September 2021
Beginner to intermediate
392 pages
12h 13m
Chinese
book
Google系统架构解密: 构建安全可靠的系统
by Heather Adkins, Betsy Beyer, Paul Blankinship, Piotr Lewandowski, Ana Oprea, Adam Stubblefield
Content preview from Google系统架构解密: 构建安全可靠的系统
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
254
|
第
15
章
此外,有些分析确实需要实际数据。例如,在数据库中查找频繁访问的记录,然后分析这
类访问经常出现的原因。我们曾经调试过一个底层存储问题,产生原因是有个账户每小时
接收数千封电子邮件。
5.1.2
节中介绍了此类场景下应如何做访问控制。
15.4
小结
对管理系统这项工作来说,调试和调查是必要的。本章的要点回顾如下。
•
调试
是一项基本活动,需要通过系统化的技术而不是主观臆断来获得结果。通过开发工
具或记录日志来增强对系统的了解,进而大大简化调试。在练习调试的过程中磨炼技能。
•
安全调查
与调试有别。二者涉及不同的人员、策略和风险。调查小组应该包含有经验的
安全专家。
•
集中记录日志
对调试非常有用,对调查非常重要,并且通常对业务分析也很有帮助。
•
反复查看
最近的一些调查,问问自己哪些信息可帮助调试或调查问题。调试是一个持续
改进的过程。要定期添加数据源,并寻找提高可观测性的方法。
•
面向安全性设计
。需要日志。调试人员需要访问系统和存储的数据。但是,随着存储的
数据量增加,日志和调试终端都可能成为攻击目标。要设计日志系统记录需要收集的信
息,访问数据时也需要设置强大的权限、特权和策略。
调试和安全性调查通常都依赖于突如其来的洞察力和运气,即便是最出色的调试人员有时
也会被蒙在鼓里。记住,机遇偏爱有准备的人:准备好日志以及索引和调查日志的系统,
才能抓住即将到来的机会。祝你好运!
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.