Tichiri kubuda ropa kubva kumaronda Heartbleed akatisiya pasingasviki gore rapfuura uye yakavhurika sosi yepasi yakarohwa neimwe nyaya hombe yekuchengetedza: GHOST, gomba rekuchengetedza mune glibc Linux raibhurari. Ino nguva, zvakadaro, njodzi chaiyo yakadzikira… tinotsanangura nei pazasi.
Chii chinonzi GHOST?
Dambudziko reGHOST, iro rakaziviswa svondo rapfuura nevanoongorora nezvekuchengetedza kuQualys, rinogara mune gethostbyname mabasa eribhurari raibhurari. Kune avo vasingazive, glibc ndiro zita rinozivikanwa nemaraibhurari eGNU C, ayo mazhinji maLinux masisitimu uye mazhinji emahara software zvirongwa zvakanyorwa. Kunyanya, iyo gethostbyname mabasa anoshandiswa kugadzirisa madomeini mazita kune IP kero, uye anoshandiswa zvakanyanya mune yakavhurwa sosi application
Vanorwisa vanogona kushandisa GHOST gomba rekuchengetedza kuti vagadzire kuyeuka kwendangariro, zvichiita kuti zvikwanise kumhanya chero mhando yekodhi yakaipa uye kuita mhando dzese dzezvinhu zvakashata.
Zvese zviri pamusoro zvinoratidza kuti GHOST inhau dzakaipa chaizvo kune vanoda mahara software. Neraki, njodzi chaiyo inoita kunge isiri iyo huru. Zviripachena kuti bhagi rakagadziriswa muna Chivabvu 2013, zvinoreva kuti chero Linux server kana PC ine yazvino vhezheni yesoftware yakachengeteka kubva pakurwiswa.
Uye zvakare, iyo gethostbyname mabasa akatsiviwa neatsva ayo anogona nani kubata zvazvino netiweki nharaunda, sezvo ivo vachisanganisira rutsigiro rwe IPv6, pakati pezvimwe zvinhu zvitsva. Nekuda kweizvozvo, mashandisiro matsva kazhinji haachashandise iyo gethostbyname mabasa uye haasi panjodzi.
Uye pamwe zvakanyanya kukosha, parizvino hapana nzira inozivikanwa yekuita GHOST kurwisa pamusoro pewebhu. Izvi zvinoderedza zvakanyanya mikana yekushandisa njodzi iyi kuba data kubva kune vashandisi vasingafungire kana kukanganisa zvakanyanya.
Pakupedzisira, zvinoita sekunge GHOST haina kunyanya kukuvadza senge Kushungurudzika o Shellshock, maburi ekuchengetedza ekupedzisira ayo vakakanganisa zvakanyanya software yemahara kazhinji uye Linux kunyanya.
Unoziva sei kuti GHOST inogona kukukanganisa iwe?
Nyore, iwe unongofanirwa kuvhura terminal uye kuisa unotevera kuraira:
ldd - shanduko
Inofanira kudzosa chimwe chinhu chakafanana neichi:
ldd (Ubuntu GLIBC 2.19-10ubuntu2) 2.19 Copyright (C) 2014 Free Software Foundation, Inc. Iyi isoftware yemahara; ona sosi yekuteedzera mamiriro. HAPANA garandi; kwete kunyangwe MERCHANTABILITY kana FITNESS YENYAYA DZIMWE CHINANGWA. Yakanyorwa naRoland McGrath naUlrich Drepper.
Kuti ive yakachengeteka, iyo glibc vhezheni inofanira kunge iri pamusoro kupfuura 2.17. Mumuenzaniso, 2.19 yakaiswa. Kana iwe uchiri kushandisa yekare vhezheni, iwe unongoda kumhanyisa inotevera mirairo (kana iwo akaenzana mukugovera kwako):
sudo apt-tora sudo apt-tora kure-kusimudzira
Mushure mekumisikidza zvakakosha kutangidza iyo PC nemirairo inotevera:
sudo reboot
Chekupedzisira, iwe unofanirwa kumhanya ldd imwezve nguva yekutarisa vhezheni yegblic.
Ini ndakachinja kubva windows kuenda kuLinux ... nekuti vakati Linux yakanga yakachengeteka, asi chokwadi chakasiyana, hutachiona mushure mehutachiona hwavanoona muLinux, senge (rootkit, bash kushaya mukana uye GHOST), zvakaipisisa zvese .... iyi Ghost virus yavanoti iyo yakaunzwa kubvira 2003. Nhema yakareba sei?
Hapana Inoshanda Sisitimu yakachengeteka zvachose, asi kana ndikakwanisa kukuvimbisa chimwe chinhu ndechekuti Linux yakachengeteka zvakanyanya kupfuura Windows. Zvino ini ndinokubvunza kuti vanhu vangani vakanyatso kubatwa neiyi inonzi mweya? Kungoti zvaive zviripo sezvo ma dinosaurs hazvireve kuti zvakashandiswa kubvira.
