Domain Fronting waxa loo isticmaali karaa sidii qalab si looga gudbo faafreebka ISP^(ISPs) -yada iyo dawladaha. Domain Fronting sidoo kale waxa isticmaali kara haakarisku si ay xogta ay kaa rabaan uga helaan. Waa maxay domain horudhac? Maqaalkani waxa uu si kooban u sharaxaya hor-u-socodka domain oo kuu ogolaanaya inaad go'aansato inay fiican tahay ama xun tahay adiga oo sharxaya faa'iidada iyo khatarta labadaba.

Domain Fronting ayaa sharaxay

Domain ka hor, marka la soo koobo, waxa ay bedeshaa halka loo socdo isku xirka intarneedka dhexda iyada oo la isticmaalayo sireed. Haddii aad rabto inaad baadho degel xaddidan, waxaad isticmaali kartaa mid ka mid ah hababka soo socda si aad u gaadho:

1. Wakiil
2. VPN
3. TOR
4. Domain Fronting

Dhibaatadu waxay tahay in dawlado badani ay mamnuucaan ama xaddidaan VPN iyo TOR taraafikada shabakadaha ISP ee kala duwan . ISPs^(ISP) waxay amarro gaar ah ka haystaan ​​dawladahan oo kale si ay u mamnuucaan hal ama in ka badan degel kasta oo nooc kasta ah. Horaantii, sideed ilaa toban sano ka hor, waxaan si sahlan u isticmaali karnaa wakiil oo aan gaadhno mareegaha xaddidan. Tignoolajiyada^(Technology) ayaa is beddeshay, oo hadda way fududahay sidii hore in la ogaado taraafikada isticmaalaya wakiil. Ma aha oo kaliya, laakiin TOR ( The basasha Router^{(The Onion Router)} ) sidoo kale waa la dildilaacsan karaa hadda iyadoo la isticmaalayo qaar ka mid ah farsamooyinka darajada militariga. Labadaas ma aha habab aad u macquul ah oo lagu galo mareegaha xaddidan.

Markaa, waxaa nooga tagay VPN iyo Domain Fronting . Marka la isku dayo in faafreeb lagu sameeyo oo isha lagu hayo waxa ay muwaadiniinteeda sameynayaan, dalal badan ayaa sidoo kale mamnuucaya/ xaddidaya VPN^(VPNs) -yada . Ma rabaan taraafikada sir si ay u ogaadaan waxa socda. ISP^(ISPs) - yadu kama mucaaradi karaan dawladda waddan kasta oo xaddidaya ama mamnuucaya VPN . Waa inay waajib ku tahay.

Habka ugu dambeeya ee lagu galo degel xaddidan waa in la dalbado hor-u-yeelista domainka. Adiga, isticmaale ahaan, ma codsan kartid hor-istaagga domain in kastoo. Waa inaad isticmaashaa app ka shaqeeya horeynta domainka. Mid ka mid ah app-ka noocaas ah waa Telegram - app-ka wada sheekeysiga ee uu mamnuucay Ruushka^(Russia) iyo dalal kale oo badan.

Barnaamijyadani waxay leeyihiin algorithms-ku-dhisan oo u oggolaanaya isticmaaleyaasha inay galaan mareegaha xaddidan ama mareegaha laga mamnuucay waddankaas uu isticmaaluhu ku yaal. Tan waxaa lagu sameeyaa iyadoo la beddelo koodka madaxa ee mareegaha martida loo yahay. Kormeerayaasha, waxay guud ahaan tusinaysaa inay ku xidhmayso degel aan waxba galabsan, malaha la'aanteed sidoo kale HTTPS . Badhtamaha is-gacan-qaadka u dhexeeya mareegaha iyo abka, appku marka hore wuxuu dejiyaa xidhiidh sir ah (wuxuu noqon karaa mid fudud sida HTTPS ) ka dibna wuxuu u wareegayaa dariiqa degel kale. Mareegtaasi waxay noqon kartaa degel la mamnuucay ama xaddidan.

