摘要
文章首先对现有的一些防扫描技术进行分析,指出了各自存在的问题。然后,提出了一种基于SHT算法的扫描检测技术,并设计了基于netfilter架构的Linux防扫描体系。这种防扫描体系可以较好地弥补现有防扫描技术的不足。
In this paper some existing anti-scanning techniques are first introduced, and then the problems existed in each of these anti-scanning means are also pointed out. The third part describes a new anti-scanning technique based on Sequential Hypothesis Testing algorithm. And an anti-scanning system of Linux based on netfilter architecture is described in the last part. This anti-scanning system can well remedy the defects of existing anti-scanning systems.
出处
《信息安全与通信保密》
2007年第6期192-194,共3页
Information Security and Communications Privacy
关键词
防扫描
SHT算法
netfilter架构
anti-scanning
Sequential Hypothesis Testing algorithm
netfilter architecture