Guys Good kanye Guys Bad Ukusebenzisa Le Mzila Ukuvula Amaports
Ngokufanele ufuna ukukhawulela nokulawula ithrekhi evunyelwe kwinethiwekhi yakho noma ikhompyutha. Lokhu kungenziwa ngezindlela ezihlukahlukene. Izindlela ezimbili eziyinhloko kufanele uqinisekise ukuthi amathrekhi angadingekile kwikhompyutha yakho avulekile noma alalele ukuxhuma futhi asebenzise i-firewall-noma ekhompyutheni uqobo noma enkundleni yenethiwekhi-ukuvimbela ithrafikhi engagunyaziwe.
Ngokuqapha ithrafikhi nokuphatha imithetho ye-firewall esekelwe ezenzakalweni ukuthi kungenzeka ukuthi udale uhlobo "lokungqongqoza ngasese" oluzovula isango bese likuvumela ukuthi uphume umlilo. Ngisho noma kungabikho amachweba angase avuleke ngaleso sikhathi, uchungechunge oluthile lokuzama ukuxhuma emachwebeni avaliwe lunganikeza i-trigger ukuvula ichweba lokuxhumana.
Ngokweqile, uzobe nenkonzo esebenzayo kudivayisi ehlosiwe eyobukela umsebenzi wenethiwekhi-ngokujwayelekile ngokuqapha izingodo zomlilo . Insizakalo izodinga ukwazi ukuthi "ukugoqa okuyimfihlo" - isibonelo kuhlulekile imizamo yokuxhumeka ekukhoneni i-port, 103, 102, 108, 102, 105. Uma ngabe isevisi ihlangabezane "nokukhonsa ngasese" ngokulandelana okulungile kuyobe ishintshe ngokuzenzakalelayo imithetho ye-firewall ukuvula ichweba elikhethiwe ukuvumela ukufinyelela okude.
Ngabelomanga abalobi be-malware bezwe baye (noma ngenhlanhla-uzobona ukuthi kungani ngomzuzu) baqala ukwamukela le nqubo yokuvula ama-backdoors kumasistimu ahlukunyeziwe. Ngokuyinhloko, kunokuvula amachweba okuxhuma okukude okubonakala kalula futhi okubonakalayo, i-Trojan itshalwe yilapho ibheka ithrekhi yenethiwekhi. Uma ngabe "imfihlo ingqongqoza" inqatshelwe ukuthi i-malware izovusa iphinde ivule i-portdoor yangaphambili esinqunyiwe, evumela ukuthi umhlaseli angene ohlelweni.
Ngathi ngenhla ukuthi lokhu kungaba yinto enhle ngempela. Yebo, ukutheleleka nge-malware kwanoma yiluphi uhlobo akuyona into enhle. Kodwa-ke njengoba sekukhona manje igciwane noma imbungu iqala ukuvula amachweba futhi lezo zinombolo ze-port ziba ulwazi lomphakathi amasistimu anegciwane avulekele ukuhlaselwa yinoma ubani-hhayi nje umlobi we-malware owavula i-backdoor. Lokhu kukhulisa kakhulu ukungathinteka kwegciwane lesandulela ngculazi noma i-worm efaka imali emagcekeni avulekile awenziwe yi-malware yokuqala.
Ngokudala i-backdoor engenalutho efuna ukuthi "imfihlo ingqongqoze" ukuyivula umlobi we-malware igcina imfihlo yangasese. Futhi, lokho kuhle futhi kubi. Kuhle ngoba wonke ama-Tom, uDick noHarry abashaya ama-wannabe ngeke abe ngaphandle kokuskena kwe-port ukuze bathole izinhlelo ezisengozini ngokusekelwe echwebeni evuliwe i-malware. Kulungile ngoba uma ihlezi ngeke ukwazi ukuthi ikhona noma yikuphi kungase kungabi nhlobo indlela elula yokukhomba ukuthi une-backdoor ehlelekile kusistimu yakho elinde ukuvuswa yi-port.
Le nkohliso ingasetshenziswa futhi abantu abahle njengoba kuboniswe encwadini ye-Crypto-Gram yakamuva evela kuBruce Schneier. Ngokuyinhloko umlawuli angakwazi ukuvala phansi uhlelo ngokuphelele-angavumeli ithrafikhi yangaphandle- kodwa asebenzise uhlelo lokukhwabanisa. Ukusebenzisa "imfihlo yokushaya" umqondisi uzobe esekwazi ukuvula ichweba uma kudingekile ukusetha uxhumano olukude.
Kusobala ukuthi kubalulekile ukuthi kugcinwe imfihlo yekhodi "yokubamba ngasese". Ngokuyinhloko, "ukugoqa ngasese" kuzoba "iphasiwedi" yezinhlobo ezingavumela ukufinyelela okungavinjelwe kunoma ubani owaziyo.
Kunezindlela eziningi zokusetha i-port ekhwehlelayo nokuqinisekisa ubuqotho be-scheme yokugubha ichweba- kodwa kusekhona inzuzo nokuziqhenya ekusetshenziseni ichweba ukushaya ithuluzi lokuphepha kwinethiwekhi yakho. Ukuze uthole imininingwane eminingi bheka ukuthi kanjani: Ukuthungwa kwe-Port ku-LinuxJournal.com noma ezinye izixhumanisi ngakwesokunene salesi sihloko.
Inothi lomhleli: Lesi sihloko singumlando wefa futhi savuselelwa ngu-Andy O'Donnell ngomhla ka-8/28/2014.