ࡱ> B=>?@AF 3(2/ dJFIF,,C    $.' ",#(7),01444'9=82<.342C  2!!22222222222222222222222222222222222222222222222222}" }!1AQa"q2#BR$3br %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz w!1AQaq"2B #3Rbr $4%&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz ?( ( ( ( ( ( ( (((((1(x_ xVR>ԏDg Y$/G&v5brF?\CEPEPEPEQEQEPFALm=ͩ܏kv&S ı(B%'T=W=ݵK}qu,B,+%'T?%(.u+MFGђIbB݊Ǿ9|UcibELXHT@$:۩jYf-їVtf}:V.jKΗE}>c>FsY{__hMc"DGYP^ VuY;-c{Ex$i7R&tWO- 9˞4EQE%^sǯi>j|+@|Ne9'IB0[;uw4;Ğ#ԆǶMHc6^s2;ϠRhc==zGdFcv|xsӯ)Lx#^@pZn$E7r5QE9>z|cᯈԢѮ"sZ (;L @/oi_T# ic,Fz?ռfs2)LL#@u#?.ı8W蔮I#yXFF *'|Z6F%H^2F7)@B]x'W>XXa,'R鲿HugA_K8-m*{3n>>mfKCZ̶5Ӎ[E¨UEtNiv\J%HTU.G#3xWK𱼰uipp'rq(0>$6TWG27*Ѓ\v!vFǛh=P<^/<}j侴eÍz?ӽy՟ýFĺmkR]Z#FG眃ڽǠEP_myjE[k~N~eAowP;^Lm!e G}͓ih ^.#mP5ʘ*7PjQ@߆ WGFZva'V,-<0ÏZPƒjw^}drU+vں_3@𥿓ے0ґFIV2du_4"`,I'IZPEPEPEQEQEQEQEQEQEQEQE-Q@n-ʩ)ucPNG  IHDROPgAMAPLTEٟ pHYsU IDATxmhg~,U(lĉխbt2ؘX_-R,4 cm_Fal@1mDs\I bRP؉.kY%\{޿&]t3)7 nL==DOi.eXX2Fe>㻩)w{ZNJ3+@_C;MfQf$u*3 ?iS`aE`V¾:>9],Mw[YiA=$SJ3bxR5+lݮ4e=H~cy ,[6V)4IaUnjD+ok SnrVnR1iV}=*C<`udB\#Ѐ#7%Q#Y Ûc#;Q1y\ٸ5|s6>o]d(>ϱ>}}QWK=S iN]3/T4yR֬LM)bpa,XHWݰy^?!BzKHi7O+ ^\iJQn0C[2E&<|pgǛs5%$Sy鏧~TLϦgF\g(mìkXн2+:t}j&/4(]5\m<Ԗ:fW>qbhiFkN'vaFsLM} Ouht㔬?6U 'i7=2vzPg^i^_#F2ifA,:aٹ s{Yyѯ$C l5c:dN( CfӘ?7|M\%y7D6ַRCj7n\k$u(6B@#y4e`aIVGm3uL+eh#34 P6BmF5L??Xǀ:u/Ʌ MY;u4טu9/r%'7ee}o&6GL2Ⰾ RW#yh=pdCy@#R'd LE"-Ul!+:U$0\ ]k m-{w{/QʝbHGލHy2jMvP)·#TSS]рZdoeX\8 7i贶Ft Z5iL\ͪP3aE"yưs}le4SO?\7%ZRl $A  _bt* F1F-w>ە9ʚfԦi ɹ]#"0j%,MG4<"9{P:. 8$qE۠sLME͵7=׍lDf]LD9 9joi"s]#ȧ:#8Da R2ōT] .7;O15QYQX<~w! Mv65+څοJChsobB;>!C*Fا4w{ #y!AՉ4FBs42b_Ach/DB|/W՘Ƹ:G2݄@]&^v/d`2 $n n7@A([<4tgWqarE#oC|FR_J㯞XzqAG6"TWg"d/YZt#ƒ\*L G:rx.בPX(#֮oqX2[Z~VgHJD/]Ȗ{c77ΜUN$89(rE"5gL=(Uo䰬9cHu7 bPYo. :LFiD⒨"EQ Bz!ʭpQ 꽚#@@F| uCԸH,wq9c?$ ۈo!Z; ^2xDZՎ 1]@EJGHg 'G7%;* I /d:Kwh!uc1;g?f A\DJbljUY% UZH1</KEtIMrх:2^ƾȣE=S_q YouEG&,">D =kt!U_ D]%Hrٿ().J>#JJ2p!cI{b%pK=[$*4TL;Xet U*g5eT3 BpŌIc!Hc%p}!]q1~8sU8^gvi'p"YQ 8NXy ^Ƞr+Vs>np~Q v!' $יhsESD֣@|!>߃$%d؏I!QcYYK,dFsHb%+<\]MFi0 -a}^"kmDs *c&9`A"vq! uY}F:|4-(3R H!n\ӑ0V[[+:b:Lj|P%~k#rgU2A7,7qz1s"e ll+(2H2@}IdMT2,n.yBt!|1D@uB :F inz-F/<>95@.Wv>JZb|iiכw43Պ83CzI 2m]B Jꁣw&X 9I8r(b%p%X W2QJ4 VG%M+Xd =p@ v]=N쀐FkYe=(_%D:Ejj2mmf/}z&y&Lŵ5mf2;Rg"':"RWh:j"'`@h5f j%<6V@8!.H#Ÿ[D( [K͚ OyOoZ>o3iЀ GB#~ y*4(/?UX#Ta_PE|=BUX#Ta=p|!8}" \ |ч_hϗHe!*>2 FBĐmJ1m[x|j_eԨ/|r y,)Q:^=a#H Ladi<)pgMd@Xͥ#Od׉̭W_~}-!Mv~:q:F|sFfW3^iy8HB N 8VK6y* DqD*騺j"B!eA{a!"M ʝWH"ɉ3tԩa~$&AK+g|lHdki[sYrjޤE"ID@J]D+O)otс+Hӱ''v-m0>VAmtڢ#Xw0 xX xT>μ7!  B (S!lkYIRUX*l.|R'@YeS -  Xe͹y3Yx|}{{3 A nID飤A;f //?J'JO D{,R][=srjAC& 0'odK'[2#*,2Zm@閄/Ϸ\Aaa!()), [Phh%}W@ݾV[Y|S_4bc4800,YTpLX:1q4*PX>cKy1DUB 'º\f+hͨK3BƑ2:#8ei1q {\2{\D5+y${<*r {E㢜ǣby~ 0FC!߀Y5߁C(\2\3Y0n h2[xԍi,cL*BJ1// %$ba~n/hqg<ǧAy9ik;"K/c5|؇wzp爷,7]OeyXzսYə{]y*U i6Ǘͽ1"u:u=$s'BY]j]&&5空ʥcrSi|wHO(],rδNf2>LtCGh Q! T==ՍsQ=C j8Sh\F#{QMg}FZ 9J9JsvjeU6>5Y8{dLQ?ު#S0Z`+ ?A6·\s1j >~T2d1~<ȋUM B!^HMf<0 ~Bnt"<,U)M>4_quz'leѬ]8IV^pWc_).g8N(OAL~2-#qtao/h)? gi0~ r.!} L<-?v5 C[UMz15:0R䜕3hO冀Dr;ݠ)R~"?j ȥ\D'9oSjVy\1)3bgKWCL%>#ZP®'YdנhUM3N/s5 />INH!2UiEE~S D{`"y+ U攉oc2 @7zg+o[VȪ9ê[fy#SE6en-Q;YY6GRkIyc6X? vA3; w`La3ǽ&5l8 4<47.no^mo,Cjv-ɊzF cq $ܑi]ho6`kT|`qB~x?5#ya/]bǠcVo ^Xxx, v$| ,q~DP_|?G,cXcsfSbFy]H&Sp}Mõ\NJیޘxא.bIKkMpn3/ŌX8q1!;b3{NzX➢L\XJ܃+*EE3;7?. lYX;e lkv&X$Q6nRRx%XOkXxܱPOսH6s{QGO뱧̭I]bSMx+$->ŋ N؀fvD~xnqNU^/%c&5>o:Yq/'O8|MDX[]э #j^nxe` ;U3|,v!κjxOU9*,eX;W9,#ߝNSc䪚a#$zowbl^n7޴G/`!' 󼜾˕L:Xi Xn0gx͙]hTW̜4&ٸ%)t<4`A("LKI %EM-Y(-m}PEh֥=Խnr 瞹sLνw*@9Y:H !ŗz rG82l%+/W4<=<7n`9Up:&U]I4T+ ņTO$Ɵ~AG;gC{³V5BiK$ӿ}BޥL* H\[2˙TeHРTsv(CovGdLg|E ( B\- 쵬V ' L B&{u&(XK;\"Q6#@ Z5>"хb-\YZI2{QfٟDe$gQ#mjeT&;<&gg)ŠwCa|bG\X,M77i~ YaG1b/gCa|QtxC-kQXVbYL1TG1(g:Ca|Q{Hr ;Oļ;RKq JX/vVJ/`׬^C skbUQTY~qz-qohS|}HOS=kp.$v{vԣ[EݪMs2$ztrt Z5zQpNYڇlj/EaIuQ&y<z`_<[Pl?UW!Km`~G_Ԣ˼QKz?U1:EZ=.T}> 'gidY_>y,mI=0K8S_u,YG13%b(Rlu[SۢXRf9']uU>thPC >:X6GhC~&xLc]t^w~qDFGTJ..'G DD j Ǖhz{0,u>yNqDy|=)Wy]WFTDeӿekG&F(>٘Mv)LWJFIF``      $!  }!1AQa"q2#BR$3br %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyzw!1AQaq"2B #3Rbr $4%&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz ? ( ( (>)|BH5H4H)|BH5H4HǢAp=Č%4l~CAE1Q@Q@Q@Q@Q@o? ^TmCC\h@5 2wWS0$ܶo퟈pG/R^A _ޏ퟈p_G/R ˰lC?ok;(|FB^<50z ZI<{=my%]{go &אlC?go +.²?;_}_o|#_YT|Mkg%[=@;]IGZ]%5ii..'Ie˼+ f$I'$n*jWjŠ((((((̿ʟcg+B9_bx/SU-hzc ?ϷK^_L)R?{n?=zZKi_yϋa|`{7_o<xpo/0_l ._s}c?ojaE ( ( ( ( (?-u')Y@п_zb-O_b?ϷK^_LjlJFd*8Zoyn#ZJԒW(7xWa~3~?jaoBZ}3_`'/ K~:?%_??4C{<#O⍞^.w/>n˿saE ( ( ( ( ( (/C2PW3-XV4{. p>p>aW0vS{'}r0t>{[_Wj *'%̫}jvM!p tGyG_H7gI"e?+8#ߊ|sI+_UgcNi[nߥ?fbO?9k]Rnu,(AEPEPEPEPEP忎?k?(^?YMՅaGP]2{>us pi;IkE7}-~UȮ\Qfntç{ iKvt{p?_U׍5;wm&̐z##Tbo&G#ENU8 ϸ7q :=-E^{v:0朜ն\اZE=~s[o_ (Q@Q@Q@Q@Q@Q@#Qo[L+E+αL|#1n|=[Ӥ8jO?FIP >O/~_+!Y A_PxO`FF"r? q?~)A->#u??_ğ GR~45&cI#4}dgeU`7SFZ$^|2XצE(Tp.M7yIZIrNe\ei.]O>j_n/xOYK߉-{쑙fxu e-mIi=Bʗ~CP ( ( ( ( ( NZ&^<]\_cl[?"WF}+ڍH@&5]Fkg /}k"_WB5Up 4SfE e[(Ji~ .~(~&xM>Ƌ9yHxBiw7 ,!cxؚ̼ZTd挽חZi$q+{?g^TdT:[\.r:sž~xF~'t?ɣZ$@ ֬4J/#[{ldd6!mz_XQ@(((((|5~"4x&Z?(۶;&ޮ\i1f aD8ɛ_w sy|֧4,\4K :!rXy5CBJ+ʔ%VfWguK ׫Z^Td5fd ]R鵭td^(O؍0K\a H6Y 6 ?k|W#X|8>#m;}k1~֏t&<ʲt|W\ۗ[YK7C Æ+$u8V˸pshRbvE_~П>h7W>x/ i& u+-Yc8$9^E ( ( ( ( (?{ߵ'i/^$<G(xmSO}+RNtvQk{t 7 Zzsծo&y^y Qc@L>6ZiҕJJѫI3_vqwZkmK PV*2BjZNW*A]kk4W-2M3XyI,qA#qɫG_~Z~,?_:<sm;}ː~?Ή;;ŢJ!*jqX o<۶?k٬fqqϋ`Ev8# Dݯqs;^~> 7mK;ow4CZAY˛BJvBw3JżT((((:?`_5Ma:ޯyy%U7#UQ (>@Aľ#;oŏAx#5֩>tև4W.*$FU n8?*?ӟΡyc{s L٢i[[+ ľQ_k?(]8M ҁ6Zn ]E|0mg0,yTWzGk|q–Z_?"{y6y +s>Ak)tړ| as5- ZBc,Nu^i'̑&|^;MX7 m=;|?l.m]kѨ) p 1qE I1EzPExw/S0oWbwzuq*ƛj*^@Q@Q@SƵxGP D_&(vXi*tƪ˴qf,PE|/e|G{wZ#vxFkK;R}F!ki]LTI,@q\x{zd#ipNl&u;O<+qshG,/*7GuyWV K/~zo6. K5hu8 YPT8$=^ (<wu|ֵo_h>!hK 3ZcTvn#sl圳`(((dEdh( (Q>[Þ=?<'}zItyZ ӻur"K^߳o|v?Gm|_-wKгoeCu|-m>$ԭ!UHm~n?Qn$3g mex_O־((iu_PE4x׾+xs º_^i6z6w^AtwvӮqXdW)q+ـ||O|G swr-,#HnMĚ6j o_.+សuROxZ5 V4mR (NG\<7 W?|(Ex_V3OMkk.f\K ,$q3 (>|GeW}@Q@Q@Q@?/٧Wk_@PEPE&?*?7h ( (>_O־((iu_PEP_?/٧Wk@@Q@Q@&?*?7k ((+o<|Ujk4 +iFY`<=,(Yd "Gfh7 >3@g/g|oڋVZ&gai Ao/Gh2I95x+[~?[ oqx/kz|8eFnuQ1W@O7 >3G)v?Q?ME o/|<fS~?34›Gc?_;(ysO>?}ޫkrwWl̻h;W~ :S~?34›Gc?_;(y"Gfh7 >3G)v?Q?ME o/|<fӴ#O1hϪ$8N"Gfh7 >3^\i4[P׮-!SKtdD ̶EB ( b"@Q@| o/|<fS~?34›Gc??۝'ß;OumnX6N}J]xmywwjځQUGA o/|<f3G)v?Q?ME o/|<fS~?35Or?xg>?~~eiym}F٘$@)v?Q?ME o/|<fS~?34›Gc?_;(y"Gfk4|Z<}_ڧzW'?lk2iy_+~>|GPSBh ֩|eaddIYڋp<+I $$}[KύQݯu O^ҮmQHm[-wM$k# & 8q& E1Q@Q@WD_ǀ~GD,tOkk ^]KsmfuOex#+vEKKX%j:'~ t?xWľk?`l6lѝɰ 7I㿄 /?m#0zvW(|, AX+ѿ u CXi/+'tof?o'7MssPEPE^;;w w?SVeC.GwLեtͼ1b0b JvH\W>Š((+x_ \ ?%e׆,u`/底lg8aAun8>' /~*||Q 烬WUWYjW%CD6F 5>7/7tQxC~x3ǖ6ZZ:K]ڂxmN*#h$/_?.h_kk_}iE0 ( ( (GS>'.d*ź^O~u"PO{DpB<+{kxc Qƅ/y? |_? |Mo _ux:/$|f&eqs7q4K,K4$;(?