Tiyeni tikuuzeni nkhani yabwino ya momwe "maphwando achitatu" adayesa kusokoneza ntchito ya makasitomala athu, ndi momwe vutoli linathetsedwa.
Momwe zidayambira
Zonsezi zinayamba m’maŵa wa October 31, tsiku lomaliza la mweziwo, pamene ambiri amafunikira kwambiri kukhala ndi nthaŵi yothetsa nkhani zofulumira ndi zofunika.
Mmodzi mwa othandizana nawo, omwe amasunga makina angapo amakasitomala omwe amawatumizira mumtambo wathu, adanenanso kuti kuyambira 9:10 mpaka 9:20 ma seva angapo a Windows omwe akuyenda patsamba lathu la Chiyukireniya sanavomereze kulumikizana ndi ntchito yofikira kutali, ogwiritsa ntchito sanathe. kuti alowe mu ma desktops awo, koma patatha mphindi zingapo vutolo likuwoneka kuti latha.
Tidakweza ziwerengero pakugwiritsa ntchito njira zolumikizirana, koma sitinapeze kuchuluka kwa magalimoto kapena kulephera kulikonse. Tinayang'ana ziwerengero pazambiri zamakompyuta - palibe zovuta. Ndipo chinali chiyani chimenecho?
Kenako mnzake wina, yemwe amakhala ndi ma seva enanso zana pamtambo wathu, adanenanso zamavuto omwewo omwe makasitomala awo adawona, ndipo zidapezeka kuti nthawi zambiri ma seva anali kupezeka (moyenera kuyankha mayeso a ping ndi zopempha zina), koma Kufikira kwakutali pamaseva awa kumavomereza kulumikizana kwatsopano kapena kukana, ndipo timalankhula za ma seva pamasamba osiyanasiyana, kuchuluka kwa magalimoto omwe amachokera kumayendedwe osiyanasiyana otumizira ma data.
Tiyeni tiwone zamayendedwe awa. Paketi yokhala ndi pempho lolumikizana imafika pa seva:
xx:xx:xx.xxxxxx IP xxx.xxx.xxx.xxx.58355 > 192.168.xxx.xxx.3389: Flags [S], seq 467744439, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
Seva imalandira paketi iyi, koma ikukana kulumikizana:
xx:xx:xx.xxxxxx IP 192.168.xxx.xxx.3389 > xxx.xxx.xxx.xxx.58355: Flags [R.], seq 0, ack 467744440, win 0, length 0
Izi zikutanthauza kuti vutoli silinayambe chifukwa cha zovuta zilizonse pakugwira ntchito kwa zomangamanga, koma ndi zina. Mwina ogwiritsa ntchito onse ali ndi vuto ndi chilolezo chakutali cha desktop? Mwina mtundu wina wa pulogalamu yaumbanda udatha kulowa m'makina awo, ndipo lero adayatsidwa, monga momwe zidalili zaka zingapo zapitazo. XData и Petya?
Pamene tinali kukonza, tinalandira zopempha zofanana kuchokera kwa makasitomala angapo ndi othandizana nawo.
Kodi kwenikweni chimachitika ndi chiyani pamakinawa?
Zolemba za zochitikazo ndizodzaza ndi mauthenga okhudza kuyesa kulosera mawu achinsinsi:
Nthawi zambiri, zoyeserera zotere zimalembetsedwa pa maseva onse pomwe doko lokhazikika (3389) limagwiritsidwa ntchito panjira yolowera kutali ndipo mwayi umaloledwa kuchokera kulikonse. Paintaneti ili ndi ma bots omwe amasanthula nthawi zonse malo olumikizirana omwe alipo ndikuyesera kulosera mawu achinsinsi (ndichifukwa chake timalimbikitsa kugwiritsa ntchito mawu achinsinsi ovuta m'malo mwa "123"). Komabe, mphamvu ya zoyesayesa tsiku limenelo inali yaikulu kwambiri.
Nditani?
