Untitled - Xakep Online

More documents

Recommendations

Info

ÞÍÈÊÑÎÈÄ ÕÀÊÅÐ/¹01(61)/2004 ØÒÈÐËÈÖ Äîêó÷àåâ Äìèòðèé aka Forb (forb@real.xakep.ru) ÎÒÄÛÕÀÅÒ! 76 Ïîñëåäíèé ïàðàìåòð óêàçûâàåò ïóòü ê òî÷êå ìîíòèðîâàíèÿ. Çàìîíòèðóåì ðàçäåë â äèðåêòîðèþ /mnt/secure. Âîîáùå, çíà÷åíèå ýòîãî ïàðàìåòðà íàïðÿìóþ çàâèñèò îò òâîåé ïàðàíîéè. ß âñòðå÷àë ëþäåé, êîòîðûå ìîíòèðóþò äèñê â /lib/secure. Ïîçäðàâëÿþ, òåïåðü òû â áåçîïàñíîñòè (îòíîñèòåëüíîé, êî- Í åñìîòðÿ íà òî, ÷òî Linux - äîñòàòî÷íî áåçîïàñíàÿ ñèñòåìà, êðèïòîãðàôèÿ â íåé èãðàåò äàëåêî íå ïîñëåäíþþ ðîëü. Ñóäè ñàì, ëþáîé, êòî èìååò ôèçè÷åñêèé äîñòóï ê êîìïüþòåðó, ìîæåò çà íåñêîëüêî ìèíóò óçíàòü ñîäåðæèìîå òâîåãî âèí÷åñòåðà. Ýòî ìîæåò áûòü êòî óãîäíî: ìëàäøèé áðàò, èùóùèé ïàðîëè â èíåò, èëè ðàáîòíèê ñëóæáû áåçîïàñíîñòè. Òàê âîò, ÷òîáû ó òåáÿ íå áûëî ïðîáëåì ñ îðãàíàìè, õðàíè ñâîè äàííûå â ñóõîì è ïðîõëàäíîì ìåñòå. Ê ÷åìó ÿ êëîíþ: â èíåòå ïîëíî òóëç, êîòîðûå ïîçâîëÿþò øèôðîâàòü èíôó íà æåñòêîì äèñêå. Âñå îíè âûëîæåíû íà ðàçëè÷íûõ ñàéòàõ è äîñòóïíû äëÿ ñêà÷èâàíèÿ. Åñëè îäèí ðàç óñòàíîâèòü ïîäõîäÿùóþ ñîôòèíó, óâåðÿþ òåáÿ, òû îáåçîïàñèøü ñåáÿ îò íåïðîøåííûõ ãîñòåé. ÊÐÈÏÒÎÃÐÀÔÈß Â ËÞÁÈÌÎÉ ÎÑÈ ÔÀÉË ÕÎÐÎØÎ, À ÄÈÑÊ ËÓ×ØÅ! Ê àê òû ïîíÿë, â ýòîì ìàòåðèàëå ÿ ðàññêàæó î ëó÷øèõ êðèïòîãðàôè÷åñêèõ óòèëèòàõ. Âñå îíè çàòî÷åíû ïîä êîíñîëü (õàêåðó íå íóæåí GUI), ÷òî äåëàåò ïðîãðàììû ïëàñòè÷íûìè è óäîáíûìè. Ê ïðèìåðó, êòî òåáå ìåøàåò çàèíñòàëèòü òóëçó íà ëþáèìîì øåëëå, êîòîðûé íàõîäèòñÿ â 1000 êèëîìåòðîâ îò òåáÿ Íà ïåðâîì ìåñòå ñòîèò ïðîãðàììà BestCrypt, ïîçâîëÿþùàÿ ñîçäàâàòü îòäåëüíûé íîñèòåëü ñ øèôðàöèåé äàííûõ. Ýòà ñîôòèíà èìååò îãðîìíûé ïëþñ: åå àíàëîã ïîä Windows ïîëíîñòüþ ñîâìåñòèì ñ ðåàëèçàöèåé ïîä ïèíãâèí. Ïîýòîìó òû