A cikin Firefox da Chrome fasalin sarrafa tambayoyin bincike da aka buga a cikin adireshin adireshin, wanda don zubar da bayanai ta hanyar uwar garken DNS na mai bayarwa. Tushen matsalar ita ce, idan tambayar ta ƙunshi kalma ɗaya kawai, mai binciken ya fara ƙoƙarin tantance kasancewar ma'aikaci mai wannan sunan a cikin DNS, yana mai imani cewa mai amfani yana ƙoƙarin buɗe wani yanki, sannan sai ya sake tura shi. nema ga injin bincike. Don haka, mai uwar garken DNS da aka kayyade a cikin saitunan mai amfani yana karɓar bayanai game da tambayoyin neman kalma ɗaya, wanda ake ɗaukarsa cin zarafin sirri.
Matsalar tana bayyana kanta lokacin amfani da duka uwar garken DNS na mai bayarwa da sabis na "DNS akan HTTPS" (DoH), idan an ƙayyade suffix na DNS a cikin saitunan (wanda aka saita ta tsoho lokacin karɓar sigogi ta hanyar DHCP). A lokaci guda, babbar matsalar ita ce, ko da an kunna DoH, ana ci gaba da aika buƙatun ta hanyar uwar garken DNS na mai bayarwa da aka ƙayyade a cikin tsarin.
Yana da mahimmanci cewa ana ƙoƙarin ƙuduri kawai lokacin aika tambayoyin nema wanda ya ƙunshi kalma ɗaya. Idan ka ƙididdige kalmomi da yawa, ba a tuntuɓar DNS.
An tabbatar da batun a cikin Firefox da Chrome, kuma yana iya shafar sauran masu bincike. Masu haɓaka Firefox sun yarda cewa akwai matsala kuma samar da mafita a cikin sakin Firefox 79. Musamman don sarrafa ɗabi'a yayin gudanar da tambayoyin bincike game da: config "browser.urlbar.dnsResolveSingleWordsAfterSearch", lokacin da aka saita zuwa "0", an katange ƙuduri, "1" (default) yana amfani da ilimin lissafi don zaɓin zaɓi, kuma "2" yana adana tsohuwar hali. Heuristic duba cewa an kunna DoH, cewa akwai kawai shigarwar 'localhost' a /etc/hosts, kuma cewa babu wani yanki na mai watsa shiri na yanzu.
Masu haɓaka Chrome iyakance leaks na DNS, amma Irin wannan matsala ta kasance ba a warware ba tun 2015. Matsalar ba ta bayyana a Tor Browser ba.
source: budenet.ru