Samy kamkar (mutsvakurudzi anozivikanwa wekuchengetedza anozivikanwa nekugadzira akasiyana siyana akaomarara ekurwisa zvishandiso, senge keylogger pane USB foni charger yakaunza nzira nyowani yekurwisa inonzi "NAT kutsvedza".
Kurwisa inobvumira, kana uchivhura peji mubrowser, kumisikidza kubatana kubva kune anorwisa server kune chero UDP kana TCP chiteshi pane yemushandisi system iri kuseri kwemuturikiri wekero. Iyo Yekurwisa Toolkit yakaburitswa paGitHub.
Nzira yacho inovimba nekunyengedza iyo ALG yekubatanidza nzira yekuteedzera (Application Level Levelways) mune kero vashanduri kana firewalls, iyo inoshandiswa kuronga iyo NAT kuendesa mberi kwemaprotocol ayo anoshandisa akawanda network network (imwe yedata uye imwe yekutonga), senge SIP. H323, IRC DCC uye FTP.
Kurwiswa kunoshanda kune vashandisi vanobatana netiweki kushandisa kero dzemukati kubva kune iyo intranet renji (192.168.xx, 10.xxx) uye inobvumira chero data kuti riendeswe kune chero chiteshi (hapana misoro yeHTTP).
Kuita kurwisa, zvakaringana kune akabatwa kuti aite iyo JavaScript kodhi yakagadzirirwa neanorwisaSemuenzaniso, nekuvhura peji pane iyo yekurwisa webhusaiti kana kutarisa yakashata inoshambadza pane yepamutemo webhusaiti.
Muchikamu chekutanga, anorwisa anowana ruzivo nezve kero yemukati yemushandisi, Izvi zvinogona kutariswa neWebRTC kana, kana WebRTC yakaremara, nekurwiswa nechisimba nekupindura nguva yekuyera kana uchikumbira mufananidzo wakavanzika (kune varipo variko, kuyedza kukumbira mufananidzo kunokurumidza kupfuura kune vasipo nekuda kwekuzorora usati wadzoka TCP RST mhinduro).
Muchikamu chechipiri, iyo JavaScript kodhi akaurayiwa mubrowser yemunhu wacho inogadzira yakakura HTTP POST chikumbiro (iyo isingakwani mupaketi) kune iro rinorwisa server richishandisa isiri-yakajairwa network network port kuti itange kugadziridza kweTCP kupatsanurwa kwematanho uye saizi yeMTU pane yemunhu akabatwa TCP stack.
Mukupindura, iro rinorwisa rinodzorera TCP paketi nesarudzo yeMSS (Maximum chidimbu saizi), iyo inosarudza hukuru hukuru hwepaketi inogamuchirwa. Panyaya yeUDP, iko kukanganisa kwakafanana, asi kunovimba nekutumira hombe WebRTC TURN chikumbiro chekukonzera IP-chikamu kupatsanurwa.
«NAT Slipstreaming inoshandisa browser yemushandisi pamwe chete neApplication Level Gateway (ALG) yekubatanidza nzira yekutsvagisa yakavakirwa muNAT, ma routers, uye firewalls nekusunga ngetani mukati IP kuburitsa kuburikidza nekurwiswa kwenguva kana WebRTC, kupatsanurwa kuwanikwa kwe automated kure IP uye MTU, TCP packet size massaging, misuse of TURN authentication, chaiyo control of packet limited and protocol protocol confusion from browser abuse, "akadaro Kamkar mune ongororo.
Pfungwa huru ndeiyi izvo, uchiziva iyo yekuparadzaniswa parameter, inogona tumira chikumbiro chakakura cheHTTP, mutsara uyo unowira papakeji repiri. Panguva imwecheteyo, mutsara unopinda mupakeji repiri unosarudzwa kuitira kuti urege kuve nemusoro weHTTP uye unodimburwa pane dhata rinoenderana zvachose neimwe protocol inotsigirwa neNAT.
Muchikamu chechitatu, uchishandisa iko pamusoro apa, kodhi yeJavaScript inogadzira uye inotumira chikumbiro chakasarudzwa cheHTTP (kana TURN yeUDP) kuchiteshi cheTCP 5060 chesevha yemurwisi, iyo, mushure mekuparadzaniswa, ichakamurwa kuita mapaketi maviri: a packet ine misoro yeHTTP uye chikamu cheiyo data uye inoshanda SIP packet ine IP yemukati yemunhu akabatwa.
Iyo sisitimu yekutevera kubatana pane network network tichafunga nezvepaketi iyi sekutanga kwechikamu cheSIP uye inobvumidza kutakura kwepaketi kune chero chiteshi chakasarudzwa neanorwisa, tichifungidzira kuti chiteshi ichi chinoshandiswa kufambisa data.
Kurwiswa kunogona kuitwa zvisinei nekuti bhurawuza rakashandiswa. Kugadzirisa dambudziko, vagadziri veMozilla vakakurudzira kuvhara kugona kutumira zvikumbiro zveHTTP kunetiweki ports 5060 uye 5061 inoenderana neSIP protocol.
Vagadziri veinjini dzeChromium, Blink uye WebKit vanorongawo kuita chiyero chakafanana chekudzivirira.
mabviro: https://samy.pl