{"id":478230,"date":"2023-08-09T09:29:27","date_gmt":"2023-08-09T09:29:27","guid":{"rendered":""},"modified":"2023-09-05T11:16:20","modified_gmt":"2023-09-05T11:16:20","slug":"ntp-amplification-attack","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/vn\/wiki\/ntp-amplification-attack\/","title":{"rendered":"T\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP"},"content":{"rendered":"

Gi\u1edbi thi\u1ec7u<\/h2>\n

Trong th\u1ebf gi\u1edbi c\u1ee7a c\u00e1c m\u1ed1i \u0111e d\u1ecda m\u1ea1ng, c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng t\u1eeb ch\u1ed1i d\u1ecbch v\u1ee5 ph\u00e2n t\u00e1n (DDoS) ti\u1ebfp t\u1ee5c l\u00e0 m\u1ed1i lo ng\u1ea1i l\u1edbn \u0111\u1ed1i v\u1edbi c\u00e1c doanh nghi\u1ec7p v\u00e0 t\u1ed5 ch\u1ee9c. Trong s\u1ed1 c\u00e1c k\u1ef9 thu\u1eadt t\u1ea5n c\u00f4ng DDoS kh\u00e1c nhau, T\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP n\u1ed5i b\u1eadt l\u00e0 m\u1ed9t trong nh\u1eefng ph\u01b0\u01a1ng ph\u00e1p m\u1ea1nh m\u1ebd v\u00e0 g\u00e2y thi\u1ec7t h\u1ea1i nh\u1ea5t \u0111\u01b0\u1ee3c c\u00e1c t\u00e1c nh\u00e2n \u0111\u1ed9c h\u1ea1i s\u1eed d\u1ee5ng \u0111\u1ec3 ph\u00e1 ho\u1ea1i c\u00e1c d\u1ecbch v\u1ee5 tr\u1ef1c tuy\u1ebfn. B\u00e0i vi\u1ebft n\u00e0y nh\u1eb1m m\u1ee5c \u0111\u00edch cung c\u1ea5p s\u1ef1 hi\u1ec3u bi\u1ebft s\u00e2u s\u1eafc v\u1ec1 Cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP, kh\u00e1m ph\u00e1 l\u1ecbch s\u1eed, ho\u1ea1t \u0111\u1ed9ng b\u00ean trong, lo\u1ea1i, gi\u1ea3i ph\u00e1p v\u00e0 m\u1ed1i li\u00ean h\u1ec7 ti\u1ec1m n\u0103ng c\u1ee7a n\u00f3 v\u1edbi m\u00e1y ch\u1ee7 proxy.<\/p>\n

L\u1ecbch s\u1eed ngu\u1ed3n g\u1ed1c c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP<\/h2>\n

Cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP, c\u00f2n \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 cu\u1ed9c t\u1ea5n c\u00f4ng ph\u1ea3n \u00e1nh NTP, l\u1ea7n \u0111\u1ea7u ti\u00ean \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh v\u00e0o n\u0103m 2013. N\u00f3 khai th\u00e1c m\u1ed9t l\u1ed7 h\u1ed5ng trong m\u00e1y ch\u1ee7 Giao th\u1ee9c th\u1eddi gian m\u1ea1ng (NTP), v\u1ed1n r\u1ea5t c\u1ea7n thi\u1ebft \u0111\u1ec3 \u0111\u1ed3ng b\u1ed9 h\u00f3a th\u1eddi gian tr\u00ean m\u00e1y t\u00ednh v\u00e0 c\u00e1c thi\u1ebft b\u1ecb m\u1ea1ng. Cu\u1ed9c t\u1ea5n c\u00f4ng l\u1ee3i d\u1ee5ng l\u1ec7nh monolist, m\u1ed9t t\u00ednh n\u0103ng \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 l\u1ea5y th\u00f4ng tin v\u1ec1 c\u00e1c m\u00e1y kh\u00e1ch g\u1ea7n \u0111\u00e2y, nh\u1eb1m khu\u1ebfch \u0111\u1ea1i l\u01b0u l\u01b0\u1ee3ng t\u1ea5n c\u00f4ng \u0111\u1ebfn m\u1ee5c ti\u00eau. H\u1ec7 s\u1ed1 khu\u1ebfch \u0111\u1ea1i \u0111\u00e1ng k\u1ec3, k\u1ebft h\u1ee3p v\u1edbi kh\u1ea3 n\u0103ng gi\u1ea3 m\u1ea1o \u0111\u1ecba ch\u1ec9 IP ngu\u1ed3n, khi\u1ebfn cu\u1ed9c t\u1ea5n c\u00f4ng n\u00e0y tr\u1edf n\u00ean \u0111\u1eb7c bi\u1ec7t nguy hi\u1ec3m v\u00e0 kh\u00f3 gi\u1ea3m thi\u1ec3u.<\/p>\n