Ndibwino kuti makasitomala amathera nthawi yochuluka akusintha makonzedwe a chiwerengero chachikulu cha ogwiritsa ntchito kuti asinthe kupita ku doko lina? Osati lingaliro labwino, makasitomala sangakhale okondwa. Mukufuna kulola mwayi wofikira kudzera pa VPN? Mwachangu komanso mwamantha, kukweza kulumikizana kwa IPSec kwa omwe alibe - mwina chisangalalo chotere sichimwetuliranso makasitomala. Ngakhale, ndiyenera kunena, ichi ndi chinthu chaumulungu mulimonsemo, nthawi zonse timalimbikitsa kubisala seva pa intaneti yachinsinsi ndipo tili okonzeka kuthandiza ndi zoikamo, ndipo kwa iwo omwe amakonda kudzipangira okha, timagawana malangizo. pokhazikitsa IPSec/L2TP mumtambo wathu patsamba-to-site kapena msewu -warrior, ndipo ngati wina akufuna kukhazikitsa ntchito ya VPN pa seva yawo ya Windows, amakhala okonzeka kugawana maupangiri amomwe angakhalire wamba RAS kapena OpenVPN. Koma, ziribe kanthu kuti tinali oziziritsa bwanji, iyi sinali nthawi yabwino yochitira ntchito yophunzitsa pakati pa makasitomala, popeza tinkafunika kukonza vutoli mwachangu ndi kupsinjika kochepa kwa ogwiritsa ntchito.
Yankho lomwe tidakhazikitsa linali motere. Takhazikitsa kusanthula kwa magalimoto odutsa m'njira yoti tiyang'anire zoyesayesa zonse kukhazikitsa kulumikizana kwa TCP ku doko 3389 ndikusankha maadiresi omwe, mkati mwa masekondi a 150, kuyesa kukhazikitsa maulumikizidwe ndi ma seva oposa 16 pamaneti athu. - awa ndi magwero a kuukira ( Zachidziwikire, ngati m'modzi mwa makasitomala kapena othandizana nawo ali ndi chosowa chenicheni cholumikizira ma seva ambiri kuchokera kugwero lomwelo, mutha kuwonjezera magwero otere ku "mndandanda woyera." Komanso, ngati mu kalasi imodzi C maukonde kwa masekondi 150, maadiresi oposa 32 amadziwika, n'zomveka kuletsa maukonde onse. gweroli limachotsedwa pa "mndandanda wakuda." Mndandanda wazomwe zatsekedwa umasinthidwa masekondi 3 aliwonse.
Mndandandawu ulipo pa adilesi iyi: , mutha kupanga ma ACL anu potengera izo.
Ndife okonzeka kugawana magwero a dongosolo loterolo; palibe chovuta kwambiri mmenemo (awa ndi malemba angapo osavuta omwe amasonkhanitsidwa m'maola angapo pa bondo), ndipo nthawi yomweyo akhoza kusinthidwa ndikugwiritsidwa ntchito. kungoteteza ku chiwonongeko chotere, komanso kuzindikira ndi kutsekereza zoyesayesa zilizonse zoyesa ma netiweki:
Kuphatikiza apo, tapanga zosintha zina pamayendedwe owunikira, omwe tsopano amayang'anitsitsa momwe gulu lolamulira la ma seva omwe ali mumtambo wathu kuyesa kukhazikitsa kulumikizana kwa RDP: ngati zomwe zikuchitika sizikutsatira chachiwiri, ichi ndi chifukwa kumvetsera.
Yankho linakhala lothandiza kwambiri: palibenso madandaulo kuchokera kwa makasitomala ndi othandizana nawo, komanso kuchokera kumayendedwe owunikira. Maadiresi atsopano ndi maukonde athunthu nthawi zonse amawonjezeredwa ku mndandanda wakuda, zomwe zimasonyeza kuti kuukira kukupitirizabe, koma sikukhudzanso ntchito ya makasitomala athu.
Pali chitetezo mu manambala
Lero taphunzira kuti ogwira ntchito ena akumananso ndi vuto lofananalo. Winawake amakhulupirirabe kuti Microsoft inasintha zina pa code ya utumiki wakutali (ngati mukukumbukira, tinkakayikira zomwezo tsiku loyamba, koma tinakana mwamsanga Baibuloli) ndikulonjeza kuti tidzachita zonse zomwe tingathe kuti tipeze yankho mwamsanga. . Anthu ena amangonyalanyaza vutoli ndikulangiza makasitomala kuti adziteteze okha (kusintha doko lolumikizira, kubisa seva pa intaneti yachinsinsi, ndi zina zotero). Ndipo pa tsiku loyamba, sitinangothetsa vutoli, komanso tinapanga maziko a njira yodziwira zoopsa zapadziko lonse zomwe tikufuna kupanga.
kuthokoza kwapadera kwa makasitomala ndi abwenzi omwe sanakhale chete ndipo sanakhale pamphepete mwa mtsinje kudikirira kuti mtembo wa mdani uyandama pa tsiku lina, koma nthawi yomweyo anatikokera ku vutolo, lomwe linatipatsa mwayi wothetsa vutoli. tsiku lomwelo.
Source: www.habr.com