Mini web server projesi - Sayfada ikon göstermek.

Başlatan z, 14 Ekim 2016, 18:14:55

Yazdır
Aşağı git Sayfa 1 2 3
Kullanıcı Eylemleri

muhittin_kaplan

#30
15 Ekim 2016, 20:28:17
yok hocam ip felan gitmez resmi barındıran sayfaya. img source derken sen browser a resmi buradan al dersin. bunu client da yapar zaten. senin MCU ile uzak yakın alakası olmaz.

z

#31
15 Ekim 2016, 20:44:03 Son düzenlenme: 15 Ekim 2016, 20:46:16 z
Ben emin değilim. Client kendi başına bir siteden resim dosyası  çekiyorsa adres satırına resim linkini yazmıştır. Yok adres satırına yazılmamış html kod içindeki linkten dolayı gidiyorsa linki veren serverin bilgileri loglama amacıyla gidiyor olabilir.

Denemek ve görmek basit aslında internete MAC üzerinden çıktığım için wireshark ile bakamıyorum. PC'den çıkıyor olsaydım şak diye söylerdim.
Bana e^st de diyebilirsiniz.   www.cncdesigner.com

ErsinErce

#32
15 Ekim 2016, 21:38:09 Son düzenlenme: 15 Ekim 2016, 21:40:33 ErsinErce
referer kısmından gelir.

websitelerinde resim engelleme bu şekilde yapılmaktadır.
resim o sitede gözükürken siz direk erişmeye çalıştığınızda veya başka bir site üzerinden görüntüleme çalıştığınızda görüntülenmez.


engerex

#33
15 Ekim 2016, 22:47:28
Alıntı yapılan: Burak B - 15 Ekim 2016, 19:06:10
.....
Gömülü bir cihazdan bahsediyoruz realmler çok farklı. Olmasa bile güvenlik açısından doğru değil.
Bu kadar küçük gömülü sistemde logodan hariç raster grafik pek olmamalı. Ama bu çalışmadaki amaç belli.
Google gibi firmaların kullandığı bazı standart kütüphaneleri bazı steler kendi serverlerı yerine Googledan çekiyor. Hem bant genişliği tasarrufu hem hız. Eğer Google bir değişikliğe giderse sitenin görsel tasarımı çökecek. Risk göze alınıyor.
Burada da resimler imgur gibi siteye yüklenirse ve dosyalar silinmese bile site erişime kapatılırsa gözüken bir şey olamayacak. Ama bu projede güvenlik riski ne olabilir?

Burak B

#34
15 Ekim 2016, 22:49:33 Son düzenlenme: 15 Ekim 2016, 23:02:43 Burak B
Sürekli spesifik bir 3. parti siteden resim çektiğiniz için;

1- Cihaz(lar)ınızın IP adresini alırlar. IP adresinizle yapılabilecek her türlü saldırı uygulanabilir.
2- Cihaz(lar)ınızı kullanacak kişinin browserına ve bunla ilintili işletim sistemine uygulanabilecek mevcut her türlü saldırı uygulanabilir.

En basiti eğer kullanılan browserın image handling için bilinen bir açığı varsa bunu kullanarak sizin linkini kullandığınız resim özel craft edilmiş bir resim ile değiştirilir. Sonrasında siz veya cihazınıza bağlanan birisi browserından cihazınızın web sayfasını açtığında. Geçmiş olsun. Tüm dosyalarınız kriptolandı. Hadi şu bitcoin hesabına şu kadar para yatırın da size bir key verelim derler. Çok mu ütopik ve filimlerden fırlamış gibi. Bence değil. :)

Benim söylediklerim sadece @z' nin uğraştığı şey için geçerli değil. O konuya gelinecek olursa kim ne yapsın @z' nin yazdığı örneği.  Alındırmak istemem. Ama gerçekler böyle yalan söylemeye gerek yok. Büyük bir projede veya yaygın bir sistemde kullanılmaya başlanırsa işler çok değişir tabi.

Mesela bakın önceki mesajlarda linkini verdiğim botnet örneği. 1TB' a yakın saldırı yapabiliyor o botnet ve bu buzdağının sadece görünen yüzü.

Şimdi küçük şeyler elbette göze çok gelmez ama önlem alınmazsa alışkanlık haline gelir ve alışkanlıklardan vazgeçmek zordur. Buda felaketlerin önünü açabilir. Çok felsefe yapmak istemiyorum. Ben sadece basit anlamda bir uyarmak istedim.

