要完成这项任务,可以将您需要保护的文件系统和用户的硬限制设置为1kb。
To do this, set the hard limit to 1kb for the file system and user you want to protect.
虽然文件被放错了位置,但是这个例子强调了针对攻击者保护文件系统的重要性。
Although the files were erroneously placed, this example underscores the importance of guarding your file system against attackers.
不过您也不必担心安全问题,因为文件系统访问控制机制通常都可以提供充分的保护。
However, this is not necessarily a security concern since the file system access control mechanism usually provides sufficient protection.
在线策略,用于加密写到文件系统的数据,以及通过访问控制保护数据。
An online policy is used for encrypting data written to a file system and protecting data with access control.
但是系统仍然在保护该文件。
处于保护的目的,OS的文件系统是只读的。
如果系统找到一个匹配文件保护的密钥,那么这个进程就可以对文件密钥和文件内容进行解密。
If the system finds a key matching the file protection, the process is able to decrypt the file key and file content.
是否有敏感数据,具有额外安全特性的文件系统可能能够进一步保护它们?
Do you have sensitive data that might benefit from file systems with extra security features?
在确保输入不包括无效值之后,可以继续保护文件系统、数据库和会话。
When you make sure your input doesn't include bad values, you can move on to guarding your file system, database, and session.
当进程需要打开一个受efs保护的文件时,系统将对凭据进行测试。
When the process needs to open an EFS-protected file, the system tests the credentials.
支持每个文件系统多达256个快照,可以提供数据保护。
Support for up to 256 Snapshots per file system to provide Data protection.
无论如何,对系统二进制代码谨慎地应用文件能力,用这种方式替代setuidroot方式,可以更好地保护系统。
Nevertheless, file capabilities applied judiciously to system binaries in place of making them setuid root can help protect your systems.
这些用户组用来保护文件系统以及注册表中的东西。
These groups are used to secure things on the files system and in the registry.
Gazelle浏览器的核心是一个操作系统,可以保护站点上的保资源和管理文件分享。
Gazelle's Browser Kernel is an operating system that exclusively manages resource protection and sharing across web site principals.
尽管这个文件由 ACL (AccessControlList) 保护,只允许根用户访问,但是这对于安全性要求高的系统可能不够。
Though this file is ACL (Access Control List)-protected by root only access, it may not be enough for highly secure systems.
代理由FS(文件系统)代理(保护fs)和一个DB代理(保护数据库备份)组成。
The agent consists of a FS (File System) agent, which guards FS, and a DB (Database Backup) agent, which guards DB.
由于它们存储在计算机文件系统中,所以这些文件系统必须妥善保护。
Since they are stored on computer file systems, those file systems must be carefully protected.
策略允许访问的任何应用程序都可以访问保护点下的文件,前提是该应用程序使用系统库来访问文件。
Any application that the policy allows access to can access the files that are under guard points as long as the application USES system libraries to access the files.
策略允许访问的任何应用程序都可以访问保护点下的文件,前提是该应用程序使用系统库来访问文件。
Any application that is allowed access by the policy can access the files that are under guard points as long as the application USES system libraries to access the files.
此外,这两个文件系统都支持数据重复删除、内部数据保护(类raid保护)、数据和元数据校验和以及其他存储功能(如快照)。
In addition, both file systems support data de-duplication, internal data protection (RAID-like protection), data and metadata checksums, and other storage features (like snapshots).
尽管如此,对于保护资源(如进程、容器、系统文件),DB 2基本还是依靠本机操作系统。
However, to protect its resources (such as processes, containers, system files), DB2 mostly relies on the native operating system.
360发布了自己的隐私保护器直面QQ。 隐私保护期提醒用户“某些”欺诈软件在未经用户许可的情况下偷偷扫描用户的系统文件和数据。
On Sept 27th, 360 launched its Privacy Protector to go face to face against QQ by reminding users that “some” chatting software was spying on client system’s private files and data without consent.
这并不会保护数据以防可以监听用户输入密码的根权限入侵,它可以为丢失的没有文件系统加密的设备提供保护。
While this does not protect data from a root compromise that can monitor the user inputting the password, it can provide protection for a lost device without file system encryption.
图8展示了一个受保护的版本控制储存库,它用于存放只有已授权人员或系统可以访问的文件。
Figure 8 shows a protected version-control repository used to host files that only authorized people or systems should access.
保护系统资源的配置文件。
自动备份带有系统状态的系统保护文件。
Automatically backup system protected files with the system state.
屏幕保护下拉列表显示系统文件夹中所有的屏幕保护。选择你需要的一个。
The screen saver drop-down list shows all screen savers in the system folder. Choose the screen saver you want.
它不再局限于系统9系统文件夹,而是分布在多个文件夹,其中大部分是无法访问(看不见的,受保护的或没有权限)。
It is no longer confined within the System 9 System folder, but is distributed all around multiple folders, most of them being inaccessible (invisible, protected or permission denied).
将保护系统清理最近使用的文件。
同时半可信代码可以访问网络以及文件系统,访问注册表,以及其他系统保护的资源。
Meanwhile, partially trusted code can be barred from general access to the network and file systems, access to the registry, and other protected resources of the system.
应用推荐