|}?)g 3Bo'c|Dn۹wc+!YYi'WIxPnz怺6O= mZ LY6XBQL((J>#⏂>1z?xo^'kcnlI]Yuv[p㈀![.g+[}m'}nnk D{$Dp=fܳ3#6F,Tog `>^/_?.ha>Q@Q@WۧA?|i˪|Z_Q',f%^ E}@((kE-d_hFڣҾ|B?qSw޹:kƼt.:3!o0{/)7#ǒ|7uZ/? /澆FwtxGڷy/dO7PC[ iGyE ( ( Y~Jedn)~^?h]+/?!IiAk *jz]dXRG z`i+;F$cD~OCr]?Q@Q@Q@_iIUo/[i?[O^XxYp e C𭯇olКŝGcewŞK,1GmS$#s(G 8_v𯿶C(rvO}iE ( ( (GL'RoOg[EWXMt k8,XrmCb[ W߅4I.|M{@s?es<nدѿggwT?/wiU4Z((Y~Jen5h%~|^G[2_Gܨl<Ĩ00k6 IDEXg= ?*Ҿ|gGmSStխͺ Ңdc-?<$+_Ax?F}K?tGS ( (kE-d_hX=/^\O#-s M#nTKl bTS5?hi_ 3m#𶩩xTrj iQ21 ͞e# {V˿T?T_(((X5_>0|5i_GƧS4M iXt*$@p*׋gCE׵jgGzeQ.>q?oij֏#mEYLE >YX}WbGncOK?}?(AEPEPEx^㏉:Ϊ/ K -?A>|'$dlddAS(2Aco/i_u};W-atHA>_\IC?='I3ῂ,!H-- GQT*q_E'?+((( > |#g٣Ꮁ⏅Q\=7φ,ddѭ\a >m@qPE|D[o nZo">h!ĭKῃ5|Gԍ]&^jFp"{X&Y'%->}ջ Ҿ?Ý P<3z|u5v̈ҔKDRTp; ((Y~JeOvF7~ܾ~t/|P.(n g_fsg8L~^~?fx}xvOjMhg?5pS YV [ _և((+QeK*.? e?r7fV;XwĿCC/ͻ2e}?Ŝ:]@vgj~?]_E +??uRlm,u_X[ECO=ƑqFQ@Q@SƵxGP D_&(vXi*tƪ˴qf,s,No%o1*[ȣvڊq : =7_Ajz݅)E5r|Wk0f󲡂9PW~|!🅬Dt;]_A,˳Ego5qt!D&WXmxO |i Km4O<}qp<5q$R_iZz!оIet kҖ?y}97|S=4k|c_]iV>9ɪ5,1v6LX]<)o4c (<᧊u|h4^z Yh$^LQO Rx"7zܻ,߽E_`w?g'H㏈&m¾ Ԓ-Υޟg.ʷ[( KռE}NLolb2-m]+0-SS|o}xV2j^g/Wo2]2v_',:A4 #FޅG~Z~}7O[ 2Z`XDU$4+ o᷅ |1ڿм/|@$Ñi@p 2]bFYz| Ι9usY>uk%7:Ƶq=XH(["i')|?? :jh$^L};I܊Vͫjc,k0]ijZD4MKVeuYc V#i_ (c᷅%~ xtO]_]k"$/%!@U5# ±#o߁|/ln&u]WQ7zuin-J7 FQz1SƵxGP D_&(vXi*tƪ˴qf,PE|4ɺʯŏM<㇂|-ao|?.YA: xYcMȋTg$ >-Zl|@Fyzğ5M$wn{Qv:fjk%y_7V㶟iCß]֞muKIbiiW->32XaҷO?S߱t_>j,u67/m#QPɯ3_voh@Vy.h>~?|=ྥM74aiZJnz=\6Z/e1QXh--?)]? _G%ecӭ2O;:ZŶF+{{x!o H@Q@8ʮ?+ 'WeWRuP^CxU7[CH.U:eBhn)`+;kU& 򏙰>(~|SgÿN7 G>&?_ÏtWIOy_s]5t"-o,lp*EiS~߳~ݞ4?_ z~ݢ inr]-٩G{)om&}?_YIoh#O|KV:}A-R{}>M?̊f)?O-m~׆??dF[Yi.'kY渙YIdwُA@|JoO%_ ?:?kE-d_h( ϊ-d!#qD%Fu(s{{e -e`~.ot;/Ɗ5>( ^P˪fsOrm.eaZOu fzgXs/~ƿoWwzmߊ?4XxD?İO{dp&'GW [C׾ݢ'!jz<خۭ;}"옞#H h<{[xZ>⇋~Y|A \k~ z)b\Bo&YX01y?[ c汢czO/废>5rٰܛKbEXD֓E8ٻ/:|pޛwk #)_+O0,f.?g9mdx¯Vh Ljm#iڞO6+q{o_hH&'9d$,>O>$>֦4;OY@Ե-jAX%NbԵuHVG5A:V]3Bд?E4[Hl4>-,-!A0 ĈP&?*?7k (iu_P_?d_> (>7'XU}@?d_(߃J%P_?sRWO;΀QeK*. ((9)Mdg_@PE)|Kӿ( (dEdh(+S~2*iPE|4ɺʯŏM (o<|Ujk4 +iFY`<=,(Yd9"GfhvIEN][[/;SRtfeĻAڻTUQ›Gc?0>-xW N~7g+Ʒ~DI^ux qB* p弣hb o/|<fS~?35?A? ڿEP6&K%ޚO 6[d FP_;(y"Gfh<}^CBӿjYJ߆7<Ai5]^PJB\:o(›Gc?_;(y"Gfhѿg/~,մڋV-o[;2};M5%+-48u)v?Q m_wxU[% bMyvɛMB-_z/A o/|<fS~?34›Gc?_;(yyV>Tom^ .};*2k7E#1dk ME o/|<f9o~_7OD=5qyc~[y-8R7A o/|<fS~?34›Gc?0>-xW N~7g+Ʒ~DI^ux qB* p弣hb}{?zύmj/V_gxO{8-|u;ܪ1`g|,/|SQ|<1 *D.x.""țr2A])v?Q?ME o/|<f3G)v?Qg/S|koQ| Ҵ;'|׳ k˩6Pa@)v?Q [?m|9']' wZUm6"dnFb@?›Gc?_;(ys?)5?oZay{ Bk)dž%,[s)epC`_;(y"Gfh7 >3\g/g|oڋVZ&gai Ao/Gh2I94›Gc?0ռ!jØjx^/%xGu_x~#a&Mfdf,dz)v?Q?ME o/|<fo_743D E5qyg~Zrw͹T3yb(A o/|<fS~?34ů|VݡjOlzcY'Ú&9o0i~Ѫ (|m,ME?Γڋ꺶,_}}>}.<6<˻vw@7 >3@1@ EP?d*+( (q_w]KPQ@Q@W#U/N ((2~Uu/AW_@PEP#U/N ( (S~ *WQ@Q@|?Jo%_(WceWM•PEP^i=t7MtIy:?v;EϹcNa77f7q]\Z|-ko_**zna|k6m`u'}j~ w/k.I \eFH9q&} _?ebxWF?o~8;by_~ݷ;W8La^i=t7MtIy:?v;EϹcNa77f7q]\Z|-ko_**zna|k6m`uu?&j6VIM4u¹$IH\W=[KύQݯu O^ҮmQHm[-wM$k# & 8qPEPGu}~ ,|q&5jN]^jwܽRRlo43$8{ˋO5k?jKQ:D+_ f[z5ן06y_؛6lmhF>?|w%MwWsQ2 9~x_W,O 'OgבlO7vo؛j@@¼?{nt~w?gkgss>&mnno͆(㸺Z'߈ UU+? cYO]Xl<hMA5Ol,̚i>0;QzrI$$ z/?e_]iVڣjM귚[ s*HF@L(@p')+>!|]мE ,%ޏ5἖]Bt))—7rAk8I?~%¨"^/?lk-{La^I j/iOg}V.A ,cH%xAO& Y>ouOP/G|1 cYok^blٱ;`v:FnMS+ $&O:^\I $$+ ƏwFn:iWZUڤ6iz;ʒ5 8Jc (<?+ Nc㏉7ɨU}/OtS" dKy$\Z|_S7_*%_c7Ʋk׻Ѯ;ٳcoFw&$B:/w_ OkAkʈu%Ąƿ pp8I ~x_W,O 'OgבlO7vo؛j@@¾t?Q>x¾?nxŷ>SrXIo߽Ώlf"d+m<'/5UZ+? cY3y1v{ >,#|kU,ڇ+Լ1hl:.kvܪyf[wO_{c? K&?x*߇^ 卖Wz!&cd $E$*K/@~~/٧Wk_@SWSC?> ?_I5k%W6V]kB4÷-q'ww66i%,4/HJYڮ&'ԯKk0m㷶R#PX,p__qo_o1~(V:g,ltJ 4$U-`Ui",F!R %H$/_?.kJc `|qb|O=_U?>4/HJYڮ&'ԯKk0m㷶R#PX,p__qo_o1~(V:g,ltJ 4$U-`Ui",F!R %H$/_?.kJc (?~؟ie?|O> >(R~vɉ5u+ !"xTcx7 ')'_:%~ Rqw2AJ`g ÿ5KUuh:WqakxwI6pJR}BeE3(@t f_O֚HE"_ \f w>:ދ,pZu ;J{I]Cq[s ߷h~~/٧Wk_@P_ɏM7'O(a~?.nfO_# 1^#!$D@k!$x/O*K~O oaetdf,[sYX}h~~?/k5PEP|lSΧv~Mo uMz]O X"I6.f(@Z1!<{7Y.|KCS.4ߨxr_hw|6deh)V\p_mo3Z߱E'}i@"?&DI Agnٯ73Ag,Ďd"S Ev5xv?Yo[kmi<+q#$]d s^oyO _IqΛq:ټq c0nk/g `>?`_;t_"]֔Q@f'go|3f\;8bG9BHLۈB8/?O~<}[×^ xQa%ήڝ5rc;2323)xGw=GwiU4Z# ( L|3E?ǯ? hž >x/h~~/٧Wk_@P_Ks?&ŭEw{^ ⥊']&X@#T">l_~m=}{egS4V6_ !]TMS$#s(_ 8_v𯿶[؇QۢRf(4:&-Wöڅx#ͧ?>osp|';Ēieꤑe1MP?d[kcV^mZLi;{X-;K2p$~-ǝd=\_O֏_>'/` ǓG{X(tcydPd }|a핞Ogo$X|7'uR M7;L"ḍ$~|,|,¾߿gl ?WbGncOKҀ F>2~ζ>hǁ绾#]Q:67d@<&k+-gZYm Oz襖o I2FQ?J~p_mo3Z߱E'}i@#~xg[ Z߈4_G{X(tcydPd U}|a핞Ogo$X|7'uR M7;L"ḍ$~|,|,¾߿gl ?WbGncOKҀ (?<_?/'y/AkNM䱼ed2FD2| ~?%b|T:ewP|?թ[d-Ҵq]Db2p?׏w}|{Q',f%^ E_>>_ț?LZbu2DVkfoiW_]۲ Hui6|h/τQ\{G'W,̋ mn7?d3/뀏"(+I?h/k2'mFӴxhּ?y4>f8-o7~k†)Mo*L>Dc·co2>ɢ? ba[\©ȝrybG~p_mo1؇QۢRf IT/DUa].koF5O/)<6 6&Or/P3 .7Ymq "vԓ·co2Dc·co2mlXidg˞KO&jpco^/OW|s{{/+U2\´v[Μ}|1ʞ`݂kμ|##s?ڏ;Qe4*o-i}E|aɑ7h)[mOW|Pi\xGj Kn4~ek~\+1hgo.= O;DGWtbiǾJΞ_/̄ykn7?d3/Q@Q@~* 4/|w׈n|\xqqxA#i((S^pJFB=d|mWb[_#|F?7h]CA|)\-/ />ZK{K{C {bWscI'[ _և_(x7M|3|K"?!ix b#ir25pA=[lvoV`JߍXnQS6~ojOUkxo:͒_[xc#}rI$iw~ 7/.G+ ˘ TdAʷ6uy O~|;x{[>1jVo>T񙶽LsE5ꎥYb*w X14RJRQqwqVNQOuqE{hxOHZ33;ɪ{',f%^ Et_Z+gBg㟏Ews2|BgAsG,)((dk/6%#j z)>+ެ?Eܣڧ# >l{ 4'ŸΫ}?Bzu$g0ǾF.Qw1f8y?`_/;t_"]֔W/z~ ϏtB g+{{Girk/6%#j !|U%d]?)8݌\h:O?kW~῅_6I~ioya|]*bq$?EbGncOKҀ ;E@/"Ol~sooh’=Bu9mPAd#۠;#_RYBWGO e.ZS|/Zg^_}/Nd j",O/a?c_!v9|DԻY( (/G]xL'K6{_byaIF##]NAy4_۠=Aϊ4y_|l2]Y:xcA|) _ ~!t:͒_[SBj",O?wiU4Z# ( L|3E>}sIJYfKP,"L{n'+[iUif]X|k>(MoeL^a;].u_.xbVDe܊q|MT2|Q_((# m.~ɻoďKvx]8~+.w:2O&j?73>skOER n Wž6t {[] LJ$.Xf Z)_ևo¯>|3w]_f/,yVnnld ~$oI8njӷ)\@ss=Vid}YfFxns~|ȵ]O Yy? YOuK{q⛹{ɂ[[\$s(CS»ςQ%u O^n[m-nf5[Q;VHBBO8@(rm~_ '.3}]f4Q쫻|K.6\-x}&} 9IcAZ|{+RoçƟ#yk-IEWѫ4I帉KAuoe ??]WFپ 8<'{^gfۻ E';|Is6qoSbszɢ/ڲϲőj~Uo!#BB7r4767Iˁ(癣Q _և?weKoj[iͪjv=F4p=~;|"/ l(vf8΄z>>% őj~Uo!#BB7r4767Iˁ(癣Qn5T콣>|ImBS׵[VKm2MVTuէh61foV>\}8eU͜b3z}c?qsЏWڼ"c'?'>d_=x-WS^xOv0j-<#hVS}\xF`W #p:4pJ-Ʒ|ڏ-[XjzuimCs6jڴ Fצ y:`PE~;?g |,wٳX/@r_)vm>?ҁ>hUm/݌|m O4+)oqt<#]LJ$.Xf c>x+ 7>g+wcsc$P@g_:xro/y>festwwVw 7d ߱θ|7? ߌ? >i `oҡk[ -ȆGsA0@^ 4~@Q@|S/$%~Jq4K"+Mqsl+hzXӯ$X.Kͱaq#F +>u|)wfƞ5м%'c$:oo{}mEZ .iۇe$>>)|Kx?HwXeyai"xQYc4yTk"xSR^0W?5]OVqxwSΐ7sjIe,<-d:`Ұ[/_9W|#*>S5ko>1 %u|)wfƞ5м%'c$:oo{}mEZ .iۇe! Hc8|+o:V Co # dOW~|!🅬Dt;]_A,˳Ego5qt!D&WXm+ b'??H|Ax>8|%2C5Ψ43gkNuXL@$ TLg?> %=~ȚNk7%vhn."("mG5JOEJ±,q&w>&|pFZ Fhttbe03;ZB+Eje1,>|RgIye ZF.X\Zol.n`Iٯ-c8b;+>+ kؒ s dFԼ-m2Rc-dxtee8 ? >lKv,veZfpDqj #3H$ĴH=Bc (>߈5mׇ=7UZι鍬XI]Z\hl|7m^Kq*6Lvѷ5c3_u[oûOx?k7i,h!["?Z/u[" o'QωkzW\:/ 6:FhwYK)d|7M gri-,F^٤i_ +—;xjwĚ5ַimO[4[?U/lҥH 믹X{(@?i7?x; |w ƺ6ì]W:军*}+t{w,_7+xxY~ k>=I-itjVBѾܖ/>ŪOoɧLXX0xa(¿?$A_<9> oJ 'S!x'H4 So )|Se,vZϛlWQ%%c#U4+s~wxRtO C'Qo}hmo￲ s,;|[Y?[=| o ~OhZݧ=nPocHtWLJ!#O$3cY죕> a0x??M~oFew\l-R+M-ܱdߘHag⎯? AZW$|>%uZ FrZKt =o&E3EacޡهOࢿ SO> Xl7&^/յHlq?.