';
OWNER
------------------------------
EX_DEV1
SCOTT
AUDITOR
SQL> select file_name,bytes/1024/1024 from dba_data_files where
tablespace_name=
'USERS';
FILE_NAME
-------------------------------------------------------------------
-------------
BYTES/1024/1024
---------------
+DATA01/im/datafile/users.259.760022883
29880
SQL> alter tablespace users add datafile '+DATA01' size 2000M;
Tablespace altered.
SQL> select file_name,bytes/1024/1024 from dba_data_files where
tablespace_name
='USERS';
FILE_NAME
-------------------------------------------------------------------
-------------
BYTES/1024/1024
---------------
+DATA01/im/datafile/users.259.760022883
29880
+DATA01/im/datafile/users.282.772271427
2000
SQL> select file_name,bytes/1024/1024 from dba_data_files where
tablespace_name
='SYSTEM';
FILE_NAME
-------------------------------------------------------------------
-------------
BYTES/1024/1024
---------------
+DATA01/im/datafile/system.256.760022881
940
SQL> alter tablespace system add datafile '+DATA01' size 2000M;
Tablespace altered.
SQL> select file_name,bytes/1024/1024 from dba_data_files where
tablespace_name=
'SYSTEM';
FILE_NAME
-------------------------------------------------------------------
-------------
BYTES/1024/1024
---------------
+DATA01/im/datafile/system.256.760022881
940
+DATA01/im/datafile/system.283.772271543
2000
SQL> exit
Wednesday, January 11, 2012
TCP/IP vulnerabilities and various TCP and UDP port numbers
Overlapping IP fragments
This exploit alter the code from the teardrop attack to include the use of a SYN sequence bug. The attack will launch two IP fragments, through the offset of the second piece inside the prior packet's consignment that overlaps but does not include sufficient payloads to complete the datagram
Teardrop Attack
IP needs a packet that is too big for the next router to handle be separated into fragments. The attacker's IP puts a puzzling offset value in the second or afterward fragment.
If the getting operating system is not able to combine the packets consequently, it can collapse the system.
The Unnamed Attack
Deviation of Teardrop attack. Fragments are not overlapping; as an alternative there are gaps included. Watchfully plan of the algorithm for generating these early sequence numbers ensures that overlie in sequence number gap between different incarnations of a link is prevented
SYN Attack
The attacker sends fake TCP SYN requests to a wounded server. The host allocates memory sockets for the connection. It avoids the server from responding to lawful requests. This assault exploits the three-way handshake. Malicious flooding by huge volumes of TCP SYN packets to the injured party system with spoofed source IP addresses can reason DoS.
Port Number Protocol
21 TCP FTP (File Transfer Protocol)
22 TCP/UDP SSH (ssh,scp copy or sftp)
23 TCP/UDP Telnet
25 TCP/UDP SMTP (for sending outgoing emails)
43 TCP WHOIS function
53 TCP/UDP DNS Server (Domain name service for DNS requests)
70 TCP Gopher Protocol
79 TCP Finger protocol
110 TCP POP3 (for receiving email)
119 TCP NNTP (Network News Transfer Protocol)
143 TCP/UDP IMAP4 Protocol (for email service)
194 TCP IRC
389 TCP/UDP LDAP (light weight directory access)
443 TCP Secure HTTP over SSL (https)
465 TCP Secure SMTP (email) using SSL
990 TCP/UDP Secure FTP using SSL
993 TCP Secure IMAP protocol over SSL (for emails)
1433 TCP/UDP Microsoft SQL server port
2082 TCP Cpanel default port
2083 TCP Cpanel over SSL
2086 TCP Cpanel Webhost Manager (default)
2087 TCP Cpanel Webhost Manager (with https)
2095 TCP Cpanel Webmail
2096 TCP Cpanel secure webmail over SSL
2222 TCP DirectAdmin Server Control Panel
This exploit alter the code from the teardrop attack to include the use of a SYN sequence bug. The attack will launch two IP fragments, through the offset of the second piece inside the prior packet's consignment that overlaps but does not include sufficient payloads to complete the datagram
Teardrop Attack
IP needs a packet that is too big for the next router to handle be separated into fragments. The attacker's IP puts a puzzling offset value in the second or afterward fragment.
If the getting operating system is not able to combine the packets consequently, it can collapse the system.
The Unnamed Attack
Deviation of Teardrop attack. Fragments are not overlapping; as an alternative there are gaps included. Watchfully plan of the algorithm for generating these early sequence numbers ensures that overlie in sequence number gap between different incarnations of a link is prevented
SYN Attack
The attacker sends fake TCP SYN requests to a wounded server. The host allocates memory sockets for the connection. It avoids the server from responding to lawful requests. This assault exploits the three-way handshake. Malicious flooding by huge volumes of TCP SYN packets to the injured party system with spoofed source IP addresses can reason DoS.
Port Number Protocol
21 TCP FTP (File Transfer Protocol)
22 TCP/UDP SSH (ssh,scp copy or sftp)
23 TCP/UDP Telnet
25 TCP/UDP SMTP (for sending outgoing emails)
43 TCP WHOIS function
53 TCP/UDP DNS Server (Domain name service for DNS requests)
70 TCP Gopher Protocol
79 TCP Finger protocol
110 TCP POP3 (for receiving email)
119 TCP NNTP (Network News Transfer Protocol)
143 TCP/UDP IMAP4 Protocol (for email service)
194 TCP IRC
389 TCP/UDP LDAP (light weight directory access)
443 TCP Secure HTTP over SSL (https)
465 TCP Secure SMTP (email) using SSL
990 TCP/UDP Secure FTP using SSL
993 TCP Secure IMAP protocol over SSL (for emails)
1433 TCP/UDP Microsoft SQL server port
2082 TCP Cpanel default port
2083 TCP Cpanel over SSL
2086 TCP Cpanel Webhost Manager (default)
2087 TCP Cpanel Webhost Manager (with https)
2095 TCP Cpanel Webmail
2096 TCP Cpanel secure webmail over SSL
2222 TCP DirectAdmin Server Control Panel
Subscribe to:
Comments (Atom)
Posts
