MunaFebruary, muAustria Christian Haschek akaburitsa chinyorwa chinonakidza pablog rake chine musoro . Zvechokwadi, ndakava nehanya nezvaizoitika kana chidzidzo ichi chakadzokororwa, asi neUkraine. Mavhiki akati wandei ekutenderera-ne-wachi kuunganidzwa kweruzivo, mamwe mazuva akati wandei ekugadzirira chinyorwa, uye panguva yekutsvagisa iyi, nhaurirano nevamiriri vakasiyana siyana venharaunda yedu, tozojekesa, wozowana zvimwe. Please under the cut...
TL; DR
Hapana maturusi akakosha akashandiswa kuunganidza ruzivo (kunyangwe vanhu vakati wandei vakaraira kushandisa iyo OpenVAS imwe chete kuita kuti tsvakiridzo iwedzere uye ine ruzivo). Nekuchengetedzwa kweIPs inoenderana neUkraine (zvimwe pamusoro pekuti yakatemwa sei pazasi), mamiriro acho, mumaonero angu, akashata (uye akanyanya kuipa kupfuura zviri kuitika muAustria). Hapana kuyedza kwakaitwa kana kurongwa kushandisa maseva akawanikwa ari munjodzi.
Chekutanga pane zvese: ungawana sei ese maIP kero eimwe nyika?
Zviri chaizvo nyore. IP kero haina kugadzirwa nenyika pachayo, asi yakagoverwa kwairi. Naizvozvo, pane runyorwa (uye rwuri paruzhinji) rwenyika dzese uye ese maIPs ndeavo.
Munhu wose anogona wobva wazvisefa grep Ukraine IP2LOCATION-LITE-DB1.CSV> ukraine.csv
, inokubvumira kuti uunze rondedzero mune imwe fomu inoshandiswa.
Ukraine muridzi anenge akawanda IPv4 kero sezvo Austria, vanopfuura mamiriyoni 11 11 kuva chaiwo (nokuenzanisa, Austria ane 640).
Kana iwe usingade kutamba ne IP kero iwe pachako (uye haufanirwe!), saka unogona kushandisa sevhisi. .
Kune chero isina kuvharwa Windows michina muUkraine inowana yakananga kuInternet?
Ehe, hapana muUkraine mumwe anoziva achavhura kuwana kwakadaro kumakomputa avo. Kana kuti zvichadaro?
masscan -p445 --rate 300 -iL ukraine.ips -oG ukraine.445.scan && cat ukraine.445.scan | wc -l5669 Windows michina ine yakananga kuwana kune network yakawanikwa (muAustria mune 1273 chete, asi izvo zvakawanda).
Oops. Pane here pakati pavo vanogona kurwiswa vachishandisa ETHERNALBLUE zviitiko, izvo zvave zvichizivikanwa kubvira 2017? Kwakanga kusina motokari yakadaro muAustria, uye ndaitarisira kuti yaisazowanwawo muUkraine. Sezvineiwo, hazvina basa. Tawana 198 IP kero isina kuvhara iyi "gomba" mukati mavo.
DNS, DDoS uye kudzika kwegomba retsuro
Zvakakwana nezveWindows. Ngationei zvatinazvo neDNS maseva, ayo akavhurika-resolvers uye anogona kushandiswa kurwiswa kweDDoS.
Inoshanda chinhu chakadai. Anorwisa anotumira chikumbiro chidiki cheDNS, uye sevha iri panjodzi inopindura munhu anenge abatwa nepakiti yakakura ka100. Boom! Makambani emakambani anogona kukurumidza kudonha kubva kuhuwandu hwe data, uye kurwiswa kunoda bandwidth iyo smartphone yemazuva ano inogona kupa. Uye kwaiva nekurwisa kwakadaro kunyangwe paGitHub.
Ngationei kana kune maseva akadaro muUkraine.
masscan -pU 53 -iL ukraine.ips -oG ukraine.53.scan && cat ukraine.53.scan | wc -lNhanho yekutanga ndeyekutsvaga avo vane yakavhurika port 53. Nekuda kweizvozvo, isu tine rondedzero ye58 IP kero, asi izvi hazvireve kuti ese anogona kushandiswa pakurwisa kweDDoS. Chechipiri chinodiwa chinofanira kuzadzikiswa, chinoti ivo vanofanirwa kuve vakavhurika-chigadziriso.
Kuti tiite izvi, tinogona kushandisa murairo wakajeka wekuchera uye kuona kuti tinogona "kuchera" kuchera + pfupi test.openresolver.com TXT @ip.of.dns.server. Kana sevha yakapindura ne-open-resolver-yakaonekwa, saka inogona kutorwa seyangangoita chinangwa chekurwisa. Vhura zvinogadzirisa zvinogadzira zvingangoita makumi maviri neshanu muzana, izvo zvinofananidzwa neAustria. Panyaya yehuwandu hwehuwandu, iyi inenge 25% yeUkraine yose IPs.
Chii chimwe chaungawana muUkraine?
Ndafara wabvunza. Zviri nyore (uye zvinonyanya kunakidza kwandiri pachangu) kutarisa IP ine yakavhurika port 80 uye chii chiri kushanda pairi.
web server
260 Ukrainian IPs inopindura kuchiteshi 849 (http). 80 kero yakapindura zvakanaka (125 chimiro) kune nyore GET chikumbiro icho browser yako inogona kutumira. Imwe yese yakaburitsa imwe kana imwe kukanganisa. Zvinonakidza kuti maseva mazana masere nemakumi mashanu akaburitsa chimiro chemazana mashanu, uye zvisingawanzo zvimiro zvaive 444 (chikumbiro chemvumo yeproxy) uye zvachose isiri-standard 200 (IP isiri mu "white list") yemhinduro imwe.
Apache inonyanya kutonga - 114 maseva anoishandisa. Iyo yekare vhezheni yandakawana muUkraine ndeye 544, yakaburitswa Gumiguru 1.3.29, 29 (!!!). nginx iri panzvimbo yechipiri ine 2003 maseva.
11 maseva anoshandisa WinCE, iyo yakaburitswa muna 1996, uye vakapedza kuigadzira muna 2013 (kune ina chete yeiyi muAustria).
Iyo HTTP/2 protocol inoshandisa 5 maseva, HTTP/144 - 1.1, HTTP/256 - 836.
Printers ... nokuti ... sei?
2 HP, 5 Epson uye 4 Canon, anowanikwa kubva kunetiweki, mamwe acho pasina mvumo.
webcams
Haisi nhau kuti muUkraine kune ROTI yewebhucams inozvitepfenyura kuInternet, yakaunganidzwa pane zvakasiyana zviwanikwa. Anosvika makumi manomwe neshanu makamera akazviratidzira ega kuInternet pasina dziviriro. Unogona kuvatarisa .
Chii chinotevera?
Ukraine inyika diki, seAustria, asi ine matambudziko akafanana nenyika huru muchikamu cheIT. Isu tinofanirwa kukudziridza kunzwisisa kuri nani kwezvakachengeteka uye zvine njodzi, uye vagadziri vemidziyo vanofanirwa kupa yakachengeteka yekutanga masisitimu emidziyo yavo.
Mukuwedzera, ini ndinounganidza makambani ekubatana (), iyo inogona kukubatsira iwe kuve nechokwadi chekuvimbika kweiyo yako IT zvivakwa. Nhanho inotevera yandinoronga kuita ndeyekuongorora kuchengetedzeka kwemawebhusaiti eUkraine. Usachinja!
Source: www.habr.com