% .bѭĖ@P<&ž ?Y51 /kKMO]In EF X6ƺL|+n~ wio c_/46K}~zd^KC}n]+r>$A_<9> oJ 'S!x'H4 So )|Se,vZϛlWQ%%c#U4+s~wxRtO C'Qo}hmo￲ s,;|[Y?[+_<}e~>wĚ5ַimO[4[?U/lҥH 믹X{(@?i7?x; |w ƺ6ì]W:军*}+t{w,_7+xxY~ k>=I-itjVBѾܖ/>ŪOoɧLXX0xa(¿?iK6Z!t!5H-lqɫ?| e|!* Y~!Z|:>(mAt G i./gh"E/~ͿuĿ? ^Ҵ?Z Ndu1# $,^Dve4-g }Q@Q@Q@Q@Q@Q@Q@Q@Q@Q@Q@Q@Q@Q@Q@Q@(  | INClip (MS_ClipArt_Gallery.50,Microsoft Clip Gallery0O Imagen (MS_ClipArt_Gallery.20@Galera de imgenes de Microsoft/ 00DTimes New Roman$A| )0Y 0DArialNew Roman$A| )0Y 0" DWingdingsRoman$A| )0Y 00DCourier Newman$A| )0Y 01 a .  @n?" dd@  @@`` H@z\W[YXZ\  v    !"#$%&'-()6*+,-./01|2345678;<E8FG:HST9:=6>?@ABCDIJK4LMNOPQRUVoR$3(2/ d +b$-ʩ)uc b$nAe6Rՠ J2$2Lar,ü N2$ 󼜾˕L:Xi/(R$>٘Mv)LW0N-c $@  " ʚ;¬5ʚ;g4EdEd )0>ppp@ <4!d!d 0DB<4dddd 0DBVN___PPT90(? %}>Deficiencias de seguridad en las tecnologas de comunicaciones?? ?      7Deficiencias de seguridad en transmisiones telemticas88G 8 ^Seguridad de host Vulnerar la seguridad de host es lo que habitualmente se persigue por parte de los hackers Tiene como objetivo general el acceso a informacin de ste o de otros host Seguridad de red Implican deficiencias en los protocolos de la red Se suelen emplear como mtodo para vulnerar la seguridad de host Errores humanos como factor claves"CCCsC"C     5  G    #  Conceptos de seguridadG  Autenticidad Se Dice de lo que es verdadero. El proceso de autenticacin nos debe permitir asegurar que el objeto autenticado es quin dice ser Control de acceso Define derechos y privilegios para la utilizacin de recursos para un objeto o persona autntical a CCCaC    Conceptos de seguridadG  Integridad Cualidad de un objeto si no ha sido modificado, ampliado o recortado Confidencialidad Cualidad de la informacin por la cual solo las personas autorizadas de un mensaje pueden leerlop Ea CECCaC    2Problemas de seguridad en redes: Nivel fsico (I)33G 3 mRedes LAN Acceso complejo, deteccin sencilla. Redes WAN Acceso al canal ms sencillo, solucin ms compleja.p % 5 C%C C5C&  e  3Problemas de seguridad en redes: Nivel fsico (II)44G 4 LRegistro de los datos que viajan por un canal Dificultad en funcin del medio Aire, cable (bus coaxial), concentrador, cable punto a punto Objetivo: sniffing. Precisa decodificacin de protocolos a niveles superiores Alteracin de mensajes Dificultad en funcin del medio Aire, cable (bus coaxial), concentrador, cable punto a punto. =N =.C C=CNCC  C =C&    4Problemas de seguridad en redes: Nivel fsico (III)55G 5 `Simular averas Suplantacin del origen Implica conocimiento de los protocolos de nivel superior8(9(C9C a  3Problemas de seguridad en redes: Nivel fsico (IV)44G 4 Evitar la comunicacin entre los extremos por voluntad expresa (DoS = Denial of Service) La dificultad depende del medio fsico Solucin generalmente compleja/cara Corte de comunicaciones por fenmenos naturales y/o averas Es lo ms habitual Diversos motivospYK<$YCKC<C$C@@     5Problemas de seguridad en redes: Nivel de enlace (I)66G 6 Precisamos de un acceso fsico a la red Registro de los datos que viajan por el enlace Dificultad: depende del acceso al medio fsico Es muy peligroso Modificacin de los mensajes de origen a destino Dificultad muy elevada Deteccin muy difcil pW@1.WC@C1C.C  6Problemas de seguridad en redes: Nivel de enlace (II)77G 7 Suplantacin del origen Dificultad baja Nos facilita el acceso a servidores DoS Bombardeo de tramas Provocar colisiones Denegacin de paso de token en redes Token Ring Impedir que dos estaciones se comuniquen en una red segmentadap4C4CCCZL  >      ? =Problemas de seguridad en redes: Caso concreto: IEEE 802.11b>>G > *Problemas de seguridad de WaveLan Es muy sencillo acceder a una red WaveLan Tan solo es necesario disponer de una tarjeta de acceso y configurar el ID de red por defecto Existen sniffers WaveLan Soluciones Cambiar el ID de red por defecto Utilizar la encriptacin WEP para la comunicacin de la redp" ]"CC C]CZ  #  g  i $&  %Tipos de ataques (I)G  xAtaques DoS (Denial of Service) Ataques que se aprovechan del tratamiento errneo de las pilas de TCP/IP Ataques que se aprovechan de errores concretos de servicios Ataques DDoS (Distributed DoS) Ataques desde varios host. Ejemplos: Trinoo, Tribe Flood Network (TFN), TFN2k, Stacheldraht Buffer Overflow Tratamiento incorrecto de nombres de ficheros Aplicable a servidores web ZZZ\Z>ZZ CCC\C>C C *                       E   &Tipos de ataques (II)G  Comprobaciones inadecuadas de argumentos Aplicable a servidores web Caractersticas inseguras de servicios Ej: telnet, etc... Caballos de Troya Ej: BackOrifice Deficiencias en el cifrado o autenticacin Problemas a nivel de kernel de sistemas operativos Ej: ping of death)'^)CC'CCCC^ C C@  '         @       ' GeneralidadesG  AIP es el protocolo de Internet Breve repaso: correspondencia OSI 2#C#C B ( GeneralidadesG  9IP es el protocolo de Internet Breve repaso: cabecera IP 2CC : )Sniffing o SnoopingG4     Ataque muy potente Es condicin indispensable que los paquetes pasen por los canales de comunicacin en los cuales el sniffer est conectado Dos posibilidades Conectar un sniffer en la red objeto Instalar un sniffer en una estacin remotaXP C CrCPCZv  -     *Sniffing o SnoopingG4     "Sniffer  directo C   +Sniffing o SnoopingG4     Sniffer remotoC  ,Message alterationG  Viene dado por la falta de control de la integridad de los datos Es de difcil deteccin Precisa de mtodos para garantizar la integridadC  -Message Delay and DenialG  $Obtenido a partir de modificaciones de parmetros de routers Delay Se modifican las prioridades de paquetes del router Precisa obtener acceso al router Denial (1) Se modifican los filtros de acceso al router Precisa obtener acceso al router Denial (2) Bombardeo con  basura CU N CCUC CNC C C 5  -    *     .IP adress masqueradingG&   Implica suplantacin de origen til cuando tenemos control de acceso por IP Dificultad muy baja, fcil deteccin No confundir con IP spoofing! Vulnerabilidades Routers Proxys o firewalls SunRPC & NFS Comandos BSD UNIX "r" X windows Otras aplicaciones8^0xC^C              /Routing attacks (I)G  }Source routing Provocado por la definicin de IP (source routing option) Indica al destino la ruta de retorno de los paquetes4oCoC4 #  7 0Routing attacks (II)G  RIP, BGP, etc Se suele enviar informacin falsa de rutas Los routers envan informacin hacia