Waa maxay weerarka afduubka DNS & sida looga hortago

DNS ayaa muhiim u ah xallinta URL(URLs) -yada aad geliso barta ciwaanka ee biraawsarkaaga. Shaqooyin badan ayaa gala Magaca Domain Resolution(Domain Name Resolution) . Waa nooc ka mid ah hawlgallada soo noqnoqda oo ka caawiya browserkaagu inuu helo ciwaanka IP-ga ee mareegaha aad isku dayayso inaad gaadho. Haddii aad xiisaynayso, waxaad wax badan ka akhriyi kartaa Raadinta DNS iyo Servers(DNS Lookup and Servers) .

Erayga Cache DNS(DNS Cache) waxa loola jeedaa kaydka maxaliga ah ee ka kooban ciwaanada IP-ga ee la xaliyay ee mareegaha aad inta badan joogto. Fikradda Cache-ga DNS(DNS Cache) waa in la badbaadiyo waqti haddii kale lagu kharash gareeyo la xiriirinta server-yada DNS kuwaas oo bilaabi doona hawlo isdaba-joog ah si loo ogaado cinwaanka IP-ga dhabta ah ee URL aad u baahan tahay inaad gaarto. Laakin khasnaddan waxa lagu sumayn karaa dambiilayaasha internetka si fudud iyaga oo u beddelaya gelinta kaydka DNS kaaga cinwaannada IP-ga been abuurka ah ee mareegaha aad isticmaasho.

DNS- afduubka

Waa maxay afduubka DNS

Sida magacaba ka muuqata, DNS Hijacking ama Redirection waa hab ay adeegsadaan dambiilayaasha internetka si ay u afduubaan browserkaagu isku dayo inuu xalliyo ciwaanka IP-ga ee shabakada aad rabto inaad ku shubto. Si loo fududeeyo isticmaalka, URL(URLs) -yada aan isticmaalno waa qaab qoraal ah. URL kasta , waxaa jira ciwaanka IP-ga, iyo hawlo kala duwan ayaa u beddelaya URL- ka qoraalka cinwaanka IP-ga tiro ahaan. Maadaama ay jiraan hawlgallo badan oo ku lug leh xallinta ciwaanka IP-ga, dambiilayaasha internetka ayaa ka faa'iideysan kara dib u dhigista oo u diri kara kombiyuutarkaaga, ciwaanka IP-ga ee been abuurka ah ee ay leeyihiin.

Habka ugu badan ee afduubka DNS(common method for DNS Hijacking) waa in lagu rakibo malware-ka kombiyuutarkaaga kaas oo beddelaya DNS - ka si mar kasta oo browserkaagu isku dayo inuu xalliyo URL , wuxuu la xiriiraa mid ka mid ah server-yada (URL)DNS ee been abuurka ah halkii uu ka heli lahaa server-yada dhabta ah ee DNS ay isticmaasho ICANN ( mamulka Internet ka mas'uul ka ah diiwaan gelinta domains, maareyntooda, siinta ciwaannada IP-ga, ilaalinta ciwaanka xiriirka iyo wax ka badan). Adeegaha DNS(DNS) ee tooska ah ee kombuyuutarku la xidhiidhayo waa server-yada DNS ee uu ku shaqeeyo Bixiyaha Adeegga Internetka -(Internet Service Provider –)in aad wax kale u badashay mooyaane. Marka la iibsado isku xirka internetka, server-yada DNS ee la isticmaalayaa waa ISP - ay aqoonsan tahay ICANN .

Malware-ka ku jira kumbuyuutarkaagu wuxuu beddelaa DNS -ka caadiga ah ee uu ku kalsoon yahay kumbuyuutarka si uu u tilmaamo ciwaanka kale ee IP. Habkaas, marka browserkaagu isku dayo inuu xalliyo ciwaanka IP-ga, kombayutarkaagu wuxuu la xidhiidhaa server-ka DNS been-abuurka ah kaas oo ku siinaya ciwaanka IP-ga khaldan. Tani waxay keenaysaa in browserkaagu uu soo rarto degel xaasidnimo ah oo laga yaabo inay wax u dhinto kombayutarkaada ama xaddo aqoonsigaaga iwm.

Afduubka DNS(DNS Hijacking) vs. DNS Cache Sun

In kasta oo labadooduba ay ka dhacaan heer maxalli, asalkoodu waxa uu ka yimid server-yada DNS ee beenta ah . Iyadoo afduubka DNS ay ku lug leedahay malware(DNS hijacking involves malware) , sunta Cache-ga DNS waxay ku lug leedahay ku-qorista kaydka DNS ee deegaankaaga oo leh qiimeyaal been abuur ah(DNS Cache poisoning involves overwriting your local DNS cache with fake values) oo u jiheeya biraawsarkaaga shabakadaha xaasidnimada leh. Sunta Cache ee DNS ama Spoofing(DNS Cache Poisoning or Spoofing) waxay ku lug leedahay farsamooyin ay ka mid yihiin duqeynta cinwaannada IP-ga ee been abuurka ah ee kumbuyuutarkaagu soo qaado iyadoo server-yada dhabta ah ee DNS ay wali ku mashquulsan yihiin xallinta URL- ka . Taasi waa, wakhtiga ay ku qaadato server-yada DNS ee dhabta ah si ay u xalliyaan URL , dembiilayaasha internetka waxay soo diraan jawaabo badan oo u dhigma URL -yada ciwaannada IP-ga ee been abuurka ah.

