I whakaputahia e tētahi rōpū kairangahau o Te Whare Wānanga o Michigan ngā hua o tētahi rangahau mō te āheinga ki te tautuhi i ngā hononga (VPN Fingerprinting) ki ngā tūmau i runga i OpenVPN i a ia e aroturuki ana i te haere o ngā waka. Nō reira, e toru ngā tikanga mō te tautuhi i ngā kawa i tautuhia OpenVPN i roto i ētahi atu mōkihi whatunga ka taea te whakamahi i roto i ngā pūnaha tirotiro waka hei aukati i ngā whatunga mariko i runga i OpenVPN.
I whakaatuhia i te whakamātautau i ngā tikanga kua whakaarohia i runga i te whatunga kaiwhakarato Ipurangi Merit, he neke atu i te miriona ngā kaiwhakamahi, te kaha ki te tautuhi i te 85% OpenVPN-ngā wātū me te reiti iti o te hē pai. Hei whakamātautau, i whakawhanakehia he taputapu i te tīmatanga i tautuhi i te waka i runga i te kore mahi me te tere. OpenVPN, kātahi ka manatoko i te tika o ngā hua mā te manatoko tūmau hohe. I whakaatahia he rerenga raraunga me te kaha o te 20 Gbps ki te tātaritanga i hangaia e ngā kairangahau.
I te wā o te whakamātautau, i taea e te tātaritanga te tautuhi angitu i te 1718 o roto i te 2000 whakamātautau. OpenVPN- ngā hononga i whakatūria e tētahi kiritaki rūpahu, e 40 ngā whirihoranga noa i whakamahia ai OpenVPN (I angitu te mahi a te tikanga mō te 39 o roto i te 40 whirihoranga). Hei tāpiri, i kitea ngā wāhanga 3638 i roto i te waka kawe waka i ngā rā e waru o te whakamātautau. OpenVPN, o ēnei wāhanga 3245 i whakaūtia. E kitea ana ko te rohe o runga mō ngā hua hē i roto i te tikanga kua whakaarohia he toru ngā whakarārangi iti iho i ngā tikanga kua whakaarohia i mua i runga i te ako mīhini.
I aromatawaihia motuhake te mahi a ngā tikanga mō te tiaki i te aro turuki i ngā waka. OpenVPN i roto i ngā ratonga arumoni - i roto i te 41 i whakamatautauria VPN-he ratonga e whakamahi ana i ngā tikanga huna waka OpenVPN, i kitea te waka i roto i te 34 ngā take. Ngā ratonga kāore i kitea, hei tāpiri atu ki OpenVPN i whakamahia ētahi atu paparanga hei huna i ngā waka (hei tauira, te tuku whakamua OpenVPN(-te waka mā roto i tētahi kauhanga whakamuna anō). Ko te nuinga o ngā ratonga i kitea angitu i whakamahi i te whakapōturitanga waka mā te whakamahi i te mahi XOR, ngā paparanga tāpiri o te whakapōturi me te kore he whakakī waka matapōkere tika, te aroaro rānei o ngā mea kāore i whakapōturitia. OpenVPN-ngā ratonga i runga i te mea kotahi tūmau.
Ko ngā tikanga tautuhi e whakamahia ana e hangai ana ki te hononga ki ngā mea motuhake OpenVPN Ngā tauira i roto i ngā pane o ngā kete kāore i whakamunatia, te rahi o ngā kete ACK, me ngā urupare a te tūmau. I te tuatahi, ko te āpure "opcode" i roto i te pane o ngā kete, e tango ana i tētahi whānuitanga pumau o ngā uara me ngā huringa i runga i tētahi huarahi motuhake i runga i te wāhanga whakatū hononga, ka taea te whakamahi hei ahanoa tautuhi i te wā whiriwhiringa hononga. Ko te tautuhi he tautuhi i tētahi raupapa motuhake o ngā huringa opcode i roto i ngā kete N tuatahi o tētahi awa.
Ko te tikanga tuarua e ahu mai ana i te meka e whakamahia ana ngā mōkihi ACK i roto i OpenVPN i te wāhanga whiriwhiringa hononga anake, ā, he rahi motuhake tō rātou. Ko te tautuhi e ahu mai ana i te meka ka puta noa ngā mōkihi ACK o tētahi rahi kua whakaritea i ētahi wāhanga o te wātū (hei tauira, ina whakamahia ana OpenVPN Ko te mōkihi ACK tuatahi ko te tuatoru o ngā mōkihi raraunga ka tukuna i roto i tētahi wātū).
Ko te tikanga tuatoru he tirotiro hohe, ā, nā te mea i te urupare ki te tono tautuhi hononga, ka whakahohe te tūmau OpenVPN ka tukuna he mōkihi RST motuhake (kāore te tirotiro e mahi ina whakamahia te aratau "tls-auth" nā te mea OpenVPN(- ka warewarehia e te tūmau ngā tono a ngā kiritaki kāore i manatokohia mā te TLS).
Source: opennet.ru
