Google ku saabsan bilawga ka mid noqoshada marxaladda (DoH, DNS ka badan HTTPS) ee isticmaalayaasha Chrome 85 iyagoo isticmaalaya aaladda Android. Habka waxaa loo hawlgelin doonaa si tartiib tartiib ah, oo daboolaya isticmaaleyaal badan oo badan. Markii hore gudaha Awood u siinta DNS-over-HTTPS ee isticmaalayaasha desktop-ka ayaa bilaabatay.
DNS-over-HTTPS si toos ah ayaa loogu hawlgelin doonaa isticmaalayaasha ay dejishoodu ku qeexan yihiin bixiyeyaasha DNS ee taageera tignoolajiyadan (DNS-over-HTTPS isla bixiyaha ayaa loo isticmaalaa sida DNS). Tusaale ahaan, haddii adeegsaduhu uu leeyahay DNS 8.8.8.8 ee ku qeexan nidaamka nidaamka, markaa adeegga Google-ka ee DNS-over-HTTPS ("https://dns.google.com/dns-query") ayaa laga hawlgelin doonaa Chrome haddii DNS-ka waa 1.1.1.1 , ka dibna adeegga DNS-over-HTTPS ee Cloudflare ("https://cloudflare-dns.com/dns-query"), iwm.
Si loo baabi'iyo dhibaatooyinka xallinta shabakadaha intranet-ka ee shirkadda, DNS-over-HTTPS lama isticmaalo marka la go'aaminayo isticmaalka browserka ee hababka dhexe loo maareeyo. DNS-over-HTTPS sidoo kale waa naafo marka la rakibo nidaamyada xakamaynta waalidka. Haddii ay dhacdo guuldarrooyin ku yimaada hawlgalka DNS-over-HTTPS, waxaa suurtagal ah in dib loogu celiyo goobaha DNS-ka caadiga ah. Si loo xakameeyo hawlgalka DNS-over-HTTPS, doorashooyin gaar ah ayaa lagu daray goobaha browserka ee kuu oggolaanaya inaad joojiso DNS-over-HTTPS ama dooro bixiye kale.
Aynu xasuusanno in DNS-over-HTTPS ay faa'iido u yeelan karto ka hortagga siidaynta macluumaadka ku saabsan magacyada martida loo codsaday iyada oo loo marayo server-yada DNS ee bixiyeyaasha, la dagaallanka weerarrada MITM iyo taraafikada DNS (tusaale ahaan, marka lagu xiro Wi-Fi dadweynaha), ka hortagga xannibidda heerka DNS (DNS-over-HTTPS ma beddeli karto VPN ka-hortagga xannibista ee lagu hirgeliyay heerka DPI) ama abaabulka shaqada marka aysan suurtagal ahayn in si toos ah loo galo server-yada DNS (tusaale, marka la adeegsanayo wakiil). Haddii xaalad caadi ah codsiyada DNS si toos ah loogu diro server-yada DNS ee lagu qeexay qaabeynta nidaamka, markaa kiiska DNS-over-HTTPS codsiga lagu go'aaminayo cinwaanka IP-ga martida loo yahay waxaa lagu soo koobay taraafikada HTTPS waxaana loo diraa server-ka HTTP, halkaasoo xaliyahu wuxuu ku socodsiiyaa codsiyada isagoo adeegsanaya Web API. Heerka DNSSEC ee jira wuxuu isticmaalaa sirta kaliya si loo xaqiijiyo macmiilka iyo server-ka, laakiin kama ilaaliyo taraafikada dhexda mana dammaanad qaadayso sirta codsiyada.
Source: opennet.ru