NetCAT nzira nyowani inobvumidza kuwanikwa kwemakiyi mumusangano weSSH

netcat

Boka revaongorori iyo University yeAmsterdam uye neSwitzerland Yakakwira technical Chikoro muZurich yakagadzira iyo "NetCAT" network yekurwisa maitiro (Network Cache ATtack) izvo inobvumira kushandisa nzira dzekuongorora dhata kubva kune yechitatu-bato migero kuona zviri kure makiyi anoshandiswa nemushandisi apo ndaishanda muchikamu cheSSH. Dambudziko rinongozviratidza pamaseva anoshandisa RDMA (Remote Direct Memory Access) uye DDIO (Direct I / O kuData) matekinoroji.

Intel anotenda kuti kurwiswa kunonetsa kuitisa mukuita.a, sezvo ichida mukana weanorwisa kunetiweki yemuno, kuwedzera kune mamiriro uye kurongeka kubata kutaurirana uchishandisa RDMA uye DDIO matekinoroji, ayo anowanzo shandiswa mumatanho ari ega, semuenzaniso, panoshanda masumbu.

Nzira yakashandiswa pakurwisa yakafanana neTrowhammer kudzvinyirirwa, iyo inobvumira zvirimo zvemunhu mabits mu RAM kuti achinjwe kuburikidza netiweki paketi yekumanikidza pane RDMA masystem.

Vatsvakurudzi vanotaura kuti:

Dambudziko nyowani mhedzisiro yekudzora kunonoka nekushandisa iyo DDIO mashandiro, ayo anopa kuwirirana kwakananga pakati pekambani yeneti uye nezvimwe zvigadzirwa zveparutivi zvine processor cache (panguva yekugadziriswa kweneti kadhi mapaketi, data rakachengetwa uye rinotorwa kubva ku cache, pasina kuwana memory).

Kutenda kuDDIO, processor cache zvakare inosanganisira dhata inogadzirwa panguva yakaipa network basa.

Kurwiswa kweNetCAT kunovimba nenyaya yekuti network makadhi cache data kushingairira, uye kumhanya kwepaketi kugadziriswa mumanetwork emuno emuno kwakaringana kukurudzira kuzadza cache uye kuona kuvapo kana kusavapo kwedata mune cache kuburikidza nekuongorora kunonoka kwekutapurirana kwedata.

Paunenge uchishandisa zvikamu zvekudyidzana, semuenzaniso kuburikidza neSSH, network packet inotumirwa pakarepo mushure mekudzvanya kiyindiko kuti, kunonoka pakati pemapaketi kunoenderana nekunonoka pakati pemakiyi ekubaya.

Uchishandisa manhamba ekuongorora nzira uye uchifunga kuti kunonoka pakati pemakiyi kazhinji kunoenderana nechinzvimbo chekiyi pane iyo keyboard, zvinogoneka pamwe nekamwe mukana wekudzokorora ruzivo rwekuisa. Semuenzaniso, vanhu vazhinji vanowanzo kunyora "s" mushure me "a" nekukurumidza zvakanyanya kupfuura "g" mushure me "s."

Ruzivo rwakachengetwa neprosesa zvakare rinokutendera iwe kutonga nguva chaiyo yemapaketi anotumirwa nekambani yeneti kana uchigadzirisa kubatana senge SSH.

Nekugadzira kumwe kuyerera kwetraffic, anorwisa anogona kuona panowanikwa dhata nyowani mu cache inosangana neimwe chiitiko mune ino system.

Kuti uongorore zviri mukachechi, iyo Prime + Probe nzira inoshandiswa, iyo inosanganisira yekuzadza cache neyakagadziriswa mareferensi uye kuyera nguva yekuwana kwavari kana uchizadza kuona shanduko.

Izvo zvinogoneka kuti hunyanzvi chikumbiro inogona kushandiswa kuona kwete chete mabhatani ekiyi, asi zvakare mamwe marudzi e data risinganzwisisike akachengetedzwa neCUU.

Mukurwisa kwedu, isu tinotora mukana wekuti iyo DDIO-inogoneswa application server ine yakagovaniswa zviwanikwa (yekupedzisira-chikamu cache) pakati peCPU cores uye network kadhi. Isu tinodzosera mainjiniya akakosha zvivakwa zveDDIO kuti tinzwisise kuti cache yakagovaniswa sei neDDIO.

Zvichida, kurwisa kunogona kuitwa kana RDMA yakaremara, asi pasina RDMA kushanda kwayo kwakadzikiswa uye kuuraya kwakanyanya kuomarara.

Izvo zvakare zvinokwanisika kushandisa DDIO kuronga yakavanzika yekutaurirana chiteshi inoshandiswa kuendesa data mushure mekuti server yagadziriswa, ichipfuura masystem ekuchengetedza.

mabviro: https://www.vusec.net


Izvo zviri muchinyorwa zvinoomerera pamisimboti yedu ye tsika dzekunyora. Kuti utaure chikanganiso tinya pano.

Iva wekutanga kutaura

Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira data: AB Internet Networks 2008 SL
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako