Umbhalisi we-APNIC, ojongene nokuhanjiswa kweedilesi ze-IP kummandla wase-Asia-Pacific, wabika isiganeko ngenxa yoko ukulahlwa kwe-SQL yenkonzo ye-Whois, kubandakanywa idatha eyimfihlo kunye ne-password hashes, yenziwe esidlangalaleni. Kuyaphawuleka ukuba oku akukona okokuqala ukuvuza kwedatha yomuntu siqu kwi-APNIC - kwi-2017, i-database ye-Whois sele yenziwe esidlangalaleni, nangenxa yokujongwa kwabasebenzi.
Kwinkqubo yokwazisa inkxaso yeprotocol ye-RDAP, eyenzelwe ukubuyisela iprotocol ye-WHOIS, abasebenzi be-APNIC babeka i-SQL yokulahla i-database esetyenziswa kwinkonzo ye-Whois kwi-Google Cloud yokugcina ifu, kodwa ayizange ithintele ukufikelela kuyo. Ngenxa yephutha kwizicwangciso, i-SQL yokulahla yayifumaneka esidlangalaleni kwiinyanga ezintathu kwaye le nyaniso ibonakaliswe kuphela ngoJuni 4, xa omnye wabaphandi abazimeleyo bezokhuseleko baqaphela oku kwaye bazisa umbhalisi malunga nale ngxaki.
I-SQL yokulahla i-SQL iqulethe iimpawu ze-"auth" eziqulethe i-password hashes zokutshintsha izinto ze-Maintainer kunye ne-IRT, kunye nolwazi oluthile lomthengi olunovakalelo olungaboniswa kwi-Whois ngexesha lemibuzo eqhelekileyo (ngokuqhelekileyo ulwazi olongezelelweyo loqhagamshelwano kunye namanqaku malunga nomsebenzisi) . Kwimeko yokubuyisela iphasiwedi, abahlaseli bakwazi ukutshintsha imixholo yamasimi kunye neeparitha zabanikazi beebhloko zeedilesi ze-IP kwi-Whois. Into yoMlondolozi ichaza umntu onoxanduva lokuguqula iqela leerekhodi ezidityaniswe ngophawu lwe "mnt-by", kwaye into ye-IRT iqulethe ulwazi loqhagamshelwano lwabalawuli abaphendula kwizaziso zengxaki. Ulwazi malunga ne-password hashing algorithm esetyenzisiweyo ayibonelelwanga, kodwa ngo-2017, i-MD5 ephelelwe lixesha kunye ne-CRYPT-PW i-algorithms (ii-password ze-8-character ezine-hashes ezisekelwe kwi-UNIX crypt function) zisetyenziselwa i-hashing.
Emva kokuchonga isiganeko, i-APNIC iqalise ukusetha kwakhona amagama ayimfihlo kwizinto kwi-Whois. Kwicala le-APNIC, akukho zibonakaliso zezenzo ezingekho mthethweni ezifunyenweyo, kodwa akukho ziqinisekiso zokuba idatha ayizange iwele ezandleni zabahlaseli, kuba akukho zilogi ezipheleleyo zokufikelela kwiifayile kwiGoogle Cloud. Njengoko emva kwesiganeko sangaphambili, i-APNIC ithembise ukwenza uphicotho-zincwadi kwaye yenza utshintsho kwiinkqubo zobuchwepheshe ukukhusela ukuvuza okufanayo kwikamva.
umthombo: opennet.ru