Wokondedwa owerenga, choyamba ndikufuna kunena kuti monga wokhala ku Germany, ndikufotokoza momwe zinthu zilili m'dziko lino. Mwina zinthu mβdziko lanu nβzosiyana kwambiri.
Pa Disembala 17, 2019, zidziwitso zidasindikizidwa patsamba la Citrix Knowledge Center zokhudzana ndi chiwopsezo chachikulu mu Citrix Application Delivery Controller (NetScaler ADC) ndi mizere ya Citrix Gateway, yomwe imadziwika kuti NetScaler Gateway. Pambuyo pake, chiwopsezo chinapezekanso pamzere wa SD-WAN. Chiwopsezochi chinakhudza mitundu yonse yazinthu kuyambira 10.5 mpaka 13.0 yapano ndikulola wowukira wosaloleka kuti apereke nambala yoyipa pamakina, ndikutembenuza NetScaler kukhala nsanja kuti iwukirenso netiweki yamkati.
Panthawi imodzimodziyo ndikufalitsa zambiri za kusatetezeka, Citrix idasindikiza malingaliro ochepetsa chiwopsezo (Workaround). Kutsekedwa kwathunthu kwa chiwopsezocho kudalonjezedwa pakutha kwa Januware 2020.
Kuopsa kwa chiwopsezo ichi (nambala CVE-2019-19781) ... Malinga ndi Chiwopsezochi chimakhudza makampani opitilira 80 padziko lonse lapansi.
Zomwe zingachitike ndi nkhani
Monga munthu wodalirika, ndimaganiza kuti akatswiri onse a IT omwe ali ndi zinthu za NetScaler m'magawo awo adachita izi:
- nthawi yomweyo adakhazikitsa malingaliro onse ochepetsa chiopsezo chofotokozedwa munkhani CTX267679.
- yayang'ananso makonda a Firewall malinga ndi kuchuluka kwa magalimoto ololedwa kuchokera ku NetScaler kupita ku netiweki yamkati.
- adalimbikitsa kuti oyang'anira chitetezo cha IT asamayesere "zachilendo" zoyesa kupeza NetScaler ndipo, ngati kuli kofunikira, aletseni. Ndiroleni ndikukumbutseni kuti NetScaler nthawi zambiri imakhala ku DMZ.
- adawunika kuthekera kochotsa NetScaler kwakanthawi kuchokera pa netiweki mpaka mutapeza zambiri za vutoli. Patchuthi cha Khrisimasi chisanachitike, tchuthi, ndi zina zotero, izi sizingakhale zopweteka kwambiri. Kuphatikiza apo, makampani ambiri ali ndi njira ina yofikira kudzera pa VPN.
Kenako chinachitika nβchiyani?
Tsoka ilo, monga zidzawonekera pambuyo pake, masitepe omwe ali pamwambapa, omwe ndi njira yokhazikika, ambiri sananyalanyazidwe.
Akatswiri ambiri omwe amayang'anira zomangamanga za Citrix adaphunzira za chiwopsezocho pa Januware 13.01.2020, XNUMX. . Iwo adazindikira pamene chiwerengero chachikulu cha machitidwe omwe ali pansi pa udindo wawo adasokonezeka. Kupanda nzeru kwa mkhalidwewo kunafikira nsonga yakuti ntchito zofunika kaamba ka izi zikhoza kukhala kotheratu .
Pazifukwa zina, ndimakhulupirira kuti akatswiri a IT amawerenga makalata ochokera kwa opanga, machitidwe omwe apatsidwa kwa iwo, amadziwa kugwiritsa ntchito Twitter, amalembetsa akatswiri otsogola m'munda wawo ndipo ali ndi udindo wodziwa zomwe zikuchitika.
M'malo mwake, kwa milungu yopitilira atatu, makasitomala ambiri a Citrix sananyalanyaze malingaliro a wopanga. Ndipo makasitomala a Citrix amaphatikiza pafupifupi makampani onse akulu ndi apakatikati ku Germany, komanso pafupifupi mabungwe onse aboma. Choyamba, kusatetezekako kudakhudza mabungwe aboma.
Koma pali chinachake choti tichite
Iwo omwe machitidwe awo adasokonekera amafunikira kubwezeretsedwa kwathunthu, kuphatikizanso ziphaso za TSL. Mwina makasitomala a Citrix omwe amayembekeza kuti wopanga achitepo kanthu kuti athetse chiwopsezochi adzayang'ana njira ina. Tiyenera kuvomereza kuti kuyankha kwa Citrix sikolimbikitsa.
Pali mafunso ambiri kuposa mayankho
Funso likubuka, kodi anzawo ambiri a Citrix, platinamu ndi golide, anali kuchita chiyani? Chifukwa chiyani zidziwitso zofunikira zidawonekera pamasamba a anzawo a Citrix mu sabata lachitatu la 3? Ndizowonekeratu kuti alangizi akunja omwe amalipidwa kwambiri adagonanso mumkhalidwe wowopsawu. Sindikufuna kukhumudwitsa aliyense, koma ntchito ya mnzanga ndiyo makamaka kuteteza mavuto, osati kupereka = kugulitsa thandizo kuti athetse.
M'malo mwake, izi zidawonetsa momwe zinthu zilili pachitetezo cha IT. Onse ogwira ntchito m'madipatimenti a IT amakampani ndi alangizi amakampani othandizana nawo a Citrix ayenera kumvetsetsa chowonadi chimodzi: ngati pali chiwopsezo, chiyenera kuthetsedwa. Chabwino, chiwopsezo chachikulu chiyenera kuchotsedwa nthawi yomweyo!
Source: www.habr.com