destinos falsos Se utiliza para la captura de informacin Tambin puede utilizarse para DoS RIP v2 soluciona el problema utilizando autenticacin8CCZ   0  r  6 1ARP attacks (I)G&   Host Spoofing Un host puede responder a tramas ARP que no van dirigidas a el Este ataque slo se puede hacer en una LAN 2 posibles funcionamientos Spoofing Intercepcin de informacin Funcionamiento del spoofing En este caso podemos hacer que un equipo responda a las peticiones ARP como si fuera otro equipo (que est desconectado en ese momento) Funcionamiento de la intercepcin En este caso hay que modificar las tablas de ARP de los host origen y destino, de manera que los paquetes se dirijan a un host  interceptor ZZ%ZZZ"ZZCC%C C  C "CC   ^     /     =   2ARP attacks (II)G&   DoS Actualizar tablas ARP de hosts con informacin no vlida Esto provoca que la informacin no pueda llegar a su destino Broadcast storms Provocados en una red con ms de un router IP9=.C9C=CC. C t   W  %    P'  4!Deficiencias TCP/UDPG  (Repaso funcionamiento TCP: cabecera TCP 4((CC ) Q(Deficiencias TCP/UDPG  (Repaso funcionamiento TCP: cabecera UDP 4((CC ) R)Deficiencias TCP/UDPG  )Repaso funcionamiento TCP: Handshake TCP 4))CC&    S*Deficiencias TCP/UDPG  IP Address Spoofing Se utiliza para generar otro tipo de ataques, especialmente el de TCP Sequence Number Prediction Solo permite el envo de datagramas IP a un destino, ya que la ruta de retorno no existe8CCZ  F     6 T+Deficiencias TCP/UDPG  TCP sequence number prediction Utiliza IP address spoofing para como parte del ataque. Fundamento: para que una conversacin TCP entre dos equipos tenga lugar, el cliente utilizar un nmero de secuencia SNs4CCZ        5"Deficiencias TCP/UDPG  ~TCP sequence number prediction Si somos capaces de predecir SNs, podremos simular una comunicacin TCP provinente de otro host6`C`CZ    ;   6#Deficiencias TCP/UDPG  TCP sequence number prediction Dificultad: el host impersonado puede resetear el intento de conexin cuando recibe el mensaje del server. Se debe atacar a dicho host con un SYN flooding o similar o bien esperar a que el equipo no est conectado8ZZCC       4        ; Z,Deficiencias TCP/UDPG  TCP SYN flooding Ataque de tipo Denial of Service Se basa en deficiencias del 3-way handshake de TCP Se provoca un bombardeo de falsas conexiones, de manera que el equipo atacado no sea capaz de aceptar ms conexiones (legtimas) Provoca elevada utilizacin de CPU y memoria8CCZ        [-Deficiencias TCP/UDPG   TCP SYN flooding: funcionamiento!!C&   \.Deficiencias TCP/UDPG  1TCP SYN flooding: como detectarlo netstat -an: muchas conexiones en estado SYN_RCVD Soluciones: Incrementar capacidad de los servidores Proteccin firewall Decrementar timeout para abortar intentos de conexin Aumentar el nmero de conexiones aceptadas Reducir el nmero de puertos que aceptan conexionesh"2 "C2C CCt      g   ]/Deficiencias TCP/UDPG  TCP SYN flooding: ms caractersticas El ataque se aplica a cualquier puerto disponible que acepte conexiones Eleccin de direccin IP spoofed Slo una direccin Direccin de un rango AleatoriamenteT&i8&CiC8CZ  w  )   ^0Deficiencias TCP/UDPG  TCP SYN flooding: tcnica DDoSC4     8%Deficiencias TCP/UDPG  UDP flooding  pepsi Ataque consistente en el envo de paquetes UDP (spoofed) a puertos de diagnstico de dispositivos de red (routers, etc& ) Esto genera una alta utilizacin de CPU de estos dispositivos, provocando un DoS de la red atacada8CC     2  3    P   d1Deficiencias TCP/UDPG  LAND Objetivo: ataque de cualquier tipo TCP/IP Funcionamiento: se efecta una conexin (IP:PORT) a s mismo Requiere spoofing de la direccin IP Estrategia til si no se protege un host de paquetes externos con direcciones IP internas8CCLu   7  0  BIBLIOGRAFA (I)G$    Libros ,informes y enlaces Internet Stuart McClure & Joel Scambray, George Kurtz. Hacking Exposed (Network Security Secrets & Solutions), Osborne/McGraw-Hill, 1999 Stephen Northcutt & Judy Novak. Network Intrusion Detection An Analyst s Handbook Second Edition, New Riders Publishing, 2001 Guang Yang. Introduction to TCP/IP Network Attacks, Department of Computer Science, Iowa State University http://astalavista.box.sk http://blacksun.box.sk http://www.securityfocus.com http://www.elfqrin.com/hack/ Sekar. Classification of CERT/CC Advisories 1993-1998 http://seclab.cs.sunysb.edu/sekar/papers/ Top 50 Security Tools http://www.insecure.org/tools.html Steven M. Bellovin. Defending Against Sequence Number Attacks, 1996, AT&T Research R.T. Morris. A Weakness in the 4.2BSD UNIX TCP/IP Software, CSTR 117, 1985, AT&T Bell Laboratories, Murray Hill, NJ. Postel, J. Transmission Control Protocol, STD 7, RFC 793, September 1981. Atkinson, R. Security Architecture for the Internet Protocol, RFC 1825, August 1995.P$Z" Z#C.C7C<C@C*C&CC.C+CC9C)C#C-CFCC/C/CC$       @        ) 8   # &" 0 0 0 0 0 0-V 0nBIBLIOGRAFA (II)G$    0Postel, J., and J. Reynolds. Telnet Protocol Specification, STD 8, RFC 854 G.R. Wright, W. R. Stevens. TCP/IP Illustrated, Volume 2, 1995. Addison-Wesley. S. Bellovin. Security Problems in the TCP/IP Protocol Suite, Abril de 1989, Computer Communications Review, vol. 19, no. 2, pp. 32-48. Rivest, R. The MD5 Message-Digest Algorithm, RFC 1321, Abril de 1992. Joncheray. A Simple Active Attack Against TCP, 1995, Proc. Fifth Usenix UNIX Security Symposium. http://www.attrition.org/security/denial/w/synflood.dos.html http://www.gncz.cz/kra/index.html ftp://ftp.gncz.cz/pub/linux/hunt/ http://www.l0pht.com/~weld/netcat/ Synnergy Networks. Examining port scan methods - Analysing Audible Techniques http://packetstormsecurity.org/groups/synnergy/portscan.pdf Fyodor. Art of portscanning, http://www.phrack.com, http://www.insecure.org/nmap/nmap_doc.html N'Ofir Afkin. Networking Scanning, http://www.syssecurity.com/archive/papers/Network_Scanning_Techniques.pdf Hobbit, The FTP bounce attack, http://www.insecure.org/nmap/hobbit.ftpbounce.txt CC-CC&C.CWC C&C"CpCC{C:CCECCRCCSCCCcC                         0 0( 0)J 0Ln 0 0- 0/Y 0} 0  /    ! "9:;<=>?@ABCDEFHI J!L#M$U%V&W'X(Y)_*`+a,b-c.l0  ` ̙33` ` ff3333f` 333MMM` f` f` 3>?" dd@,|?" dd@   " @ ` n?" dd@   @@``PR    @ ` ` p>> D<(    6D P  o7Haga clic para modificar el estilo de ttulo del patrn88 3  0H   kHaga clic para modificar el estilo de texto del patrn Segundo nivel Tercer nivel Cuarto nivel Quinto nivel7   l   0 ``  V*b    0 `   X*b    0 `   X*b  6  S  ? ̙33 *Diseo predeterminado 0 P7(    0d P    T*    0     V*  d  c $ ?  