Deteksi Dan Pencegahan Serangan Shellshock

Putra, Adhitya Restu Kusuma and , Helman Muhammad, S.T., M.T. (2016) Deteksi Dan Pencegahan Serangan Shellshock. Skripsi thesis, Universitas Muhammadiyah Surakarta.

This is the latest version of this item.

BACA FULLTEXT
[img] PDF (Surat Pernyataan Publikasi Ilmiah)
Surat Pernyataan Publikasi Ilmiah.pdf
Restricted to Repository staff only
Download (220kB)
[img] PDF (Naskah Publikasi)
Naskah Publikasi.pdf
Download (1MB)

Abstract

Web Server is a service that is available on a server that provides information services in the form of websites. In building the website usually use various programming languages for combined, it requires a system called the Common Gateway Interface (CGI). In 2014 a security hole with the highest level of vulnerability is found in the Bash (Bourne-again shell), called SHELLSHOCK and listed in the Common Vulnerability and Exposure with code CVE 2014-6271. Bash is the language most widely used as a command line interpreter (CLI) in the Linux operating system, a variation of Unix and Apple OS X. Bash is often also used as a CGI parser in building website, so that the vulnerability also affects the web server. To prevent Shellshock attacks necessarily created a system capable of performing detection and prevention of SHELLSHOCK attacks early. Detection and prevention systems created using open source-based applications such as Snort, Snorby and ConfigServer & Security Firewall. Snort and Snorby used to create a system to detection attacks, while ConfigServer & Security Firewalls are used to create a system to prevent attacks. After applying the detection and prevention systems, SHELLSHOCK attack that led to the web server was able to be blocked by the system so that hackers are not able to perform manipulation or theft of data on the web server. By doing application is detection and prevention systems, SHELLSHOCK attacks can be minimized at an early stage by the system so that the theft of important data was able to be avoided.

Item Type: Karya ilmiah (Skripsi)
Uncontrolled Keywords: Web Server, Common Gateway Interface, Intrusion Detection System, Intrusion Prevention System, Shellshock, CVE 2014-6271.
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Q Science > QA Mathematics > QA76 Computer software
Divisions: Fakultas Ilmu Komunikasi dan Informatika > Teknik Informatika
Depositing User: ADHITYA RESTU KUSUMA PUTRA
Date Deposited: 13 Aug 2016 08:01
Last Modified: 13 Aug 2016 08:01
URI: http://eprints.ums.ac.id/id/eprint/45962

Available Versions of this Item

  • Deteksi Dan Pencegahan Serangan Shellshock. (deposited 13 Aug 2016 08:01) [Currently Displayed]

Actions (login required)

View Item View Item
UMS ETD-db is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.