ìîæåøü áåçîïàñíî þçàòü îáå îñè. Çàéäè íà îôèöèàëüíûé ñàéò www.jetico.com è óäèâèñü. Ñîðöû BestCrypt âåñÿò â äåñÿòü ðàç ìåíüøå âèíäîâîé ðåàëèçàöèè, âñåãî êàêèõ-òî 460 Êá. Ïîíà÷àëó ÿ ïîäóìàë, ÷òî îøèáñÿ àäðåñîì è êà÷àþ ñîâñåì íå òî, ÷òî õîòåë, íî ìîè îïàñåíèÿ îêàçàëèñü íàïðàñíûìè. Èç çàâèñèìîñòåé - íåîáõîäèìî íàëè÷èå ïàêåòà kernelsource, òàê êàê ïðîãà þçàåò ìîäóëè ëèíóõîâîãî êåðíåëà. Äàëåå - òðè ìàãè÷åñêèõ ñëîâà: ./configure, make, make install. Ïîñëå ýòîãî BestCrypt ïðîïèøåòñÿ â êà÷åñòâå ñèñòåìíîãî ñåðâèñà, êîòîðûé ñëåäóåò... ïðàâèëüíî! çàïóñòèòü :). Äåëàåòñÿ ýòî êîìàíäîé "service bcrypt start". Ñêðèïò ñîçäàñò äåñÿòü áëî÷íûõ óñòðîéñòâ, êîòîðûå îòâå÷àþò çà êðèïòîäåâàéñû. Ïîñëå ýòîãî êîíòåéíåð áóäåò ïðèëèíêîâàí ê ýòîìó äåâàéñó. Åñòåñòâåííî, ñ òâîåãî ñîãëàñèÿ ;). Ïðåæäå ÷åì ÷òî-ëèáî ëèíêîâàòü, ñîçäàäèì øèôðîâàííûé äèñê. Íàáèðàé êîìàíäó bctool new -s ðàçìåð -a twofish èìÿ Ïàðàìåòð -a îòâå÷àåò çà àëãîðèòì øèôðîâàíèÿ. Íà ìîé âçãëÿä, ñàìûé ñòîéêèé èç ïîääåðæèâàåìûõ - ýòî twofish. ×òî êàñàåòñÿ ðàçìåðà, îí çàâèñèò îò äàííûõ, êîòîðûå òû ñîáèðàåøüñÿ õðàíèòü. Åñëè ýòî äåñÿòü ãèãîâ ïîðíóõè, âûñòàâëÿé áîëüøîå çíà÷åíèå :), èíà÷å ìîæíî îáîéòèñü è íåñêîëüêèìè ìåãàáàéòàìè. Ïåðåä ñîçäàíèåì áèíàðíèê ñïðîñèò ïàðîëü. Òîëüêî ñ åãî ïîìîùüþ ìîæíî ïðèìîíòèðîâàòü äåâàéñ, ïîýòîìó îïðåäåëèñü ñ âûáîðîì. Ñîçäàë Îòëè÷íî! Òåïåðü íóæíî îïðåäåëèòü ôàéëîâóþ ñèñòåìó â òâîåì äåâàéñå. Ïóñòü ýòî áóäåò vfat. Êîìàíäóé: bctool format -t vfat name è ââîäè ïàðîëü. Òåïåðü ôàéëîâàÿ ñèñòåìà îïðåäåëåíà, è ìîæíî ïåðåéòè ê ñëåäóþùåìó øàãó - ìîíòèðîâàíèå óñòðîéñòâà. Äåëàåòñÿ ýòî òàêæå îäíîé êîìàíäîé: bctool mount -t vfat èìÿ /path/to/mountpoint Íàäåæíîñòü øèôðîâàíèÿ ïðÿìî ïðîïîðöèîíàëüíà äëèíå ïàðîëÿ.