3  0  @  kHaga clic para modificar el estilo de texto del patrn Segundo nivel Tercer nivel Cuarto nivel Quinto nivel7   l   6, `P   T*    6# `   V*  H  0޽h ? ̙33 6.0(  ~  s *Lp    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg ZD  0|  P Xavier Vila i Espinosa Ing. Tcnico en Telecomunicaciones  Esp. TelemticaL(2LC  L B  s *޽h ? f3  ~`8(  8 8 HPJgֳgֳ ? 0 ,$ 0 r1.- IntroduccinE   8 6K  >Deficiencias de seguridad en las tecnologas de comunicaciones??C$ ?  8 C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH 8 0޽h ? ̙33X   L(  L L  `4gֳgֳ ? p    L ZHlgֳgֳ ?  0<$ 0   L C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH L 0޽h ? ̙33  ^VT(  Tr T S YP   r T S DZ   T C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH T 0޽h ? ̙334  Xt(  X X BЭ P    X Tugֳgֳ ?@<$ 0   X C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH X 0޽h ? ̙33X  d(  d d  `gֳgֳ ? p    d Zgֳgֳ ?P <$ 0   d C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH d 0޽h ? ̙33d    `(  ` ` # l\gֳgֳ ? p    ` Zgֳgֳ ? <$ 0   ` C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH ` 0޽h ? ̙33o=   ==su\<(  \ \ # lgֳgֳ ? p   :z `J k \ Q   ,$D 0B \ Z jJ jJD1? 0 P0 B \ Z jJ jJD1?0 0 f \ 61?`J  bT ]   \# aX W N    \  N    \  `  \ 01?}  \ c BCQDEF1?PP7P @  \ s BC>DEF1?(== @ i N  5  \  5  \ c BC DEF1?  @   \ c B_C DEF1?^[  @ y  \ c BZC DEF1?YX  @   \ c B]C DEF1?\\  @ [  \ c BQC DEF1?NP @m   \ c BeC DEF1?[d  @ 5  N  8  \  8 N  1  \  1 ZB \ s *1?  ZB \ s *1? 1 ZB \ s *1?  ZB \ s *1? 4 |N    \   ZB \ s *1?  ZB \ s *1?  ZB \ s *1?  N F Y   \ F Y ZB !\ s *1?F  ZB "\ s *1?7 X ZB #\ s *1?B Y ZB $\ s *1?+ Y ZB %\ s *1?  ZB &\ s *1?" W |N p   '\ p  ZB (\ s *1?p  ZB )\ s *1?|  ZB *\ s *1?|  N  8  +\  8 ZB ,\ s *1? & ZB -\ s *1?  ZB .\ s *1?  ZB /\ s *1?  ZB 0\ s *1?% 2 ZB 1\ s *1?, 8 N kg   2\ kg  N kz   3\ kz   4\ c BJCDEF1?I6 @kz  ` 5\ 01?n   6\ c BC*DEF1?!!!"$%&'y(q(i)_)R)G)=(3(+'%&$#" CD@g g fN G] k  7\ G] k N G] k  8\ G] k f" 9\ 6GV 1?G] k f" :\ 6GD 1?t| L f" ;\ 6GK 1? @ ` <\ 01?^ b bT n f d  =\# ` p V ! N n d  >\ n d N n d  ?\ n d ` @\ 01?r _  A\ c BCQDEF1?PP7P @n d  B\ s BC>DEF1?(== @ K N    C\    D\ c BC DEF1?  @  E\ c B_C DEF1?^[  @ [  F\ c BZC DEF1?YX  @u  G\ c B]C DEF1?\\  @ =  H\ c BQC DEF1?NP @O  I\ c BeC DEF1?[d  @   N    J\   N    K\   ZB L\ s *1?  ZB M\ s *1?  ZB N\ s *1? ZB O\ s *1?  |N   P\  ZB Q\ s *1? ZB R\ s *1? ZB S\ s *1? N ( ;  T\ ( ; ZB U\ s *1?( ZB V\ s *1? : ZB W\ s *1?$ ; ZB X\ s *1? ; ZB Y\ s *1? ZB Z\ s *1? 9 |N R  [\ R ZB \\ s *1?R ZB ]\ s *1?^ ZB ^\ s *1?^ N    _\   ZB `\ s *1?  ZB a\ s *1? ZB b\ s *1? ZB c\ s *1?  ZB d\ s *1?  ZB e\ s *1?  N M p  f\ M p N M  g\ M  h\ c BJCDEF1?I6 @M ` i\ 01?P  j\ c BC*DEF1?!!!"$%&'y(q(i)_)R)G)=(3(+'%&$#" CD@ p I fN ) f t  k\ ) f t N ) f t  l\ ) f t f" m\ 6GV 1?) f t f" n\ 6GD 1?V U f" o\ 6GK 1?h z I ` p\ 01?~ g k  q\ Z,mm1?   rHost c D`` r\ # lTz jJ jJ 1? E  [Intruso$P \/g   s\ # l܈ jJ jJ 1?P k \Terminal$ P \/ g   t\ ZМgֳgֳ ? -<$ 0   u\ C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH \ 0޽h ? ̙33d    0(    # lgֳgֳ ? p     Zgֳgֳ ? <$ 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33d    P(    # lgֳgֳ ? p     Zgֳgֳ ? p<$ 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33d    p(    # lgֳgֳ ? p     ZPgֳgֳ ? 0<$ 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33X  (     `gֳgֳ ? p     ZL0gֳgֳ ? `<$ 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33 $ H#(  H+ H HX)gֳgֳ ? 0 ,$ 0 2.- Deficiencias protocolo IPE   H 6dE  >Deficiencias de seguridad en las tecnologas de comunicaciones??C$ ?  H C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH H 0޽h ? ̙33   `(    Zmgֳgֳ ? p     Tjgֳgֳ ?     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33,  l(     fgֳgֳ ? p     T|gֳgֳ ?     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33  2(    6A1?@0,$D 0   fgֳgֳ ? p     Tpgֳgֳ ?p@@<$D 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33  0V(     ` gֳgֳ ?p@@<$D 0    N2#XA1?P,$D 0   fgֳgֳ ? p     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33  D<P(     fgֳgֳ ? p     Zrgֳgֳ ? <$ 0  H  0޽h ? ̙33l  p,,(    Z gֳgֳ ? <$ 0     fgֳgֳ ? p   L ;  #  xB B Hp?;  xB  H8c? o xB  H8c?# #o xB  H8c?; ;o xB   H8c? o N L X   L Xl   <1? 'l   <1? l   <1?e)DixB  H1?OXxB B H1?LsgxB  H1?GpXl  <1?=%UN     l  <1? m'l  <1? ]l  <1?)ixB  H1?xB B H1?sxB  H1?pl  <1?5=uUN     l  <1? 'l  <1? wl  <1?)ixB  H1?xB B H1?sxB   H1?pl ! <1?N=UN   "  l # <1?< 'l $ <1?L l % <1?)ixB & H1?xB 'B H1?s xB ( H1?pl ) <1?=Uf * s *A ?? `  + # lD jJ jJ 1?   hHacker$P \/g   , C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33"  m"e"55!(     f gֳgֳ ? p      fgֳgֳ ? <$ 0  RL ;  #  ~B B Np??;  ~B  N8c?? o ~B  N8c??# #o ~B  N8c??; ;o ~B   N8c?? o N L X   L Xr   B1?? 'r   B1?? r   B1??e)Di~B  N1??OX~B B N1??Lsg~B  N1??GpXr  B1??=%UN     r  B1?? m'r  B1?? ]r  B1??)i~B  N1??~B B N1??s~B  N1??pr  B1??5=uUN     r  B1?? 'r  B1?? wr  B1??)i~B  N1??~B B N1??s~B   N1??pr ! B1??N=UN   "  r # B1??< 'r $ B1??L r % B1??)i~B & N1??~B 'B N1??s ~B ( N1??pr ) B1??=Ul * 0A ??? HL 0 +#  ` ,   jJ jJ    B0CDE(F f   8c 8c8c     ?1 d0u0@Ty2 NP'p<'p?A)BCD|E|| H X`0 @    -   jJ jJ    B0CDE(F f   8c 8c8c     ?1 d0u0@Ty2 NP'p<'p?A)BCD|E|| H X`0 @   0  . 3 r* jJ jJ 1??   hHacker$P \/g   / 3 r(/ jJ jJ 1?? PZ  }Sniffer$P \/g    0 # l jJ jJ jJ??P @  1 # l jJ jJ jJ?? @@  2 3 r3 jJ jJ 1??   mRed A$P \/g    3 3 r5 jJ jJ 1?? `Y  mRed B$P \/g   R 4  f jJ jJ1 ? 0P  5 C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33^  (     fHgֳgֳ ? p     ZIgֳgֳ ? <$ 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33X  (    T ygֳgֳ ?Pp<$ 0     fygֳgֳ ? p     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33^  (     f|}gֳgֳ ? p     ZFgֳgֳ ? <$ 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33h  Fh>h{{Nf(     fMgֳgֳ ? p     Zgֳgֳ ? <$ 0  cF `p}  0MFxB  HDjJ?0  xB  HD)?$  xB  HD)?p pxB  HD)?[  n g xB   HD)?;  y T     # h . T     #      B)C DE$F,?   x(%@P l yv 2    BC|E$GzH=I`TQ1? = |= |`T`T= |`T`T G [ 2   BE$G<Hy`I`TQ'1? TITI`T`TTI`T`TF 2   BE$G<Hy`I`TQ1? TITI`T`TTI`T`TF 2  # B`vCuyENG  2   BmCPENGSH2=I 4Q1? m\Pm\P 4`T\P 4`T] >     `L1?   GLAN 1& Zg. T    #     B)C DE$F,?   