{"id":214,"date":"2009-02-19T00:34:24","date_gmt":"2009-02-18T22:34:24","guid":{"rendered":"http:\/\/www.borayildiz.com\/?p=214"},"modified":"2009-02-19T00:34:24","modified_gmt":"2009-02-18T22:34:24","slug":"","status":"publish","type":"post","link":"https:\/\/www.borayildiz.com\/blog\/en\/symantecin-internet-sitesi-hacklendi.html","title":{"rendered":"","raw":""},"content":{"rendered":"","protected":false,"raw":""},"excerpt":{"rendered":"","protected":false,"raw":""},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_en_post_content":"","_en_post_name":"","_en_post_excerpt":"","_en_post_title":"","_tr_post_content":"Etik hacker grubu HackersBlog, antiv\u00fcr\u00fcs ve \u0130nternet g\u00fcvenli\u011fi firmas\u0131 Symantec\u2019in \u0130nternet sitesinde bir a\u00e7\u0131k buldu\u011funu duyurdu.\n\nHackersBlog toplulu\u011fu \u00fcyelerinden \u201cunu\u201d lakapl\u0131 Romanya\u2019l\u0131 etik hacker (bilgisini sistemlerin a\u00e7\u0131\u011f\u0131n\u0131 bulmak i\u00e7in kullanan, zarar vermeyen bilgisayar korsan\u0131), sekt\u00f6r\u00fcn en b\u00fcy\u00fck antivir\u00fcs \u00fcreticilerinden Symantec\u2019in internet sitesinde, \u00fcr\u00fcn y\u00fckleme merkezinde bir a\u00e7\u0131k buldu. A\u00e7\u0131k, suistimal edilmeden firmaya bildirildi.\n\nK\u00f6r SQL Enjeksiyon (Blind SQL Injection) tekni\u011fi ile ger\u00e7ekle\u015ftirilen sald\u0131r\u0131larda sistemin veritaban\u0131na ula\u015fmay\u0131 ba\u015fard\u0131\u011f\u0131n\u0131 belirten \u2018unu\u2019, zay\u0131f tasarlanm\u0131\u015f bir de\u011fi\u015fkenin SQL enjeksiyonuna olanak tan\u0131d\u0131\u011f\u0131n\u0131 ve sald\u0131r\u0131y\u0131 bu \u015fekilde ger\u00e7ekle\u015ftirdi\u011fini s\u00f6yledi.\n\nSymantec ticari sitesini PHP 5.2.6 mod\u00fcl\u00fc \u00e7al\u0131\u015ft\u0131ran Apache Web Sunucusu ve MySQL 5.0.22 veritaban\u0131 sunucusu kullanarak i\u015fletiyor. Kullan\u0131lan K\u00f6r SQL Enjeksiyon y\u00f6ntemi, normal bir SQL Enjeksiyon\u2019una nazaran uygulanmas\u0131 daha zor bir y\u00f6ntem. Standart bir enjeksiyon sald\u0131r\u0131s\u0131nda sald\u0131rgan i\u015fine yarayabilecek bilgiler sunan hata mesajlar\u0131 al\u0131rken, kullan\u0131lan y\u00f6ntemde sald\u0131rgan\u0131n i\u015fi al\u0131nan sunucu hata mesajlar\u0131n\u0131n i\u015fe yarar bilgi vermemesinden dolay\u0131 daha zor uygulanabiliyor.\n\nUnu, bu hata nedeniyle Symantec ile ileti\u015fime ge\u00e7ti\u011fini, en az\u0131ndan denedi\u011fini belirtiyor. HackersBlog toplulu\u011fu, ge\u00e7ti\u011fimiz g\u00fcnlerde Kaspersky, F-Secure, Bitdefender gibi \u0130nternet g\u00fcvenli\u011fi firmalar\u0131n\u0131n sitelerine sald\u0131r\u0131da bulunmu\u015f, ba\u015far\u0131l\u0131 olmu\u015f ve firmalar\u0131 a\u00e7\u0131klar\u0131 konusunda uyarm\u0131\u015ft\u0131.\n\nUnu daha \u00f6nce Yahoo\u2019nun sisteminde de bir hata bulmu\u015ftu. Etik hacker, International Herald Tribune\u2019un web sitesinde de benzer bir a\u00e7\u0131k bulundu\u011funu ancak hen\u00fcz ba\u015far\u0131l\u0131 bir sald\u0131r\u0131 yapamad\u0131\u011f\u0131n\u0131 belirtiyor.\n\nKaynak:\u00a0http:\/\/www.ntvmsnbc.com","_tr_post_name":"symantecin-internet-sitesi-hacklendi","_tr_post_excerpt":"","_tr_post_title":"Symantec\u2019in \u0130nternet sitesi \u2018hack\u2019lendi","edit_language":"en"},"categories":[7],"tags":[132,133,183,184,415,429,552,686,906,908,1018,1020,1277],"_links":{"self":[{"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/posts\/214"}],"collection":[{"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/comments?post=214"}],"version-history":[{"count":0,"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/posts\/214\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/media?parent=214"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/categories?post=214"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.borayildiz.com\/blog\/en\/wp-json\/wp\/v2\/tags?post=214"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}