翻訳と辞書 Words near each other ・ Squib (weblog) ・ Squib (writing) ・ Squib kick ・ Squib load ・ Squib, Kentucky ・ Squibs (1921 film) ・ Squibs (1935 film) ・ Squibs Wins the Calcutta Sweep ・ Squick ・ SQUID ・ Squid ・ Squid (comics) ・ Squid (DC Comics) ・ Squid (disambiguation) ・ Squid (Marvel Comics) ・ Squatting attack ・ Squatting in England and Wales ・ Squatting in the United States ・ Squatting position ・ Squaw ・ Squaw Canyon Oil Field ・ Squaw Cap, New Brunswick ・ Squaw Creek ・ Squaw Creek (Ames, Iowa) ・ Squaw Creek (British Columbia) ・ Squaw Creek (Payette River) ・ Squaw Creek National Wildlife Refuge ・ Squaw Creek Reservoir ・ Squaw Creek Southern Railroad ・ Squaw Gap, North Dakota Dictionary Lists mini英和辞書 mini和英辞書 Webster 1913 Latin-English FOLDOC Wikipedia English ウィキペディア

翻訳と辞書　辞書検索 [ 開発暫定版 ] スポンサード リンク Squatting attack ： ウィキペディア英語版 Squatting attack Squatting attack, in computer science, is a kind of DoS attack where a program interferes with another program through the use of shared synchronization objects in an unwanted or unexpected way. That attack is known in the Microsoft Windows operating system, which offers named objects as an interprocess synchronization mechanism. With named objects, a process may open a synchronization object as a shared resource by just specifying a name. Subsequent processes may use the same name to open that resource and have a way to synchronize with the first process. The squatting attack is possible because, if the legitimate program does not enforce tight security rules for the resources, processes from arbitrary security contexts may gain access to them and ultimately take control of the system. Consider, for example, antivirus software installed on a Microsoft Windows machine. The solution has two pieces:〔The example serves just as an illustration. Additional components might be required for it to work properly, as e.g. a driver.〕 a service, which monitors and scans every file when it is opened, and a manual scanner, which scans the file system when a user requests it. Under normal conditions the service should scan the system occasionally. However, if a user requests a manual scan, the service must stop temporarily to let the manual scanner work, otherwise every file would be scanned twice: by the manual scanner and by the service. To solve this problem the vendor chooses to implement an event based synchronization mechanism, where the service keeps a named event opened and checks it whenever a file is opened. If the event is ''unset'' the file is scanned, otherwise it is ignored. The manual scanner, then, to operate, opens the named event, sets it before scanning (disabling the service), scans the file system and resets the event back when finished. This design is prone to a squatting attack because a malicious program can set the named event and disable the service completely. ==Notes== 〔 抄文引用元・出典: フリー百科事典『 ウィキペディア（Wikipedia）』 ■ウィキペディアで「Squatting attack」の詳細全文を読む スポンサード リンク 翻訳と辞書 : 翻訳のためのインターネットリソース Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.