x(%@P l yv 2   BC|E$GzH=I`TQ1? = |= |`T`T= |`T`T G [ 2   BE$G<Hy`I`TQ'1? TITI`T`TTI`T`TF 2   BE$G<Hy`I`TQ1? TITI`T`TTI`T`TF 2  # B`vCuyENG  2   BmCPENGSH2=I 4Q1? m\Pm\P 4`T\P 4`T] >      `d1?( \  JInternet&  Z gy T    !#  . T    "#    # B)C DE$F,?   x(%@P l yv 2 $  BC|E$GzH=I`TQ1? = |= |`T`T= |`T`T G [ 2 %  BE$G<Hy`I`TQ'1? TITI`T`TTI`T`TF 2 &  BE$G<Hy`I`TQ1? TITI`T`TTI`T`TF 2 ' # B`vCuyENG  2 +  BmCPENGSH2=I 4Q1? m\Pm\P 4`T\P 4`T] >   ,  `l1?   GLAN 2& Zg -  ` p1? p  `Firewall<  Zg g xB . HDjJ?P `h#T CP /# `e  0 C BC(DEFg ?'' @ 1 C BCC'DEF$g ?  &B % @ 2 C BmCADEFg ?l5l@y @CP 3 C BbC8DEFg ?m7a7m7 @CU 4 C BCDEFg ? @ 5 C BCDEFg ? @ 6 C BC(DEFg ?'' ' @N  7  8  BC%DEFg ?   * $ @ 9  BC#DEFg ?   ' " @ :  BC%DEFg ?   ' $ @ ;  BC#DEFg ?  '" @ <  BC"DEFg ?   ' ! @ =  BC DEFg ?  %  @ >  BC#DEFg ? %" @  ?  BCDEFg ?  %  @f @ 6g ?f A 6g ?Ef B 6g ?f C 6g ?-f D 6g ? U}f E 6g ? } F # BC4DEFg ?3 @`~4& N F G Ff H 6g ?F I # BC(DEFg ?'' @/(N  B J  B K # B C(DEFg ?'" @Ii& L # BEC&DEFg ?D%%@D% @KB M # B+C)DEFg ?*(&(* @e0 N # BC*DEFg ?)  @ 4f2 O 6g ?m"? P # BC)DEFg ?(( @ ;zN e; Q e;  R # BC=DE0F8g ?  << @e;  S # BC=DE0F8g ?   < <   @h; T # BYC(DEFg ?XX'' @%a~ U  B(C(DEFg ?'%'' @>of V C B"C@DEFg ??!? @ W C B&CBDEFg ?#A%<# @%gN $m X $mf Y 6g ?$b Z # BC%DEFg ?$$ @),FQ [ # BC(DEFg ?'' @)EFm \ # BC)DEFg ?(( @K7i`f2 ] 6g ?72_xB ^B HDjJ?@` r _ BA1?`@ } FT G `# 0   a  BHCrDEF1?qXGGq @G b  BCYDEF1?XLXX @G c  BPCDEF1?OOO @or d  BB#CDELFT1?18<?GG""11'(@ e  BCDEF$1?   @r f  BB#CDELFT1?""""GG?<81"1"'(@ g  B#CDEF1?""" @ h  B#CDEF1?""" @ i  B#CDEF1?""" @@ j  B$CDEF1?### @?c k  B#CDEF1?""" @b l  B#CDEF1?""" @ m  B#CDEF1?""" @ n  B%CDEF1?$$$ @ o  B$CDEF1?### @8 p  B$CDEF1?### @ q  B$CDEF1?### @5Y r  B%CDEF1?$$$ @Z s  B$CDEF1?### @{ t  B$CDEF1?### @ u  B#CDEF1?""" @  v  B$CDEF1?### @ w  B$CDEF1?### @ x  BDCDEF1?CCC @g y  BC+DEF1?*** @xB z HD)?P P  { C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ?      $%&'()*+ ̙33^  0(    ZT,gֳgֳ ? <$ 0     f@/gֳgֳ ? p     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33^  P(     fTYgֳgֳ ? p     Zfgֳgֳ ? pp<$ 0    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33,  pl(    Tgֳgֳ ?      fL gֳgֳ ? p     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33 % P((  P0 P H~gֳgֳ ? p ,$ 0 "2.- Deficiencias protocolo TCP/UDP##E #  P 6  >Deficiencias de seguridad en las tecnologas de comunicaciones??C$ ?  P C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH P 0޽h ? ̙33O  rOjO O(       f|gֳgֳ ? p   EF A=   =A   Txaxa1? =; vBits$( 2g  hh88`B   01?r r {`B   01?RR{`B   01?{`B   01?  {`B   01?{`B   01?BB{`B   01?{`B   01?::{`B   01?  {   Tx1xaxa1?A s0$( 2g  hh88   T2xaxa1?   t16$( 2g  hh88   T;xaxa1?  s8$( 2g  hh88   TXCxaxa1? t24$( 2g  hh88   TJxaxa1?!   t20$( 2g  hh88   TRxaxa1?9 s4$( 2g  hh88   Taxaxa1? W  t12$( 2g  hh88   TDcxaxa1?O t28$( 2g  hh88   Tkxaxa1?i t31$( 2g  hh88   Zsxaxa1?v[  yWords$( 2g hh88 F lQ=l    Ql=l `B   01?l```B   01?|`B   01?] ] `B   01?|  `B   01? " `B   01?tl l `B   01?|  N Q=j    Q=j  !  Txaxa1?= s2$( 2g  hh88 "  T xaxa1?Q=# s1$( 2g  hh88 #  Txaxa1?=f  s3$( 2g  hh88 $  Txaxa1?W =)  s4$( 2g  hh88 %  Tܝxaxa1? =  s5$( 2g  hh88 &  Tȧxaxa1? =j  s6$( 2g  hh88 '  Zxaxa1?U  zHeader$( 2g hh88<2F h  (  h f )  61?h qf *  61?h qf +  61?w  f ,  61?  f -  61? f .  61? f /  61? f 0  61?h!qf 1  61? ! f 2  61?!f 3  61?w!  4  Z xaxa1?  } Source Port"  g  hh88f 5  61? ! 6  Zxaxa1?  Destination Port" g hh88f 7  61?hqf 8  61?w f 9  61?  f :  61? f ;  61?f <  61?hqff =  61?ff >  61?wf ?  Z4xaxa1? `{ Sequence Number" g hh88f @  61?hmqpf A  61?wmpf B  61?mpf C  61?hvq f D  61?v f E  61?wv  F  ZHxaxa1? ^T&  Acknowledgment Number" g hh88f G  61?h q f H  61?w  f I  61?  f J  61?  f K  61?   f L  61?    f M  61?    f N  61?   f O  61?  f P  61?h! q f Q  61?!  f R  61? ! f S  61? !  f T  61?!  f U  61?w!    V  Zxaxa1?   xOffset" g hh88f W  61?!   X  Zxaxa1?$  zReserved"  g  hh88f Y  61? !    Z  ZP"xaxa1?/   wFlags" g hh88f [  61? !    \  Z$$xaxa1?   xWindow" g hh88f ]  61?h q f ^  61?w  f _  61?  f `  61? f a  61? f b  61?  f c  61?  f d  61?  f e  61?  f f  61?h qg f g  61?  g f h  61? g f i  61?w  g   j  Zxaxa1? |  zChecksum"  g  hh88f k  61? g  l  Zxaxa1? |  Urgent Pointer" g hh88f m  61?hn qr f n  61?wn  r f o  61? n  r f p  61? n > r f q  61?D n E r f r  61?K n r f s  61?n r f t  61?hy q f u  61?D y E  f v  61?y  f w  61?wy =    x  Z8xaxa1?_ ! '  yOptions" g hh88f y  61?K y    z  Zxaxa1?_ d'  yPadding" g hh88f {  61?h q f |  61?w =  f }  61?D  E  f ~  61?K   f   61?  f   61?h# q f   61?h q f   61?h q f   61?w  f   61?#  f   61?  f   61?  f   61?w#  0   Zxaxa1? q  data begins here...." g&    hh88    `@&gֳgֳ ?p@@<$D 0     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH   0޽h ? ̙33 & 55X-(  X X  `/gֳgֳ ?p@@<$D 0  ^ X 61?  ^ X 61?  ^ X 61? ^ X 61?  ^ X 61?  F <  X ` `B  X 01?~~`B  X 01?* `B  X 01?b `B  X 01?    X T@;xaxa1?<{ ! vbits$( 2g  hh88 X T<xaxa1? Sd  s0$( 2g  hh88 X TlDxaxa1?:  d  t16$( 2g  hh88 X Ttxaxa1?d  t31$( 2g  hh88f X 61?  f X 61?  f X 61?  f X 61?   f X 61?   f X 61?  f X 61?  f X 61?  f X 61?  f X 61?  f X 61?  X Zxxaxa1? #   } Source Port"  g  hh88f X 61?    X ZЁxaxa1?    Destination Port" g hh88f X 61?  f  X 61? f !X 61?  f "X 61?   #X ZXxaxa1? 4  xLength" g hh88f $X 61?    %X Z,xaxa1?   zChecksum"  g  hh88f &X 61?  f 'X 61? f (X 61? f )X 61?  f *X 61?  f +X 61?  f ,X 61?  f -X 61?  f .X 61?  f /X 61?  f 0X 61?  f 1X 61?  f 2X 61?  / 3X Zxaxa1?   data begins here..." g&    hh88 4X  fXgֳgֳ ? p    5X C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH X 0޽h ? ̙33  ' w o ` (  ` `  `gֳgֳ ?@ <$D 0   `  fXgֳgֳ ? p   B `  ` jJ jJD1?  ` 3 r jJ jJ 1?@5 9  w SYN (SNc)$ P \/ g&   B `@  ` jJ jJD1?  = ` 3 r` jJ jJ 1?  SYN (SNs), ACK(SNc)$P \/g@     B `  ` jJ jJD1?    ` 3 rP jJ jJ 1? f j _  w ACK (SNs)$ P \/ g&   B  ` Z jJ jJD?@P B  ` Z jJ jJD?pPP   ` # l jJ jJ 1?e?6  hHost C$P \/g    ` # l jJ jJ 1?pA  hHost S$P \/g   ` C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH ` 0޽h ? ̙332 ( hr(  h h  fgֳgֳ ? p    h Zgֳgֳ ?    h C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH h 0޽h ? ̙33q  ) !  0p (  p p Z,gֳgֳ ?    F @  p  @B p  ` jJ jJD1? ! p 3 r jJ jJ 1?3 Fz > w SYN (SNc)$ P \/ g&   B pB  ` jJ jJD1?  E p 3 r`  jJ jJ 1?K SYN (SNs), ACK(SNc)$P \/g@     B p  ` jJ jJD1?   !  p 3 r jJ jJ 1?c  w ACK (SNs)$ P \/ g&   B  p Z jJ jJD?