For example, according to
this myth, if you create a Web site but give the URL only
to your friends, you don't have to worry about it being
attacked. Another example we have seen is the creation of
a backdoor around a
firewall by putting a second
network card in a DMZ system and directly connecting
it to the internal network. People using such a strategy think
that because they
have hidden the weakness, no one will find it and the organization
is safe.
However, security through obscurity does not work. Someone
will find the
weakness or stumble upon it and the systems will be compromised.
This course prepares
you for EC-Council Certified Ethical Hacker exam 312-50
Learn More about the Certified
Ethical Hacker Course
Who Should Attend
This course will significantly
benefit security officers, auditors, security professionals, site
administrators, and anyone who is concerned about the integrity of
the network infrastructure.
Duration:
5 days (9:00 – 5:00)
Certification
The Certified Ethical Hacker certification exam 312-50
will be conducted on the last day of training. Students need to pass
the online Prometric exam to receive CEH
certification.
Resources
To further your studies, you should check out the Network Security Archive.
Learn More about the Certified
Ethical Hacker Course
Many people assume
they cannot be traced when they are online. They
erroneously believe that if they give a fake name and address
when signing up for
free e-mail or with an ISP for an Internet connection, they
have hidden themselves
among the millions of users speeding around the World Wide
Web. If they steal a
user name and password from someone in another state, they
feel they have
gained complete anonymity on the information superhighway.
In reality, the use of
anonymizing systems, remote networks (sometimes in different
countries), and
spoofing software is required to achieve even a small degree
of anonymity. Even
then, your ISP is probably logging
your initial point of entry onto the Internet.
It is easy to go to one of the countless free e-mail services
on the Internet, supply
bogus information, and get an account. However, your privacy
is not protected.
That e-mail service knows from which Web site (if any) you
came to its site and the
IP address of the machine you used. It can find the owner
of the IP address from a
“whois” query. If you signed up from home, your
ISP has likely dynamically
assigned you an IP address from the collection it owns. It
records the time and day
that it gave you this address and can share this information
with federal, state, and
Source: Hack IT: Security Through Penetration Testing
