摘要
介绍了一种典型的针对网络应用层的攻击——SQL注入攻击,在分析了SQL注入攻击的形式、特点及攻击手法的基础上提出了一种基于规则的检测SQL注入攻击的方法,并给出了在Snort中的实现形式,使得SQL注入攻击在网络边缘就被识别并阻隔,以此保护服务器及内部网络的安全.
This article introduces a typical application layer attacks against networks, SQL injection attack. In introduced SQL injection attack the form, the characteristic and in the attack technique foundation proposed one kind based on rule examination SQL injection attack the method, and has produced in the Snort realization form. Causes SQL injection attack to distinguish in the network edge and to be cut off, by this protection server and internal network security.
出处
《陕西科技大学学报(自然科学版)》
2007年第2期121-123,132,共4页
Journal of Shaanxi University of Science & Technology