Ubuthathaka buchongiwe kwizixhobo zeNetgear ezikuvumela ukuba wenze ikhowudi yakho ngamalungelo eengcambu ngaphandle koqinisekiso ngokusebenzisa ubuqhophololo kuthungelwano lwangaphandle kwicala lojongano lweWAN. Ubuthathaka buqinisekisiwe kwi-R6900P, i-R7000P, i-R7960P kunye ne-R8000P iirotha ezingenazintambo, kunye nakwi-MR60 kunye ne-MS60 ye-mesh network device. I-Netgear sele ikhuphe uhlaziyo lwe-firmware olulungisa ukuba sesichengeni.
Ukuba sesichengeni kubangelwa kukuphuphuma kwemfumba kwinkqubo yangasemva aws_json (/tmp/media/nand/router-analytics/aws_json) xa kusahlulwa idatha kwifomathi ye-JSON efunyenwe emva kokuthumela isicelo kwinkonzo yewebhu yangaphandle (https://devicelocation. ngxcld.com/device -location/resolve) esetyenziselwa ukujonga indawo yesixhobo. Ukwenza uhlaselo, kufuneka ubeke ifayile eyilwe ngokukodwa kwifomati ye-JSON kwi-server yakho yewebhu kwaye unyanzele i-router ukuba ilayishe le fayile, umzekelo, ngokusebenzisa i-DNS spoofing okanye i-redirecting isicelo kwi-node yokuthutha (udinga ukukhawulela isicelo kwinginginya devicelocation.ngxcld.com eyenziwe xa isixhobo siqala ). Isicelo sithunyelwa ngaphaya kwe-HTTPS protocol, kodwa ngaphandle kokujonga ukuqinisekiswa kwesatifikethi (xa ukhuphela, sebenzisa i-curl utility kunye no "-k" ukhetho).
Kwicala elisebenzayo, ukuba sesichengeni kungasetyenziselwa ukubeka esichengeni isixhobo, umzekelo, ngokufaka i-backdoor yolawulo olulandelayo kuthungelwano lwangaphakathi lweshishini. Ukuhlasela, kuyimfuneko ukufumana ukufikelela kwexesha elifutshane kwi-router ye-Netgear okanye kwintambo yenethiwekhi / izixhobo kwicala le-WAN interface (umzekelo, uhlaselo lunokwenziwa yi-ISP okanye umhlaseli ofumene ukufikelela ikhaka lonxibelelwano). Njengomboniso, abaphandi baye balungiselela isixhobo sokuhlaselwa kweprototype esekelwe kwibhodi yeRaspberry Pi, evumela ukuba umntu afumane igobolondo yeengcambu xa edibanisa i-WAN interface ye-router esengozini kwi-port ye-Ethernet yebhodi.
umthombo: opennet.ru