Ñîçäàåì íîâûé êîíòåéíåð Ïîìíè, ÷òî ëþáûå ïàðîëè âûáèâàþòñÿ èç æåðòâû óäàðàìè ñàïîã ;), ïîýòîìó àáñîëþòíîé áåçîïàñíîñòè íå ñóùåñòâóåò. íå÷íî). Íå çíàÿ ïàðîëü, óâèäåòü èíôó íà íîñèòåëå ïðàêòè÷åñêè íåâîçìîæíî. Íî ïîìíè, ÷òî ëþáûå ïàðîëè âûáèâàþòñÿ èç æåðòâû óäàðàìè ñàïîã ;), ïîýòîìó àáñîëþòíîé áåçîïàñíîñòè íå ñóùåñòâóåò. ØÈÔÐÓÅÌ ÔÀÉËÎ Áûâàåò òàê, ÷òî öåëûé äèñê ñîçäàâàòü íåöåëåñîîáðàçíî. Íóæíî ëèøü çàøèôðîâàòü îòäåëüíûé ôàéë. Â Linux äëÿ ýòîãî ñóùåñòâóåò ìíîæåñòâî ñðåäñòâ, êîòîðûå òû ìîæåøü çàþçàòü, èñõîäÿ èç ñèòóàöèè. Ðàññìîòðèì ïðîñòîé âàðèàíò øèôðîâàíèÿ. Äîïóñòèì, òåáå íåîáõîäèìî çàêðèïòîâàòü ïðîñòîé ASCIIôàéë. Ïðè÷åì íà ñòîéêîñòü øèôðîâàíèÿ ìîæíî çàáèòü. Òåáå ïîäîéäåò îáû÷àÿ ïðîãðàììà äëÿ çàøèôðîâêè, òàêàÿ, êàê, íàïðèìåð, Code (ïîñëåäíÿÿ âåðñèÿ 0.03). Ñóòü åå - ãåíåðàöèÿ íåïîñòîÿííîãî êëþ÷à íà îñíîâå äâóõ ñèìâîëîâ, êîòîðûé çàìåùàåòñÿ ñèìâîëîì â ôàéëå. Ïåðâûé èç íèõ - ÷àñòü òâîåãî ïàðîëÿ, âòîðîé - èñòèííûé ôðàãìåíò ôàéëà. Íàäåæíîñòü øèôðîâàíèÿ ïðÿìî ïðîïîðöèîíàëüíà äëèíå ïàðîëÿ. Â óñòàíîâêå Code íåò íè÷åãî ñëîæíîãî. Ïðàâäà, ðàçðàáîò÷èêè çàáûëè ñíàáäèòü ïàêåò ñêðèïòàìè äëÿ make. ×òîáû ñêîìïèëèòü ïðîãðàììó, íóæíî íàáðàòü äâå êîìàíäû â äèðåêòîðèè rus èëè eng (â çàâèñèìîñòè îò æåëàåìîé ëîêàëèçàöèè): # gcc code.c -o code # gcc uncode.c -o uncode À çàòåì çàþçàòü øèôðîâàëüùèê. Ê ïðèìåðó, çàêðèïòóåì /etc/passwd. Äëÿ ýòîãî ââåäåì ñëåäóþùóþ ñòðîêó: # ./code /etc/passwd myp4ssw0rd Â òåêóùåì êàòàëîãå ïîÿâèòñÿ ôàéëèê passwd.code, êîòîðûé ÿâëÿåòñÿ ñâåæåçàêðèïòîâàííûì. Âåðíóòü åãî â ïðåæíåå ñîñòîÿíèå ìîæíî îáðàòíîé êîìàíäîé: # ./uncode ./passwd.code myp4ssw0rd Èñïîëüçîâàíèå óòèëèòû code Òîëüêî âîò èìÿ ôàéëà áóäåò äðóãèì - passwd.code.uncode :). ÁÈÍÀÐÍÛÉ ØÈÔÐ Òåïåðü îáðàòèì âíèìàíèå íà øèôðîâàíèå áèíàðíûõ ôàéëîâ. Äëÿ ýòîãî ÿ âûäåëÿþ Ó BestCrypt ñóùåñòâóåò çàìå÷àòåëüíàÿ îïöèÿ unlock, êîòîðàÿ ïîìîãàåò â ñëó÷àå, êîãäà ñèñòåìà íå áûëà êîððåêòíî ðàçìîíòèðîâàíà. Åñëè íå àíëîêíóòü êîíòåéíåð îò äåâàéñà, ïîâòîðíûé ìàóíò îñóùåñòâèòü íå ïîëó÷èòñÿ.
