Izibuyekezo zokulungisa amagatsha azinzile weseva ye-BIND DNS 9.11.18 kanye ne-9.16.2, kanye negatsha lokuhlola elingu-9.17.1, elisathuthukiswayo. Kokukhishwayo okusha inkinga yokuphepha ehlobene nokuzivikela okungasebenzi kahle ekuhlaselweni "Β» lapho usebenza ngemodi yezicelo zokudlulisa iseva ye-DNS (ibhulokhi "yabadluliseli" kuzilungiselelo). Ngaphezu kwalokho, kwenziwe umsebenzi wokunciphisa usayizi wezibalo zesiginesha zedijithali ezigcinwe enkumbulweni ye-DNSSEC - inani lokhiye abalandelelwe lehlisiwe laba ku-4 endaweni ngayinye, okwanele ku-99% wamacala.
Indlela "yokubuyisela kabusha i-DNS" ivumela, uma umsebenzisi evula ikhasi elithile kusiphequluli, ukusungula uxhumano lwe-WebSocket kusevisi yenethiwekhi kunethiwekhi yangaphakathi engafinyeleleki ngokuqondile nge-inthanethi. Ukuze udlule isivikelo esisetshenziswa kuziphequluli ngokumelene nokudlula ububanzi besizinda samanje (imvelaphi ehlukene), shintsha igama lomsingathi ku-DNS. Iseva ye-DNS yomhlaseli ilungiselelwe ukuthumela amakheli e-IP amabili ngalinye ngalinye: isicelo sokuqala sithumela i-IP yangempela yeseva nekhasi, futhi izicelo ezilandelayo zibuyisela ikheli langaphakathi ledivayisi (isibonelo, 192.168.10.1).
Isikhathi sokuphila (i-TTL) sempendulo yokuqala sisethelwe kunani elincane, ngakho-ke lapho uvula ikhasi, isiphequluli sinquma i-IP yangempela yeseva yomhlaseli futhi silayisha okuqukethwe kwekhasi. Ikhasi lisebenzisa ikhodi ye-JavaScript elinda ukuthi i-TTL iphelelwe yisikhathi futhi ithumele isicelo sesibili, manje esikhomba umsingathi njengo-192.168.10.1. Lokhu kuvumela i-JavaScript ukuthi ifinyelele isevisi ngaphakathi kwenethiwekhi yendawo, yeqe umkhawulo wemvelaphi ehlukene. ngokumelene nokuhlaselwa okunjalo ku-BIND kusekelwe ekuvimbeni amaseva angaphandle ekubuyiseleni amakheli e-IP enethiwekhi yamanje yangaphakathi noma iziteketiso ze-CNAME zezizinda zasendaweni kusetshenziswa izilungiselelo zokuphika-impendulo-neziteketiso zokuphika-impendulo.
Source: opennet.ru