Ini ndinogona kukuvimbisa iwe kuti dambudziko rekuchengetedza haisi iyo inoshanda system, asi iyo iri kuseri kwekhibhodi
Chii chinonzi system icho chinoda antivirus, windows. Hapanazve kutaura.
PS: Tsvaga antivirus yemawindows mugoogle, uye pane zvatova nemhedzisiro yezvirongwa zvekunyepedzera zvinoisa kushambadza, Trojans kana imwe malware inoratidzika seye creavirus (ndine hurombo, antivirus).
Reply with quote
Ini ndinogona kutaura kuti ini ndinobhadhara nyaya yedoro kumunhu wega wega anondiratidza humbowo hwekuti vakabatwa nehutachiona kana malware muLinux ... uye zvirinani chokwadi, zvakanyanya zvandaizobhadhara 2 kana 3 zvakanyanya 😉
Iwe unogunun'una chete nezve matatu kana mana makuru mavairasi muLinux? Kune mavhairasi eWindows anobuda nguva dzese sezvo kusagadzikana kuri kwakanyanya mumasisitimu erudzi urwu. Linux yakachengeteka kwazvo asi haisi iyo OS yakachengeteka kwazvo pasirese, asi yakachengeteka uye yakawanda kupfuura Windows.
MuchiShona VANOTI IZVI:
Kunetseka kunogona kubvumidza kutonga kweLinux, iko kukanganisa kwekuchengetedza kunogona kushandiswa nekushandisa basa gethostbyname glibc, rinoshandiswa mune angangoita ese maLinux makomputa akabatanidzwa, kana node iri kudaidza imwe ichishandisa iyo faira / etc / mauto kana kushandisa DNS. Zvese zvaunoda kuti uite anorwisa ari kukonzera buffer kufashukira uchishandisa risiri zita zita pane iyo DNS inomiririra sevhisi. Izvi zvinoita kuti anorwisa anogona kushandisa iyo system kuburikidza nemushandisi anomhanya iyo DNS server, asingazive ako matsamba.
Chii chiri kurova nezve kushushikana uku, uko kwakaziviswa pachena mazuva ekupedzisira, ini ndaingove mu glibc kubvira 2000 uye haina kugadziriswa kusvika 2013.
Kushushikana kwakagadziriswa kare kare, mu2012 pakaburitswa Glibc 2.17, zvakaitika ndezvekuti maLTS vhezheni yeLinux OS mazhinji haana kusanganisira chigamba chinoenderana cheshanduro pamberi peGlibc 2.17, ndizvo zvakaitika.
Chekutanga, hapana ari kutaura nezve hutachiona, ivo vari kutaura nezve kushomeka, chimwe chinhu chakasiyana kwazvo.
Chechipiri, kuti iwe unoshandisa FreeBSD (kana usiri kushandisa imwe mod yeMushandisi Agent), haina kukuchengetedza kubva parudzi urwu rwematambudziko, FreeBSD zvakare ine kusagadzikana kwechinyakare seichi.
http://www.securitybydefault.com/2011/12/exploit-para-vulnerabilidad-de.html
Usakanganwa OpenBSD.
Iyi haisi hutachiona!
Asi chakakosha chinhu ndechekuti kuchengetedzeka kunonzwa!
Paunonzwisisa kuti zvese zvinobva zvajeka
Zvekuti iwe uzive zvimwe zvakaitika ini ndinokuudza kuti hanzvadzi yangu yaive netbook iyo mushure mekumisikidzwa kweXP mbiri akandikumbira kuti ndishandure kuLinux uye kudzamara Hardware yake yaparara anga asisina mamwe matambudziko. Zvimwe chete kumba kwavamwene vangu, makore matatu asina matambudziko uye pandakaisa Windows mune imwe chikamu chemitambo yevatezvara vangu vadiki, hapana kana mwedzi wakapfuura isina malware ichitora rauta yake. Uye ivo vangori mienzaniso miviri.
Mumba mangu zvakafanana, hapana munhu anoda kudzoka aine mahwindo
Kunyangwe OpenBSD ine hushoma husina kugadziriswa, uye kuti iwedzere pamusoro, GHOST iri njodzi, kwete hutachiona pachahwo. Kunetsekana nezve kana uine Shellshock kana Heartbleed.
Uye nenzira, ndiri kuitei mumurazvo uyu?
Verenga izvi uye utaure:
http://www.taringa.net/posts/linux/18068456/Virus-en-GNU-Linux-Realidad-o-mito.html
HAHAHAHAHA pachokwadi chinyorwa chekutanga ndechedu: https://blog.desdelinux.net/virus-en-gnulinux-realidad-o-mito/
Hahaha, handina kana kurangarira hehehe.