@engerex
Alıntı YapBu kadar küçük gömülü sistemde logodan hariç raster grafik pek olmamalı.
Haklısın aşağı yukarı bende bunu demeye çalıştım birkaç kez. Ama çok karışık yazıyorum sanırım. Dışarıdan da resim v.s. çekmeyin ayrıca. Gerekirse kullanmayın. CSS, HTML5 v.s. daha güzel şeyler yapabiliyor.
"... a healthy dose of paranoia leads to better systems." Jack Ganssle

muhendisbey

#35
15 Ekim 2016, 23:07:46 Son düzenlenme: 15 Ekim 2016, 23:23:24 muhendisbey
Web'e çıkmasına çıkıyorsun da bu profesyonel bir yaklaşım değil.
Atıyorum basit bir arayüzü olan bir router benzeri bir cihaz geliştirdin. Sistemin bir hoşgeldin sayfası var ve internetin olup olmadığını bilmiyorsun ya da ayarlarını henüz yapmadın.
"internete çıkmazsam şirket logomu göstermem" demek bana mantıksız geliyor.

Risk mevzusuna gelirsek:
Resim değiştirilebilmesi başlı başına riskin en büyüğü. Hoş olmayan iki kare eklerler sonra dünyaya rezil olabilirsin. Doğrudur belki işlemciye müdahale etmek baya baya uğraş gerektirir belki bootloader işlemleriyle yapabilirler de bilemiyorum.
mesaj birleştirme:: 16 Ekim 2016, 13:16:40

Buldum
https://en.wikipedia.org/wiki/Data_URI_scheme#Web_browser_support

http://www.w3schools.com/html/tryit.asp?filename=tryhtml_default
burada deneyebilirsiniz

<!DOCTYPE html>
<html>
<head>
<title>Page Title</title>
</head>
<body>

<img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAUA
AAAFCAYAAACNbyblAAAAHElEQVQI12P4//8/w38GIAXDIBKE0DHxgljNBAAO
9TXL0Y4OHwAAAABJRU5ErkJggg==" alt="Kirmizi Nokta" />

<h1>This is a Heading</h1>
<p>This is a paragraph.</p>

</body>
</html>

mesaj birleştirme:: 15 Ekim 2016, 23:23:23

Yine mesaj yazıyorum ama bu da benim yaptığım
http://www.motobit.com/util/base64-decoder-encoder.asp
bu site üzerinden resmimi base64'e dönüştürdüm

<!DOCTYPE html>
<html>
<head>
<title>Page Title</title>
</head>
<body>

<img src="data:image/jpg;base64,/9j/4AAQSkZJRgABAQAAAQABAAD//gA7Q1JFQVRPUjogZ2QtanBlZyB2MS4wICh1c2luZyBJSkcg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=" alt="Kirmizi Nokta" />

<h1>This is a Heading</h1>
<p>This is a paragraph.</p>

</body>
</html>


Zulmü alkışlayamam, zalimi asla sevemem; Gelenin keyfi için geçmişe kalkıp sövemem.

muhittin_kaplan

#36
16 Ekim 2016, 00:04:27 Son düzenlenme: 16 Ekim 2016, 00:07:16 muhittin_kaplan
Ben anlamiyorun lutfen acik acik anlatiniz.
Benim hazirladigim html bir sayfada nasil olur verdigim bir link bir tanimladigim source bana atak olarak doner?
Html browser de yorumlanmiyir mu
O zaman harici link de vermeyelim

ErsinErce

#37
16 Ekim 2016, 00:53:52
tanımladığınız source art niyetliyse dönebilir, tanıladığınız source hacklendi ve hackleyen kişiler art niyetliyse dönebilir

şu sitelerin altlarında sayaç olarak gördüğünüz resimler sizin o siteye ait cookie, kullandığınız tarayıcı işletim sistemi vs ne varsa logluyor, buna göre bir resim oluşturup geri gönderiyor.

eskiden bu şekilde mail görüldü mü kontrolü yapılıyordu şimdi nispeten engellendi ama dolaylı yoldan yine olabiliyor.

sitenize mümkünse hiçbir yerden script resim vs eklemeyin. ve link verirken aşağıdaki  arama sonucunda çıkan servislerin kullandığı yapıyı kullanın.

https://www.google.com.tr/search?q=dereferer

ek olsun

bu kendi serverımda kullandığım referans silme scripti site dışındaki bağlantılara giderken bu dosyaya sorgu çektiriyorum.

<?php
echo("<html><body><form name="form1" id="form1" method="post" action='data: text/html,<html><meta http-equiv="refresh" content="0; url=&#39;".htmlspecialchars($_SERVER['QUERY_STRING'])."&#39;"></html>'></form><script type="text/javascript">document.form1.submit();</script></body></html>");
?>

minicihazlar

#38
20 Aralık 2016, 15:35:54
Yazışmalara uymayacak belki ama paylaşmak istedim. Şurda güzel bir http server örneği var. Gördüğüm kadarıyla Zilog Z8 ve Wiz5100 kullanılmış.

http://minicihazlar.blogspot.de/2015/12/zilog-z8f6423-ve-wiznet-w5100-ile.html
Yazdır
Yukarı git Sayfa 1 2 3
Kullanıcı Eylemleri