Page 4 and 5:
C O N T E N T INTRO Â äåòñòâ
Page 6 and 7:
NEWS ÕÀÊÅÐ/¹01(61)/2004 HITEC
Page 8 and 9:
NEWS ÕÀÊÅÐ/¹01(61)/2004 MS LO
Page 10:
NEWS ÀÍÒÈÂÀÍÄÀËÜÍÀß
Page 13 and 14:
ÏÅÑÍÈ ÈÇ ßÄÅÐÍÎÉ ËÀ
Page 15 and 16:
ÑÅÐÂÅÐÍÀß ÌÀÌÀ ÆÅË
Page 18 and 19:
ÆÅËÅÇÎ ÕÀÊÅÐ/¹01(61)/20
Page 20 and 21:
ÆÅËÅÇÎ ATI VS. NVIDIA ÕÀÊ
Page 22 and 23:
ÆÅËÅÇÎ ATI VS. NVIDIA ÕÀÊ
Page 24 and 25:
2K3 ÕÀÊÅÐ/¹01(61)/2004 X-Crew
Page 26 and 27:
2K3 2K3 Õàêep`s Choice ÕÀÊÅ
Page 28 and 29: PC_ZONE ÕÀÊÅÐ/¹01(61)/2004 Ý
Page 30: PC_ZONE ÑÄÅËÀÅÌ ÝÒÎ ÏÎ-
Page 33 and 34: ÏÎ×ÒÎÂÛÅ ÏÅÐÅÕÂÀÒ×
Page 35 and 36: Àäìèí ðàçâëåêàåòñÿ
Page 37 and 38: Ñòàíäàðòíàÿ ðàñêðà
Page 40 and 41: PC_ZONE ÑÅÒÅÂÎÉ Jumpy (jumpy
Page 42 and 43: ÕÀÊÅÐ/¹01(61)/2004 ÈÃÐÛ
Page 44 and 45: PC_ZONE ÕÀÊÅÐ/¹01(61)/2004 Ô
Page 46 and 47: PC_ZONE ÊÐÀÑÈÂÎ ÆÈÒÜ Í
Page 48 and 49: IMPLANT ÕÀÊÅÐ/¹01(61)/2004 À
Page 50 and 51: ÕÀÊÅÐ/¹01(61)/2004 ÍÀÑÊÎ
Page 52 and 53: ÂÇËÎÌ HACK-FAQ SideX (hack-faq
Page 54 and 55: ÂÇËÎÌ ÕÀÊÅÐ/¹01(61)/2004
Page 56: ÂÇËÎÌ Ñìåíèòü äàòó
Page 59 and 60: ÂÛÁÅÐÈ ÑÂÎÉ ÒÓÍÍÅË
Page 64: ÂÇËÎÌ BASH MUST DIE ÕÀÊÅÐ
Page 67 and 68: ÏÀÊÀÍÅÌ È ÇÀØÈÔÐÓÅ
Page 69 and 70: ÑÎÖÈÀËÜÍÀß ÈÍÆÅÍÅÐ
Page 71 and 72: çàäóìûâàåìñÿ, íî êî
Page 76 and 77: ÂÇËÎÌ ÀÑÅ×ÊÀ ÍÀ ÁËÞ
Page 80: ÞÍÈÊÑÎÈÄ ØÒÈÐËÈÖ Î
Page 83 and 84: ÊÓÐÑ ÂÛÆÈÂÀÍÈß Â ÊÎ
Page 89 and 90: ÎÑÅË ÍÀ ÑËÓÆÁÅ ËÞÄÅ
Page 91 and 92: BACK-BITMAP ÄËß ÎÑËÀ Ñ ïî
Page 93 and 94: ÊÎÄÈÌ ÑÎÊÅÒÛ ÍÀ MFC Ñ
Page 95 and 96: ÊÎÄÈÌ ÑÎÊÅÒÛ ÍÀ MFC ì
Page 97 and 98: íÿòíî, ðàññìîòðèì ï
Page 99 and 100: Ïðè ïîìîùè îáúÿâëå
Page 101 and 102: ØÀÐÎWAREZ REGSNAP V 4.0 AUTOSPE
Page 103 and 104: ØÀÐÎWAREZ RAINLENDAR V 0.18 Ê
Page 105 and 106: ÎÕÎÒÍÛÅ ÑËÎÍÛ www.os2.i
Page 107 and 108: Íåäàâíî ïîëåòåë âè
Page 109 and 110: ÈÃÐÛ ÏÎ ÊÀÒÀËÎÃÀÌ Ñ
Page 111 and 112: ¨-MAIL ßäîâèòûé (magazine@
Page 113 and 114: Íåîáõîäèìî ðàñøèôð
Page 117: VER 01.04 (61)
show all

Untitled - Xakep Online

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?