@P B  p Z jJ jJD?PpP    p # l jJ jJ 1?fou  hHost C$P \/g     p # ll jJ jJ 1?q  hHost S$P \/g   p  fgֳgֳ ? p   H p 0޽h ? ̙33   P77(Q(  (F {  ( { B (  ` jJ jJD1?Z 9 H ( 3 r& jJ jJ 1?| x SYN (SNx), SRC=Spoofed$P \/g@     B (  ` jJ jJD1? K E ( 3 r  jJ jJ 1?   SYN (SNs), ACK(SNx)$P \/g@     B (  ` jJ jJD1? ! ( 3 r6 jJ jJ 1? mT  w ACK (SNs)$ P \/ g&   N o   (   \  (  ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB  ( 3 7J }   (  BCDE$F.7   @`y  T  ( c $ N ( S  0 N ( S y ! BB ( 3  9 BB ( 3  9 BB ( 3 As B BB ( 3 s  BB ( 3 s  BB ( 3 s   ( <T>   nServer8P \/gg  N o  ( {~6 \ (  ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB ( 3 7J }  (  BCDE$F.7   @`y  T ( c $ N ( S  0 N ( S y ! BB ( 3  9 BB ( 3  9 BB  ( 3 As B BB !( 3 s  BB "( 3 s  BB #( 3 s   $( <8E   |Hacker8P \/gg  N ~o  %( `  \ &(  ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB '( 3 7J }  ((  BCDE$F.7   @`y  T )( c $ N *( S  0 N +( S y ! BB ,( 3  9 BB -( 3  9 BB .( 3 As B BB /( 3 s  BB 0( 3 s  BB 1( 3 s    2( <|L~    Spoofed HostLX \/X P/ gg   B 3(  ` jJ jJD1? ' 4( 3 rS jJ jJ 1? C f  }ACK (SNs), DATA$P \/g&    5(  fUgֳgֳ ? p    6( ZWgֳgֳ ?    7( C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH ( 0޽h ? ̙33 ! p790Q(  0 0  f Ogֳgֳ ? p   F   0 P B 0  ` jJ jJD1?* H 0 3 r(g jJ jJ 1? N F  SYN (SNx), SRC=Spoofed$P \/g@     B 0  ` jJ jJD1? ` PP E  0 3 rd jJ jJ 1?   SYN (SNs), ACK(SNx)$P \/g@     B  0  ` jJ jJD1? !  0 3 r jJ jJ 1?d \#  w ACK (SNs)$ P \/ g&   N os   0  p \  0  ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB 0 3 7J }  0  BCDE$F.7   @`y  T 0 c $ N 0 S  0 N 0 S y ! BB 0 3  9 BB 0 3  9 BB 0 3 As B BB 0 3 s  BB 0 3 s  BB 0 3 s   0 < s  nServer8P \/gg  N o  0  v \ 0  ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB 0 3 7J }  0  BCDE$F.7   @`y  T 0 c $ N 0 S  0 N  0 S y ! BB !0 3  9 BB "0 3  9 BB #0 3 As B BB $0 3 s  BB %0 3 s  BB &0 3 s   '0 <T?   |Hacker8P \/gg  N o  (0 0 a\ )0  ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB *0 3 7J }  +0  BCDE$F.7   @`y  T ,0 c $ N -0 S  0 N .0 S y ! BB /0 3  9 BB 00 3  9 BB 10 3 As B BB 20 3 s  BB 30 3 s  BB 40 3 s    50 <HG    Spoofed HostLX \/X P/ gg   B 60  ` jJ jJD1? ' 70 3 rN jJ jJ 1?v% 5 }ACK (SNs), DATA$P \/g&    80 ZPgֳgֳ ?    90 C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH 0 0޽h ? ̙332 * xr(  x x  fXgֳgֳ ? p    x ZMgֳgֳ ?    x C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH x 0޽h ? ̙33k + 33(     fpagֳgֳ ? p   F  p`  0PB   ` jJ jJD1? p`  3 r~ jJ jJ 1?k a  WSYN$P \/g  F  `   P B B  ` jJ jJD1? `   3 rT jJ jJ 1?"  \SYN, ACK$ P \/ g  F on    p\    ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB   3 7J }     BCDE$F.7   @`y  T   c $ N  S  0 N  S y ! BB  3  9 BB  3  9 BB  3 As B BB  3 s  BB  3 s  BB  3 s    < n  |Hacker8P \/gg  F o     \   ,BfCeDEXFh7nnn%EE%%I  IIkefef14@`@`@`@`o9 BB  3 7J }    BCDE$F.7   @`y  T  c $ N  S  0 N  S y ! BB  3  9 BB  3  9 BB   3 As B BB ! 3 s  BB " 3 s  BB # 3 s   $ <̐   oVctima8P \/gg  F  p` % P` B &  ` jJ jJD1? p` ' 3 r0 jJ jJ 1?k a  WSYN$P \/g  F  p` ( P B )  ` jJ jJD1? p` * 3 rؓ jJ jJ 1?k a  WSYN$P \/g  F  `  + ` P` B ,B  ` jJ jJD1? `  - 3 rTf jJ jJ 1?"  \SYN, ACK$ P \/ g  F  `  .  P B /B  ` jJ jJD1? `  0 3 rT` jJ jJ 1?"  \SYN, ACK$ P \/ g   1 # lpk jJ jJ 1?p `L  iDestino inexistente!$P \/g   2 Zgֳgֳ ?    3 C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33, , l(     fgֳgֳ ? p     T@gֳgֳ ?0<@    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33, - l(    T(qgֳgֳ ?0<@     fTgֳgֳ ? p     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33 . `X(  |  C TA:C:\Documents and Settings\jrm\Mis documentos\seguretat\Cisco - Strategies to Protect Against Distributed Denial of Service (DDoS) Attacks_archivos\ddos.jpeg@    f!gֳgֳ ? p     T"gֳgֳ ?0<    C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙332 # 0@r(  @ @ Z@&gֳgֳ ?    @  f0gֳgֳ ? p    @ C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH @ 0޽h ? ̙33, 0 Pl(     fgֳgֳ ? p     Tgֳgֳ ?     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33  ^Vp (   r  S  @   r  S :     C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH  0޽h ? ̙33   0`(  0 0 Zpgֳgֳ ? p    0 TQgֳgֳ ? p   0 C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH 0 0޽h ? ̙33  /'((  ( ( 06) ] GRACIAS !" (2 G    ( C AC:\Documents and Settings\xvila\Mis documentos\Personal\xavi.jpg@ZH ( 0޽h ? ̙33 0 @,(  ^  S      c $. @   " H  0޽h ? ̙33 0 p< (  <X < C     < S DQ @   " H < 0޽h ? ̙33 0 @ (  @X @ C    ) @ S ) @  ) " H @ 0޽h ? ̙33 0 D (  DX D C    ) D S () @  ) " H D 0޽h ? ̙33 0 H (  HX H C    ) H S 2) @  ) " H H 0޽h ? ̙33 0 h (  hX h C     h S V @   " H h 0޽h ? ̙33 0 l (  lX l C     l S Xv @   " H l 0޽h ? ̙33  0 p (  pX p C     p S T @   " H p 0޽h ? ̙33  0 t (  tX t C     t S ́ @   " H t 0޽h ? ̙33  0 x (  xX x C     x S p @   " H x 0޽h ? ̙33  0  | (  |X | C     | S \ @   " H | 0޽h ? ̙33  0 @,(  ^  S      c $D @   " H  0޽h ? ̙33 0 `,(  ^  S      c $ @   " H  0޽h ? ̙33 0 ,(  ^  S      c $xr @   " H  0޽h ? ̙33 0 ,(  ^  S      c $@ @   " H  0޽h ? ̙33 0 ,(  ^  S      c $ @   " H  0޽h ? ̙33 0 ,(  ^  S      c $, @   " H  0޽h ? ̙33 0  ,(  ^  S      c $\  @   " H  0޽h ? ̙33 0 @,(  ^  S      c $ @   " H  0޽h ? ̙33 0 `,(  ^  S      c $  @   " H  0޽h ? ̙33 0 ,(  ^  S      c $p @   " H  0޽h ? ̙33 0 ,(  ^  S      c $,F @   " H  0޽h ? ̙33 0 ,(  ^  S      c $Lv @   " H  0޽h ? ̙33 0 ,(  ^  S      c $r @   " H  0޽h ? ̙33 0 ,(  ^  S      c $ @   " H  0޽h ? ̙33 0  ,(  ^  S      c $v @   " H  0޽h ? ̙33 0 @,(  ^  S      c $d @   " H  0޽h ? ̙33 0 ` ,(   ^   S       c $  @   " H   0޽h ? ̙33 0 ,(  ^  S      c $ @   " H  0޽h ? ̙33! 