Aiming at researching and realizing distributed monitor on email, the system is mainly applied to collect, analysis, filter and control on such actions as computer crime, hacker attack, information spy and information intrusion and so on. Accordingly it can control specific message and behavior by detecting, alerting and managing on security status of some network. The system includes soft client server and email monitor center. Soft client server is secretly installed on ISP, WAN, host computer of important and sensitive part needed to be controlled to collect network data. After transmitting in real-time to email monitor center, POP3, information such as SMTP and Web -mail from these data are analysis and retrievable, password intercepted, classified and alert, Mean wile the center can monitor in real-time on over 1000 nodes by controlling working status and filter condition and software refreshment etc. The system occupies less than 4 percent of system recourse under the condition of without losing package. At present the system has been put into practical use and has a good effete on information control.
|