Haddaba, waxaa suurtogal ah in la khiyaameeyo kormeerayaasha ISP iyo heer dawladeed si loola xidhiidho degel xaddidan halka booliiska internetku^(Internet) u malaynayo inaad ku xidhan tahay mareegta kale mar kasta oo aad la xidhiidhaysay mareegta la mamnuucay.

Domain Fronting waxaa loo isticmaali karaa in lagu hareermaro nooc kasta oo faafreeb ah. Taasi waa qaybta wanaagsan. Qaybta xigta waxay ka hadlaysaa khataraha hor-istaagga domainka.

Khatarta Domain Fronting

Iyadoo horudhaca domainka loo adeegsanayo si loogu ogolaado isticmaalayaasha inay galaan shabakadaha iyo adeegyada xaddidan, waxaa jirta fursad wanaagsan in jabsadayaashu ay adeegsadaan farsamo la mid ah si ay u marin habaabiyaan isticmaalayaasha oo ay u soo saaraan xogta ay rabaan.

Labada magac domain iyo degelka xaddidan (ama degel cudurka qaba, haddii ay dhacdo haakarisku) ayaa lagu martigeliyay isku mid oo server ah. Marka mid isku dayo inuu ku xidho domain-ka magac-u-yaal, madaxeedu wuxuu soo dirayaa codsi GET kale kaas oo siinaya ciwaanka mareegaha xaddidan. Hadda, kani waxa uu noqon karaa shabakad dawladeed oo si fudud u xaddidan ama kombuyuutar ay bukoodi jabsadeen.

Iyada oo ku xidhan cidda isticmaalaysa hore ee domain, waa faa'iido iyo khatar labadaba. Iyadoo inta badan, barnaamijyada fariimaha gaarka ah ay isticmaalayaan farsamada, Google iyo Amazon labaduba waxay tuureen Telegram iyagoo sheegay inay ka soo horjeedaan Shuruudaha iyo Shuruudaha^(Conditions) . Waqtigan xaadirka ah^(Currently) , Telegram waxay raadineysaa adeeg kale oo daruur ah oo iyaga siin doona awoodda hor-istaagga domainka.

Waxaa jira kiisas kale oo dhowr ah oo isticmaalka horeynta domainka uu ahaa mid dhab ah - si loo oggolaado hadalka xorta ah. Laakiin waxay u muuqataa in dawladaha adduunku ay xidhay dhammaan waddooyinka loo maro xorriyadda hadalka. Isla neefta, waxaan dhihi karnaa domain horeynta waxay leedahay khataraheeda sababtoo ah haddii ay bedeli karto meesha loo socdo, waxay kuu horseedi kartaa goobo been abuur ah, oo aadan weligaa ogaan doonin.

Hadda akhri^{(Now read)} : Waa maxay Weerarka Qabow^{(Cold Boot Attack)} ?

Domain Fronting explained along with Dangers and

Domain Fronting can be used as a tool to bypass censorship by ISPs and governments. Domain Fronting can also be used by hackers to obtain the information they want from you. What is domain fronting? This article explains domain fronting in brief and lets you decide if it is good or bad by explaining both the advantage and dangers of domain fronting.

Domain Fronting explained

Domain fronting, in short, is changing the destination of an internet connection midway using encryption. If you want to browse a restricted website, you can use one of the following methods to reach it:

1. Proxy
2. VPN
3. TOR
4. Domain Fronting

The problem is that many governments are banning or restricting VPN and TOR traffic on different ISP networks. ISPs have specific orders from such governments to ban one or more website of any nature. Earlier, eight to ten years ago, we could easily use a proxy and reach the restricted website. Technology changed, and now it is easier than ever to detect traffic that is using a proxy. Not only that, but TOR (The Onion Router) can also be cracked now with some military grade techniques. Those two are no more viable methods to access restricted websites.

Thus, we are left with VPN and Domain Fronting. In an attempt to censor and to keep an eye on what its citizens are doing, many countries are banning/restricting VPNs too. They do not want encrypted traffic so that they know what is going on. The ISPs cannot rebel against the government of any country that restricts or bans VPN. They have to oblige.

