Most applications with sound security standards hash passwords in databases such that the plaintext password may not be deduced given the hacker is granted access to the server's database. However, given an attacker is granted admin privileges to a server, wouldn't he be able to:
- Halt the program being executed.
- Inject a print statement into the source code of the program in locales where passwords obtained via HTTPS requests are temporarily stored in memory.
- Restart the program - upon input of sensitive information from clients, sensitive (un-hashed) information will now be printed to the console.
Hence given an attacker has been granted access to my server, wouldn't it follow that he may now extract sensitive information given such technique? Are there any widespread security protocols to prevent this? Would it help to compile the code on the production server and keep the source code secure on a different machine?
与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