0 $,(  $^ $ S     $ c $, @   " H $ 0޽h ? ̙33" 0 `,,(  ,^ , S     , c $H\ @   " H , 0޽h ? ̙33# 0 4,(  4^ 4 S     4 c $|V @   " H 4 0޽h ? ̙33% 0 @D,(  D^ D S     D c $ @   " H D 0޽h ? ̙33& 0 L,(  L^ L S     L c $= @   " H L 0޽h ? ̙33' 0 T,(  T^ T S     T c $< @   " H T 0޽h ? ̙33( 0 \,(  \^ \ S     \ c $ @   " H \ 0޽h ? ̙33) 0 d,(  d^ d S     d c $ @   " H d 0޽h ? ̙33* 0  l,(  l^ l S     l c $ @   " H l 0޽h ? ̙33+ 0 @t,(  t^ t S     t c $" @   " H t 0޽h ? ̙33, 0 |,(  |^ | S     | c $\ @   " H | 0޽h ? ̙33M - 0    (  ^  S       c $x @   WThe basic SYN flood attack works by sending a high volume of SYN packets to the target host, and then never responding to the SYN/ACK packets that are returned, thus filling up the data structure(s) used by the target host to keep track of pending connections. Although pending connections will time out eventually and free up space in the data structure(s), the sender can simply transmit additional SYN packets, faster than they can expire. In another possible scenario, the sender takes advantage of the fact that since he is ignoring the target host's SYN/ACK packets, he doesn't even need to receive them. This allows him to hide his location by using a forged address in the SYN packets his system sends -- he can use the real address of another system (thus misleading the target), or he can use a non-existent address (and simply hiding). At least one of the attack programs currently in use on the Internet makes up a new, random source address for each packet it sends. For more complete information on the SYN Flood attack, see ftp://info.cert.org/pub/cert_advisories/CA-96.21.tcp_syn_flooding            !              5  #                    2          &                      /        /                          H  0޽h ? ̙33. 0 ,(  ^  S      c $ @   " H  0޽h ? ̙33/ 0 ,(  ^  S      c $ @   " H  0޽h ? ̙330 0 YQ (  ^  S    K  c $ @l  TL___PPT9.& Behind a Client is a person that orchestrate an attack. A Handler is a compromised host with a special program running on it. Each handler is capable of controlling multiple agents. An Agent is a compromised host that is running a special program. Each agent is responsible for generating a stream of packets that is directed toward the intended victim In order to facilitate DDoS, the attackers need to have several hundred to several thousand compromised hosts. The hosts are usually Linux and SUN computers; however, the tools can be ported to other platforms as well. The process of compromising a host and installing the tool is automated. The process can be divided into the following steps, in which the attackers: Initiate a scan phase in which a large number of hosts (on the order of 100,000 or more) are probed for a known vulnerability. Compromise the vulnerable hosts to gain access. Install the tool on each host. Use the compromised hosts for further scanning and compromises. Because an automated process is used, attackers can compromise and install the tool on a single host in under 5 seconds. In other words, several thousand hosts can be compromised in under an hour. v" +x(w/ H  0޽h ? ̙331 0 `,(  ^  S      c $` @   " H  0޽h ? ̙33 *x tT7LHPDD(HҊ!,*Er0$0$l.M(KEPBu@cT ZA RpЊ38pNޜ;۝|6#hֆL=f-0Z*22-)8A'ˇQ( I:!`Sp5noV~zUC&`VRjBT7T7/M=\:]Pg2(nؖ cw_gNCQ4j)^ 5fdb+fl{9߄Ed򿽝 cIsAҡDH:<ȰjZ.qAj)f5tzWK3V3f:1yiOLs&Bn \/UeoA9IUEř_/Q%%/P믘V MQ^o&m'.d #,9'}Us-LrUGdXU"i8Q2zZSz\=jf֑=l3ZK4LպZs9'f\nn(KV'YДr(L!Z7X;=4:NZ00<^zjkk! B}}=HZo֠zP8{O[(XQg7vIees EOyf$aa7[TfHُN!UXn20}ֺ8W;wxS2Æ],L?Jd[%DGOX0y91^y6oGDHDisDXN2[LXz3%Medg8ZX<uK27a˰,FXpD7lV_ZgpHh&aj{dBqP&$pb2\Y\6cX($ O]}Q%Ԓ^K= ACFjI2 ၰKxj=DSCPCWB8H"I/Ä/Ap8М44a3-saS BH5DcQ&B"rD@ztJl$$)I.xH6^c!Ì%CA/dN"J DjvXX)eTƂ5d1C֌ؘW7utak16OqjEU;Nz~x3ɟl>RL1g" |<2|xP¿{9g> C`62~\Ͽr4az Kb&_&Y>LgcķO{2Ǚs^ClX'g!'>2a)RZ n9{,n0p{/ |oUM"DQ?G7?ΐr;uxf27a.&m`\9~|@Û:~߂|!r8FNhT$z^ {*1 >x"MMoZ .Kr4ShP>DZ% Mx؉ωIOK-+1\#~ wq~q| _/aǹr-EpXgR(\dHfTL(1;L> oa YT| 6W-| W|0\ςzd&=.PϒCN Yq'#@;~gJb%xAn6>\NS2FѴ֣pU3MN>ي$c5826Wjm=x!NЋAM`uVc_6[ӏl$:[ǡ5z>BZ˿FO$X4ٸ)7YON vovy=Yۦ'zLևz0C٪B;Oɶ\EYHm @4"e0]H)ay'u iD"/QQ:QQ&Q;DYfDyqO-pnY KՃ3nhN_H=n %Pca"LmoN*OfY=#P Ťy)@_z*RT_k>ſyf{-8W~wvYr%OϿ!yѕnnͣB`YmЊڂKpﷆ?2Յbq1@MAѤ@m С@M/ڿdphҔɥU @e$.زI%c T[R^TL YYr*=xR(Օ.{Y|EJ*۹ֻ-pi39*1*Et6WOl1M!u5Ùzff֑=l;ݚKOaAcOIPq kuƬf4~\mȁ Iz=}CZv1VUGu~C8FVꭇzEivG`ժcK*+zQx0$ MZziR57ts5^o*m X+վ>hZ(ٶJ=!SD}iZZSGϑ! u/ h(B54'>Q:&GāƀƌqqiI,Kh5# 0DdFo}EH"N54G"/i$|$3JL%CDa/bN}!R{~uU6VzإX,fȚfcExl9Wnlg:EY8ͣUi(IA?2|PƿE |SM0C1 9LyOem1r"vSQۅ; Ǚ͋Y2C"X'^-އ aYB\0n9@_>_Br/_(E7O\_W8S~86P[`,r.' m7qH]r-x׉X(t/yͫ{@\ :cQaDg{u7kxx/O(A+E!iz nxp_px<8W6~|<ųq؅OH 5)kQ\'~O*ocx!|_blf/b!!ш&\ j%8ϐ#̒|ŷxgLJ| L⿃ifSɳi ,a_P̯_ps/t L̹9Jy79Tb!NxxB_JϓSrXR/x'y*gi2H0"#yk_6 4Z?\S5ϴ(Øu? Uv~1=A0k&j̝cNЫZբ#q'~4 @!y!L>q `+[ Uܮڶވ0Ae׺g^|TNZv֊m;jy+qΘGte?mvXs3[Cs4^/c"4[G:SI= NPsa"ѕ8.#ntG M#=%VvX“NEE'UՊ=Ҏ{%iG4oJ8!_=yu[s/%hnZi/c%va3#QrN͝N'hotjӧ,>%؋yQ]R/_i'>ÿ8{[qnNMSc[ ߃][x7r^OնkqSs=A8g%s]}1v$[k( RO1IBW@xmX~sDZl1>HNc7kk;z ; 4Ocs>{N|\ҋ[}?wԫ%~2(KU[5^m<6/#fA _O5[E\簵~FڵZg0Wbħ<Љܩ^e#{v etGK3I2Ğl.d G{OI K<'jC<E,~t}:YZls ؝β֕yTt̅Y6gZ'z=c:d@k4o WmZzEg)EbRܹ?~Ǯuvk]cM9=^LR|?b,VY.pncD;NI| rpmU3IQQ)4 a9m$lW  g*MQfTWj640ZVu8Q5qU9H0 Lu Y 74#@j$<G"K=!͔z&(*lS20mKsOh+'0R px   $ 0<DCurso - Deficiencias TCP/IPCurso seguridad 2002TCP Xavi VilariaviXaviVil26iMicrosoft PowerPointTCP@`9@@JvGPg  R('& &&#TNPPD2OMi & TNPP &&TNPP     'A x(xKʦ """)))UUUMMMBBB999|PP3f3333f333ff3fffff3f3f̙f3333f3333333333f3333333f3f33ff3f3f3f3333f3333333f3̙33333f333ff3ffffff3f33f3ff3f3f3ffff3fffffffff3fffffff3f̙ffff3ff333f3ff33fff33f3ff̙3f3f3333f333ff3fffff̙̙3̙f̙̙̙3f̙3f3f3333f333ff3fffff3f3f̙3ffffffffff!___wwwmmmCCCCmmmCC  mCCmCCCmC--&TNPP &՜.+,0   $,4 < s FormaciniPresentacin en pantallao Shurenkain`-- 4Times New RomanArial Wingdings Courier NewDiseo predeterminadoMicrosoft Clip Gallery!Galera de imgenes de Microsoft?Deficiencias de seguridad en las tecnologas de comunicacionesPresentacin de PowerPoint8Deficiencias de seguridad en transmisiones telemticasConceptos de seguridadConceptos de seguridad3Problemas de seguridad en redes: Nivel fsico (I)4Problemas de seguridad en redes: Nivel fsico (II)5Problemas de seguridad en redes: Nivel fsico (III)4Problemas de seguridad en redes: Nivel fsico (IV)6Problemas de seguridad en redes: Nivel de enlace (I)7Problemas de seguridad en redes: Nivel de enlace (II)>Problemas de seguridad en redes: Caso concreto: IEEE 802.11bPresentacin de PowerPointTipos de ataques (I)Tipos de ataques (II)GeneralidadesGeneralidadesSniffing o SnoopingSniffing o SnoopingSniffing o SnoopingMessage alterationMessage Delay and DenialIP adress masqueradingRouting attacks (I)Routing attacks (II)ARP attacks (I)ARP attacks (II)Presentacin de PowerPointDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPDeficiencias TCP/UDPBIBLIOGRAFA (I)BIBLIOGRAFA (II)Presentacin de PowerPoint Fuentes usadasPlantilla de diseoServidores OLE incrustadosTtulos de diapositiva-_MXaviXavi  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[]^_`abcdefghijklmnopqrstuvwxyz{|}~      !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~      !"#$%&'()*+,./012346789:;<CRoot EntrydO)[EOJvPictures~Current User5SummaryInformation(0RPowerPoint Document(\5MDocumentSummaryInformation8-