The last method to access a restricted website is to apply domain fronting. You, as a user, cannot apply domain fronting though. You have to use an app that employs domain fronting. One such app is Telegram – the chatting app banned by Russia and many more countries.

These apps have built-in algorithms that allow users to access restricted websites or websites banned in that particular country where the user is located. This is done by altering the code in the header in the host websites. For invigilators, it generally shows that it is connecting to an innocent website, probably without HTTPS too. In the middle of the handshake between the website and app, the app first establishes an encrypted connection (could be as simple as HTTPS) and then switches route to another website. That website may be a banned or restricted website.

Thus, it is possible to cheat the invigilators at ISP and government levels to contact a restricted website while the Internet police think you are connected to some other website when all the time you were communicating with the banned website.

Domain Fronting can be used to circumvent any type of censorship. That’s the good part. The next section talks about the dangers of domain fronting.

Dangers of Domain Fronting

While domain fronting is being used to let users access restricted websites and services, there is a good chance that hackers might use the same technique to mislead users and mine the data they want.

Both the namesake domain and the restricted website (or infected website, in case of hackers) are hosted on the same set of servers. When one tries to connect to the namesake domain, its header sends another GET request that gives it the address of the restricted website. Now, this could be a simply restricted-by-government website or a computer infected by hackers.

Depending upon who is using domain fronting, it is both advantageous and dangerous. While mostly, private messaging apps were using the technique, both Google and Amazon dumped Telegram saying they are against their Terms and Conditions. Currently, Telegram is looking for other cloud service that would provide them with the ability of domain fronting.

There are several other cases where the use of domain fronting was genuine – to allow free speech. But it seems the world governments are closing all routes to freedom of expression. In the same breath, we can say domain fronting has its own dangers because if it can replace destination, it may lead you to fake sites, and you won’t ever know.

Now read: What is a Cold Boot Attack?

Related posts

• Dami Internet Explorer 11 sidii biraawsar u taagan oo kali ah addoo isticmaalaya Siyaasadda Kooxda

• DDoS Qaybsan Diidmada Adeegga Weerarada: Ilaalinta, Ka Hortagga

• Sida loo hubiyo in ciwaanka IP-gaagu uu soo daadanayo

• Laqabsiga Internetka iyo Baraha Bulshada

• Internet Explorer Dhamaadka Nolosha; Maxay uga dhigan tahay ganacsiyada?

• Dib u eegis Yandex DNS: Degdeg badan, Internet ka ammaansan oo leh kontaroolo

• Ethernet waxay sii wadaa goynta gudaha Windows 11/10

• Software-ka ugu Wacan ee Badbaadada Internetka ee Bilaashka ah ee Windows 11/10 PC

• Edge iyo Store apps aan ku xidhnayn internetka - Khaladka 80072EFD

• Surfers vs milkiilayaasha shabakada vs Ad blockers vs Anti Ad Blockers War

• Dejinta ammaanka hadda ma oggola in faylkan la soo dejiyo

• Maqaalka Amniga Internetka iyo talooyinka isticmaalayaasha Windows

• Sida loo sameeyo isku xirka internetka Windows 11/10

• Sida loo joojiyo xayaysiisyada Google-ka inay igala socdaan internetka

• Aaway Santa Claus hadda? Goobaha Santa Claus tracker ayaa ku caawin doona

• 10-ka ugu caansan ee Online-ka ah, Internet-ka iyo iimaylka iyo been-abuurka

• Disabler Net wuxuu kuu ogolaanayaa inaad gebi ahaanba daarto internetka adigoo gujinaya

• Ku samee Xarunta Raadiyaha Internetka oo bilaash ah Windows PC

• Laguma xidhi karo internetka? Isku day Qalabka Dayactirka Internetka oo Dhameystiran

• Si degdeg ah uga haajiro Internet Explorer una guurto Edge adigoo isticmaalaya qalabkan