Kuyini ukuskena kwe-port? Kufana nesela ehamba endaweni yakho futhi uhlola yonke indlu nomnyango endlini ngayinye ukuze ubone ukuthi yiziphi ezivulekile nokuthi yiziphi ezivaliwe.
I-TCP ( Transmission Control Protocol ) kanye ne- UDP (I-User Datagram Protocol) yizinkampani ezimbili ezakha i-suite ye-protocol yama- TCP / IP esetshenziselwa yonke indawo ukuxhumana kwi-Intanethi. Ngayinye yalezi zichweba ezi-0 kuya ku-65535 zitholakalayo ngakho-ke zikhona ezingaphezu kuka-65,000 iminyango yokukhiya.
Izindawo zokuqala ezingu-1024 ze-TCP zibizwa ngokuthi amachweba awaziwa kahle futhi zihlobene nezinsizakalo ezijwayelekile ezifana ne-FTP, HTTP, SMTP noma i- DNS . Amanye amakheli angaphezulu kuka-1023 nawo anezinsizakalo ezihlobene ngokujwayelekile, kodwa iningi lala machwethi alihlotshaniswa nanoma iyiphi isevisi futhi iyatholakala kuhlelo noma uhlelo lokusebenza oluzosetshenziswa ukuxhumana nabo.
Indlela Ukukhishwa Kwe-Port Kusebenza Kanjani
Isofthiwe yokuskena kwe-Port, esimweni sayo esisisekelo kunazo zonke, ivele ithumele isicelo sokuxhuma kwikhompyutha ehlosiwe kwi-port ngayinye ngokulandelana futhi yenza inothi ukuthi iziphi izikebhe ziphendule noma zibonakala zivulekile ukuhlolwa okujulile okubanzi.
Uma ukuskena kwe-port kwenziwa ngenhloso enonya, umqashi ngokuvamile wayekhetha ukuhamba angatholakali. Izinhlelo zokuphepha kwenethiwekhi zingalungiswa ukuze zixwayise abaqondisi uma zibona izicelo zokuxhumeka kulo lonke ububanzi bezingxenyeni ezivela kumuntu oyedwa. Ukuze uzungeze lokhu umgibeli angenza ukukhishwa kwechweba kumodi yesimo se-strobe noma se-stealth. Ukushaya imingcele kunqamule amabhuloho kunomgomo omncane okhethiwe kunokuba kukhishwe ingubo yokuqoqa zonke izikebhe ezingu-65536. Ukuskena kwe-Stealth kusebenzisa amasu afana nokunciphisa ukuskena. Ngokuskena amachweba isikhathi eside kakhulu kunciphisa ithuba lokuthi leli cala lizoqala ukuxwayisa.
Ngokubeka ama- flags ahlukene we-TCP noma ukuthumela izinhlobo ezahlukene zamaPhakethe we-TCP ukukhishwa kwe-port kungenza imiphumela ehlukile noma ukuthola amarekhodi avulekile ngezindlela ezahlukene. Ukuskena kwe-SYN kuzotshela isithwebuli se- port okuyinto amachweba alalela futhi angenci kuye uhlobo lokuphendula olwenziwe. Ukuskena kwe-FIN kuzokhipha impendulo evela emachwebeni avaliwe- kodwa amaphethelo avulekile futhi alalele ngeke athumele impendulo, ngakho-ke isithwebuli se-port sizokwazi ukuthola ukuthi yiziphi izibuko ezivulekile futhi ezingekho.
Kunezinhlobo ezahlukene zezindlela zokwenza izilinganiso zangempela zokudoba kanye namacebo wokufihla umthombo weqiniso wokuskena kwe-port. Ungafunda kabanzi mayelana nokunye kwalokhu ngokuvakashela lawa mawebhusayithi: Ukuskena kwe-Port noma I-Network Probes echazwe.
Indlela Yokuqapha I-Port Scans
Kungenzeka ukuqapha inethiwekhi yakho ye-port scans. Ubuqili, njengezinto eziningi zokuphepha kolwazi , ukuthola ukuthola ibhalansi elungile phakathi kokusebenza kwenethiwekhi nokuphepha kwenethiwekhi. Ungakwazi ukuqapha ukuhlola kwe-SYN ngokungena noma yikuphi ukuzama ukuthumela iphakethe le-SYN esangweni elingavulwa noma elalele. Kodwa-ke, kunokuxwayiswa njalo lapho kwenziwa umzamo owodwa- futhi mhlawumbe ukuvuswa phakathi nobusuku ngephutha elingenacala elingenacala-kufanele uthathe isinqumo kumibundu ukuze uqale uqaphile. Isibonelo, ungase uthi uma kunezinyathelo ezingaphezu kuka-10 zePMP ezamachwebeni angewona okulalela eminithini enikeziwe ukuthi isaziso kufanele senziwe. Ungadala izihlungi nezicupho ukuze ubone izindlela ezihlukahlukene zokubuka ama-port- ukubukela i-spike kumaPETethi we-FIN noma inombolo ephazamisayo yokuzama ukuxhuma emachwebeni ahlukahlukene kanye / noma amakheli e- IP kusuka kumthombo owodwa we-IP.
Ukusiza ukuqinisekisa ukuthi inethiwekhi yakho ivikelwe futhi ivikelekile ungase ufise ukwenza izilinganiso zakho zokudoba. I- MAJOR caveat lapha ukuqinisekisa ukuthi unemvume yamandla angaphambi kokuqala kulo msebenzi ukuze ungazitholi ohlangothini olubi lomthetho. Ukuze uthole imiphumela enembile kungase kube ngcono ukwenza isithwebuli se-port kusuka endaweni eyikude usebenzisa imishini engeyona inkampani kanye ne- ISP ehlukile . Ukusebenzisa isofthiwe efana ne-NMap ungakwazi ukuskena uhla lwamakheli we- IP namaphakheji bese uthola ukuthi umhlaseli uzobona yini uma bekwazi ukuhlola inethiwekhi yakho. I-NMap, ikakhulukazi, ikuvumela ukuba ulawule cishe zonke izici zokuskena bese wenza izinhlobo ezihlukahlukene zokuhlola kwe-port ukuze uvumelane nezidingo zakho.
Uma uthola ukuthi yiziphi izindawo ezithinta amachweba njengoba zivuliwe yi-port ukuskena inethiwekhi yakho ungaqala ukusebenza ekunqumeni ukuthi empeleni kudingekile ukuthi lezo zichweba zifinyeleleke ngaphandle kwenethiwekhi yakho. Uma kungadingeki kufanele uvale phansi noma uvimbele. Uma kudingekile, ungaqala ukucwaninga ukuthi yiziphi izinhlobo zokukhubazeka nokuxhaphaza inethiwekhi yakho evulekile ukuba lezi zichweba zifinyeleleke futhi zisebenze ukusebenzisa ama-patches afanele noma ukunciphisa ukuvikela inethiwekhi yakho ngangokunokwenzeka.