嗯,用户让我帮忙总结一下这篇文章的内容,控制在一百个字以内,而且不需要用“文章内容总结”或者“这篇文章”这样的开头。直接写描述就行。首先,我需要仔细阅读这篇文章,理解它的主要内容。 文章主要讲的是过去一年中网络安全领域的一些积极趋势。作者提到虽然年底快到了,回顾过去一年的网络安全情况,虽然有很多不好的事情发生,但还是有一些积极的变化值得关注。 具体来说,文章提到了三个积极的趋势:首先是工业控制系统暴露在公网上的数量减少了超过10%。其次是在443端口上支持SSLv2和SSLv3的服务器数量都有所下降。比如SSLv3支持的服务器从200万减少到100多万,SSLv2支持的服务器从32万多减少到14.5万左右。不过作者也提到这些数据可能不完全准确,但趋势是明显的。 作者还提到作为网络安全专业人士,虽然大部分时间关注的是负面趋势,但偶尔看到这些背景中的积极变化也是好的,这些小进步长期来看很重要。 接下来,我需要把这些信息浓缩到100字以内。要确保涵盖三个主要点:ICS暴露减少、SSLv2和SSLv3支持减少、以及总体积极趋势。同时要保持语言简洁明了。 可能的结构是:首先点明主题是网络安全领域的积极变化,然后分别简述每个趋势的变化情况,最后强调这些小进步的重要性。 现在试着组织一下语言: “文章指出过去一年网络安全领域的一些积极变化:工业控制系统暴露于公网的数量减少了10%以上;支持SSLv2和SSLv3的服务器数量大幅下降;尽管进步不大,但长期来看意义重大。” 这样大概在50字左右,符合要求。再检查一下是否涵盖了所有关键点,并且没有使用禁止的开头词。 </think> 文章指出过去一年网络安全领域的一些积极变化:工业控制系统暴露于公网的数量减少了10%以上;支持SSLv2和SSLv3的服务器数量大幅下降;尽管进步不大,但长期来看意义重大。 2025-12-18 08:27:33 Author: isc.sans.edu(查看原文) 阅读量:6 收藏
Since the end of the year is quickly approaching, it is undoubtedly a good time to look back at what the past twelve months have brought to us… And given that the entire cyber security profession is about protecting various systems from “bad things” (and we’ve all correspondingly seen more than our share of the “bad”), I thought that it might be pleasant to look at a few positive background trends that have accompanied us throughout the year, without us necessarily noticing…
It should be mentioned that all the following charts are based on data gathered from Shodan using my TriOp tool, which means that they are certainly not exact. Nevertheless, the data is undoubtedly good enough to show us the general trends.
The first positive trend that deserves a mention is the overall decrease in the number of industrial control systems accessible from the global internet. Although, based on Shodan data, there still appear to be more than 100 thousand public IP addresses that expose a system that may be classified as ICS on one or more ports, the number has fallen by more than 10% since the beginning of the year…
Two other positive trends worth mentioning are related to the support of SSLv2 and SSLv3 on port 443.
While, at the beginning of the year, there were almost 2 million web servers that supported SSLv3, at the time of writing there seem to be only a little more than 1 million of them still left on the public internet.
The situation has similarly improved in terms of public IP addresses exposing web servers that still support SSLv2. In January, there were more than 320 thousand such servers, while now only about 145 thousand of them seem to remain in December (unsurprisingly, a significant percentage of these servers seem to be located in Kazakhstan, which is something we’ve discussed previously[1]).
Although, as cyber security professionals, we have to – by necessity – focus mostly on unpleasant trends (such as those related to rising numbers of zero-day vulnerabilities discovered each year, or the continuously increasing impacts of attacks), it is good to notice from time to time that "in the background", some things are getting better... Even if the improvements are only small, they do still count in the long run.
-----------
Jan Kopriva
LinkedIn
Nettles Consulting
如有侵权请联系:admin#unsafe.sh