Tusaale ahaan, waxaad ku qortaa thewindowsclub.com browserkaaga. Marka server-ka dhabta ah ee DNS uu eego ciwaannada, kumbuyuutarkaagu wuxuu helayaa wax ka badan hal xal oo ah in goobta ay ku taal XYZ IP ciwaanka. Tani waxay ka dhigi doontaa kombuyuutarkaaga inuu rumaysto in goobta ay ku taal XYZ inkasta oo server-ka dhabta ah ee DNS uu soo diro cinwaanka IP-ga dhabta ah sababtoo ah cybercriminals' DNS servers ayaa soo diray jawaabo badan oo ay ku jiraan IP-ga been-abuurka ah ee thewindowsclub.com .

Farqiga u dhexeeya wakhtiga waxaa si wax ku ool ah u isticmaala cybercriminals kuwaas oo haysta servero badan oo DNS been abuur ah si ay u helaan kombuyuutarkaaga ciwaannada IP-ga khaldan iyo xaasidnimada leh ee kaydka. Markaa mid ka mid ah tobanka go'aan ee beenta ah ee DNS ee ay soo diraan dambiilayaasha 'cybercriminals ' server-yada DNS(’ DNS) ayaa ka hormariya hal xallin dhab ah oo DNS ah oo ay soo diraan server-yada dhabta ah ee (DNS)DNS . Hababka kale ee Cache-ga DNS Sumaynta(DNS Cache Poisoning) iyo ka-hortagga waxay ku taxan yihiin xiriirka sare lagu sheegay.

In kasta oo Sunta Cache(DNS Cache Poisoning) -ga DNS iyo Afduubka DNS(DNS Hijacking) si isweydaar ah loo isticmaalo, haddana farqi yar ayaa u dhexeeya. Habka sunta Cache-ga DNS(DNS Cache Poisoning) kuma jirto in malware lagu dudo nidaamka kombayutarka laakiin waxa uu ku salaysan yahay habab kala duwan sida kan kor lagu sharaxay oo server-yada DNS ee been abuurka ah ay u soo diraan URL qaraar ka dhaqso badan server-ka dhabta ah ee DNS sidaas darteed cache-ku waa sun. Marka cache-ku sumeeyo, marka aad isticmaashid bogga internetka ee cudurka qaba, kombayutarkaga waa la jabiyay. Xaaladda Afduubka DNS(DNS Hijacking) , mar hore ayaad cudurka qaaday. Malware-ku wuxuu beddelaa DNS -kaaga caadiga ah(DNS)bixiyaha adeegga shay ay rabaan dembiilayaasha internetka. Halkaasna, waxay xakameeyaan go'aamada URL- kaaga ( (URL)DNS lookups), ka dibna waxay sii wadaan sumaynta kaydkaaga DNS(DNS) .

Sida looga hortago afduubka DNS

Waxaan ka wada hadalnay sida looga hortago sumowga DNS(prevent DNS poisoning) mar hore. Si loo joojiyo ama looga hortago afduubka DNS(DNS Hijacking) , waxaa lagugula talinayaa inaad isticmaasho software ammaan oo wanaagsan(good security software) kaas oo fogeynaya malware-ka sida beddelayaasha DNS . Isticmaalka Firewall wanaagsan . In kasta oo uu ugu fiican yahay firewall-ku-salaysan hardware, haddii aanad haysan, waxa aad shidi kartaa dab-demiyahaaga ugu yaraan.

Haddii aad u maleyneyso inaad horeyba u qaaday cudurka, waxaa fiican inaad tirtirto waxa ku jira faylka HOSTS(HOSTS file)  oo aad dib u dejiso File Hosts(reset the Hosts File) . Ka dib markaad tan sameyso, sii wad oo isticmaal antimalware kaas oo kaa caawinaya inaad ka takhalusto beddelayaasha DNS .

Hubi haddii beddelka DNS uu beddelay (DNS)DNS kaaga . Haddii ay leedahay, waa inaad beddeshaa goobaha DNS kaaga(change your DNS settings) . Si toos ah ayaad u hubin kartaa Haddii kale, waxaad gacanta ku hubin kartaa DNS -ka . Ku bilow adiga oo hubiya DNS -ka lagu sheegay Router ka ka dibna kumbiyuutarrada gaarka ah ee shabakadaada. Waxaan kugula talin lahaa in aad nadiifiso Cache-gaaga Windows DNS(flush your Windows DNS Cache) oo aad u beddesho router-kaaga DNS DNS(DNS) -ka kale sida Comodo DNS ,(DNS) DNS Open,(Open DNS,) Google Public DNS, Yandex Secure DNS, Angel DNS, iwm(DNS) . in router-ka ayaa ka fiican in la habeeyo kombiyuutar kasta.

Waxaa jira aalado laga yaabo inay ku xiiseeyaan(There are tools that may interest you) : F-Secure Router Checker ayaa hubin doona afduubka DNS , aaladdan (DNS)online-ka ah waxay hubisaa afduubyada DNS , iyo Qalabka Amniga ee WhiteHat wuxuu kormeeraa afduubyada DNS.

Hadda akhri(Now read) : Waa maxay Afduubka Domain iyo sida loo soo ceshado domain la afduubay.



About the author

Waxaan ahay mid aad loogu taliyay Windows 10 khabiir, waxaanan ku takhasusay inaan dadka ka caawiyo inay shakhsiyeeyaan muuqaalkooda kumbuyuutarka oo ay ka dhigaan qalabkooda Xafiis kuwo saaxiibtinimo leh. Waxaan u isticmaalaa xirfadahayga si aan uga caawiyo dadka kale siyaabaha ugu waxtarka badan ee lagula shaqeeyo Microsoft Office, oo ay ku jiraan sida loo qaabeeyo qoraalka iyo sawirada daabacaadda internetka, sida loo abuuro mawduucyo gaar ah oo loogu talagalay Outlook, iyo xitaa sida loo habeeyo muuqaalka shaqada ee miiska kombuyuutar.



Related posts