UVincent Canfield, umqondisi we-imeyili kanye nokusingatha umthengisi i-cock.li, uthole ukuthi yonke inethiwekhi yakhe ye-IP yengezwe ngokuzenzakalelayo kuhlu lwe-UCEPROTECT DNSBL ukuze kuthwetshulwe ichweba emishinini ebonakalayo engumakhelwane. I-subnet kaVincent ifakwe ohlwini Lwezinga lesi-3, lapho ukuvinjwa kwenziwa izinombolo zesistimu ezizimele futhi ihlanganisa wonke ama-subnets lapho izitholi zogaxekile zacushwa ngokuphindaphindiwe kanye namakheli ahlukene. Ngenxa yalokho, umhlinzeki we-M247 ukhubaze ukukhangisa kwelinye lamanethiwekhi akhe ku-BGP, ukumisa isevisi ngempumelelo.
Inkinga iwukuthi amaseva e-UCEPROTECT angamanga, azenza sengathi avulekile futhi azama ukurekhoda ukuthumela i-imeyili ngokwawo, afaka ngokuzenzakalelayo amakheli ohlwini lokuvimba ngokusekelwe kunoma yimuphi umsebenzi wenethiwekhi, ngaphandle kokuhlola ukusungulwa kokuxhumeka kwenethiwekhi. Indlela efanayo yokuvimba isetshenziswa iphrojekthi ye-Spamhaus.
Ukuze ungene ohlwini lokuvimbela, kwanele ukuthumela iphakethe elilodwa le-TCP SYN, elingasetshenziswa abahlaseli. Ikakhulukazi, njengoba ukuqinisekiswa okubili kokuxhumana kwe-TCP kungadingeki, kungenzeka ukusebenzisa i-spoofing ukuthumela iphakethe elibonisa ikheli le-IP elingelona iqiniso futhi uqale ukungena ohlwini lokuvimba lwanoma yimuphi umsingathi. Uma ulingisa umsebenzi ovela kumakheli amaningana, kungenzeka ukuthi kukhuphule ukuvinjwa ku-Level 2 kanye ne-Level 3, okwenza ukuvinjwa nge-subnetwork nezinombolo zesistimu ezizimele.
Uhlu Lwezinga lesi-3 lwadalelwa ukulwa nabahlinzeki abakhuthaza umsebenzi wamakhasimende abanonya futhi abangaphenduli ezikhalweni (ngokwesibonelo, ukusingatha amasayithi aklanyelwe ukusingatha okuqukethwe okungekho emthethweni noma ukusiza abathumela ogaxekile). Ezinsukwini ezimbalwa ezedlule, i-UCEPROTECT yashintsha imithetho yokungena ohlwini lwe-Level 2 kanye ne-Level 3, okuholele ekuhlungeni okunolaka kanye nokwanda kobukhulu bohlu. Isibonelo, inani labangenele ohlwini lwe-Level 3 likhule lisuka kuma-28 laya ku-843 izinhlelo ezizimele.
Ukumelana ne-UCEPROTECT, kwabekwa umbono wokuthi kusetshenziswe amakheli angcolile ngesikhathi sokuskena okubonisa ama-IPs avela ebangeni labaxhasi be-UCEPROTECT. Ngenxa yalokho, i-UCEPROTECT ifake amakheli abaxhasi bayo nabanye abantu abaningi abangenacala kuzinqolobane zayo zolwazi, okudale izinkinga ngokulethwa kwe-imeyili. Inethiwekhi ye-Sucuri CDN nayo ifakwe ohlwini lokuvimba.
Source: opennet.ru