Glossaire
| ASCII | (American Standard Code For Information Interchange) = character set consisting in the association of codes to every important character (eg : A = 97, A = 65,...) |
| Buffer Overflow | A flaw which consists in making the memory overflow for code exploitation. |
| CGI | (Common Gateway Interface) = an interface which allows a user to run a particular program on a server. |
| Chroot | A control allowing to create a closed environnement around a process. In case the process is pirated, the hacker cannot get to the server root. |
| Cookies | Small data file put on your computer by a website in order to identify you whenever you log on that website. They are used by the site to store information about you (eg : articles in your cart in the case of an on-line sales website). |
| Cryptography | The science of coding data by using mathematical procedures. |
| Daemon | Name taken from the UNIX system and designating a process (service). |
| DNS | (Domain Name Service) = transforms servers names like « www.server.fr » into an IP address 123.456.789.012 |
| DOS | (Denial of Service) = an attack allowing to saturate a service with false queries. |
| Exploit | A technique allowing to exploit a security flaw. |
| Finger | A program of the UNIX system allowing to get information about a user. |
| Firewall | A system that allows to protect a computer from pirates by filtering connections to that computer. |
| IP | (Internet Protocole) = an address which allows to clearly identify a computer on the Internet under the form 123.456.789.012. |
| Patch | An application that allows to correct a flaw in a program. |
| Proxy | A server which is used as an intermediate between the browser of an Internet user and the web server he/she wants to visit. It can be used to hide one's connection. |
| Root | The administrator (account) of a UNIX system. |
| Router | A system allowing to redirect data in a network |
| Shell | A software that manages command lines (eg : the DOS console under Windows or sh under Unix). |
| Sniffer | A monitoring program that intercepts the data sent in a network. |
| Social Engineering | (or Social hacking) = a method based on people's naïvety and which aim is to get information from them. |
| Socket | A communication standard which allows an application to interact with a protocol. |
| SQL injection | A flaw that, using a script, allows to insert code in an SQL database without having access to it. |
| Telnet | A program that allows to use an application on a remote computer. |
| Traceroute | A program that determines the distance covered by your data when sent to a machine. |
| Trojan | see trojan horse. |
| Trojan Horse | (or Trojan) = an apparently harmless program which allows to infect or take over a computer. |
| XSS | (Cross Site Scripting) = an attack exploiting the weakness of the validation of a website's entries. |
»
