September 2021
Beginner to intermediate
392 pages
12h 13m
Chinese
book
Google系统架构解密: 构建安全可靠的系统
by Heather Adkins, Betsy Beyer, Paul Blankinship, Piotr Lewandowski, Ana Oprea, Adam Stubblefield
Content preview from Google系统架构解密: 构建安全可靠的系统
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
调查系统
|
253
•
将关注重心放在具有良好信噪比的日志上。例如,防火墙经常会阻断大量数据包,其中
大多数是无害的,即使是被防火墙屏蔽的恶意数据包也不值得关注。为收集有关这些被
阻断数据的日志,可能会占用大量的带宽和存储空间,几乎没有任何好处。
•
尽可能压缩日志。由于大多数日志包含大量重复的元数据,因此压缩通常非常有效。
•
将存储分为“热”和“冷”两类。可以将旧日志迁移到低成本的脱机云存储(“冷存储”),
同时在本地服务器上保留较新或与已知事件相关的日志以供立即使用(“热存储”)。类
似地,可将压缩的原始日志长时间存储,在高成本的关系数据库中只存储近期的日志,
并添加完整索引。
•
有策略地轮换日志。通常最好先删除最旧的日志,但你也可能希望将最重要的日志类型
保留更长时间。
15.3
可靠
、
安全的调试访问
调试问题时,通常需要访问系统及其存储的数据。恶意或被控制的调试人员能否接触敏感
信息?安全系统出现故障后能解决吗(记住一点,所有系统都会有故障)?需要确保调试
系统是可靠且安全的。
15.3.1
可靠性
日志记录是可能造成系统故障的原因之一。例如,系统可能会耗尽存储日志的磁盘空间。
在本示例场景下,故障时打开也需要权衡:这种方法可以使整个系统更具弹性,但攻击者
可能会破坏日志记录机制。
针对可能需要自行调试或修复安全系统的情况提前做准备。要考虑一些必要的权衡,来确
保在不会将自己锁在系统外的前提下仍然可以保证系统的安全。在这种情况下,可考虑将
一组仅用于紧急情况的凭据保存在一个安全的位置,使用时会触发高可信度告警 ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.