Th\u00f4ng tin chi ti\u1ebft v\u1ec1 cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP<\/h2>\n

Cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP d\u1ef1a tr\u00ean m\u1ed9t k\u1ef9 thu\u1eadt \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 ph\u1ea3n x\u1ea1, trong \u0111\u00f3 k\u1ebb t\u1ea5n c\u00f4ng g\u1eedi m\u1ed9t y\u00eau c\u1ea7u nh\u1ecf \u0111\u1ebfn m\u00e1y ch\u1ee7 NTP d\u1ec5 b\u1ecb t\u1ea5n c\u00f4ng, gi\u1ea3 m\u1ea1o \u0111\u1ecba ch\u1ec9 IP ngu\u1ed3n l\u00e0m IP c\u1ee7a m\u1ee5c ti\u00eau. Sau \u0111\u00f3, m\u00e1y ch\u1ee7 NTP s\u1ebd ph\u1ea3n h\u1ed3i m\u1ee5c ti\u00eau v\u1edbi ph\u1ea3n h\u1ed3i l\u1edbn h\u01a1n nhi\u1ec1u so v\u1edbi y\u00eau c\u1ea7u ban \u0111\u1ea7u, khi\u1ebfn l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp tr\u00e0n v\u00e0o l\u1ea5n \u00e1t t\u00e0i nguy\u00ean c\u1ee7a m\u1ee5c ti\u00eau. Hi\u1ec7u \u1ee9ng khu\u1ebfch \u0111\u1ea1i n\u00e0y c\u00f3 th\u1ec3 \u0111\u1ea1t t\u1edbi k\u00edch th\u01b0\u1edbc g\u1ea5p 1.000 l\u1ea7n y\u00eau c\u1ea7u ban \u0111\u1ea7u, khi\u1ebfn n\u00f3 tr\u1edf th\u00e0nh m\u1ed9t vect\u01a1 t\u1ea5n c\u00f4ng DDoS hi\u1ec7u qu\u1ea3 cao.<\/p>\n

C\u1ea5u tr\u00fac b\u00ean trong c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP<\/h2>\n

Cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP bao g\u1ed3m ba th\u00e0nh ph\u1ea7n ch\u00ednh:<\/p>\n

    \n
  1. \n

    K\u1ebb t\u1ea5n c\u00f4ng:<\/strong> C\u00e1 nh\u00e2n ho\u1eb7c nh\u00f3m ph\u00e1t \u0111\u1ed9ng cu\u1ed9c t\u1ea5n c\u00f4ng s\u1eed d\u1ee5ng nhi\u1ec1u k\u1ef9 thu\u1eadt kh\u00e1c nhau \u0111\u1ec3 g\u1eedi m\u1ed9t y\u00eau c\u1ea7u nh\u1ecf \u0111\u1ebfn c\u00e1c m\u00e1y ch\u1ee7 NTP d\u1ec5 b\u1ecb t\u1ea5n c\u00f4ng.<\/p>\n<\/li>\n

  2. \n

    M\u00e1y ch\u1ee7 NTP d\u1ec5 b\u1ecb t\u1ed5n th\u01b0\u01a1ng:<\/strong> \u0110\u00e2y l\u00e0 nh\u1eefng m\u00e1y ch\u1ee7 NTP c\u00f3 th\u1ec3 truy c\u1eadp c\u00f4ng khai v\u1edbi l\u1ec7nh monlist \u0111\u01b0\u1ee3c k\u00edch ho\u1ea1t, khi\u1ebfn ch\u00fang d\u1ec5 b\u1ecb t\u1ea5n c\u00f4ng.<\/p>\n<\/li>\n

  3. \n

    M\u1ee5c ti\u00eau:<\/strong> N\u1ea1n nh\u00e2n c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng c\u00f3 \u0111\u1ecba ch\u1ec9 IP b\u1ecb gi\u1ea3 m\u1ea1o trong y\u00eau c\u1ea7u, khi\u1ebfn ph\u1ea3n h\u1ed3i khu\u1ebfch \u0111\u1ea1i l\u00e0m tr\u00e0n ng\u1eadp t\u00e0i nguy\u00ean v\u00e0 l\u00e0m gi\u00e1n \u0111o\u1ea1n d\u1ecbch v\u1ee5 c\u1ee7a h\u1ecd.<\/p>\n<\/li>\n<\/ol>\n

    Ph\u00e2n t\u00edch c\u00e1c t\u00ednh n\u0103ng ch\u00ednh c\u1ee7a cu\u1ed9c t\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP<\/h2>\n

    \u0110\u1ec3 hi\u1ec3u r\u00f5 h\u01a1n v\u1ec1 T\u1ea5n c\u00f4ng khu\u1ebfch \u0111\u1ea1i NTP, h\u00e3y ph\u00e2n t\u00edch c\u00e1c t\u00ednh n\u0103ng ch\u00ednh c\u1ee7a n\u00f3:<\/p>\n