{"id":8158,"date":"2024-10-27T10:11:22","date_gmt":"2024-10-27T10:11:22","guid":{"rendered":"https:\/\/csiag.eu\/?p=8158"},"modified":"2024-10-27T10:14:18","modified_gmt":"2024-10-27T10:14:18","slug":"starlink-pazinojums-par-apgalvoto-parkapumu","status":"publish","type":"post","link":"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/","title":{"rendered":"STARLINK - Pazi\u0146ojums par apgalvoto p\u0101rk\u0101pumu"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_83 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Satura r\u0101d\u012bt\u0101js<\/p>\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/#Fake\" >Viltota?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/#Klarung\" >Skaidrojums<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/#Warum_CGNAT\" >K\u0101p\u0113c CGNAT?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/#Losungsansatz\" >Risin\u0101juma pieeja<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/#WLAN_Passwort\" >WLAN parole<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/#MAC_Adress-Filter\" >MAC adre\u0161u filtrs<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Las\u012b\u0161anas laiks<\/span> <span class=\"rt-time\"> 2<\/span> <span class=\"rt-label rt-postfix\">protokols<\/span><\/span>\n<p>Starlink e-pasts inform\u0113 ar <em>Pazi\u0146ojums par apgalvoto p\u0101rk\u0101pumu<\/em>ka autorties\u012bbu p\u0101rk\u0101pums ir noticis, izmantojot j\u016bsu IP adresi un lejupiel\u0101d\u0113jot torrent.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Fake\"><\/span>Viltota?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>S\u0101kum\u0101, ja neesat veicis \u0161\u0101du darb\u012bbu, j\u016bs dom\u0101jat, ka e-pasta v\u0113stule ir viltota, un atturaties noklik\u0161\u0137in\u0101t uz zi\u0146ojumam pievienot\u0101s saites. Galu gal\u0101 j\u016bs esat piesardz\u012bgs.<\/p>\n\n\n\n<p>Tom\u0113r, ja piesl\u0113dzaties savam STARLINK kontam un dodaties uz atbalsta dienestu, \u0161o zi\u0146ojumu patie\u0161\u0101m redz\u0113siet. Pielikum\u0101 XML form\u0101t\u0101 ir sniegta inform\u0101cija par IP, datumu, laiku, lejupiel\u0101d\u0113 izmantoto programmat\u016bru un lejupiel\u0101d\u0113to failu.<\/p>\n\n\n\n<p>Tagad esat p\u0101rsteigts un neizpratn\u0113 par to, kas var\u0113tu b\u016bt uzlauzis j\u016bsu WLAN.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Klarung\"><\/span>Skaidrojums<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>E-pasts atbalsta dienestam beidzot atkl\u0101j probl\u0113mas c\u0113loni: STARLINK izmanto CGNAT (Carrier-Grade Network Address Translation).<br>CGNAT nodro\u0161ina, ka VIENA IP adrese ir pieejama vair\u0101kiem dal\u012bbniekiem internet\u0101. T\u0101tad, ja starp tiem ir VIENA meln\u0101 aita, aps\u016bdz\u0113ti tiks VISI dal\u012bbnieki, kas atrodas zem \u0161\u012bs vienas IP adreses.<\/p>\n\n\n\n<p>Ta\u010du ne tikai STARLINK izmanto CGNAT, ar\u012b citi pakalpojumu sniedz\u0113ji ir spiesti izmantot CGNAT ierobe\u017eot\u0101s adre\u0161u telpas d\u0113\u013c.<\/p>\n\n\n\n<p>Tom\u0113r tas noz\u012bm\u0113 ar\u012b to, ka \u0161\u0101diem \"pazi\u0146ojumiem par apgalvoto p\u0101rk\u0101pumu\" ir ap\u0161aub\u0101ms juridiskais svars, pamatojoties tikai uz pier\u0101d\u012bjumiem, ka \"k\u0101ds\" ir izdar\u012bjis noziedz\u012bgu nodar\u012bjumu no \"savas\" IP adreses nor\u0101d\u012btaj\u0101 laik\u0101...<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Warum_CGNAT\"><\/span>K\u0101p\u0113c CGNAT?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>Iemesls l\u0113mumam izmantot CGNAT ir fakts, ka 1981. gad\u0101 ieviest\u0101 IPv4 adre\u0161u telpa ar 4,3 miljardiem unik\u0101lo IP adre\u0161u jau ir vair\u0101k nek\u0101 izsm\u0113lusi savas robe\u017eas, t\u0101p\u0113c jau k\u0101du laiku tiek izmantots IPv6, kas nodro\u0161ina 340 se\u0161tiljonus (!) IP adre\u0161u. Tom\u0113r ne visi pakalpojumu sniedz\u0113ji jau ir ieviesu\u0161i IPv6, jo, lai var\u0113tu paral\u0113li apkalpot IPv4 un IPv6, visa tehnolo\u0123ija ir j\u0101p\u0101rveido uz t\u0101 saukto divu paku tehnolo\u0123iju. IPv4 izmanto 32 bitu adre\u0161u diapazonu, bet IPv6 - 128 bitu. Pv6 ar\u012b vairs nav nepiecie\u0161ams DHCP serveris.<\/p>\n\n\n\n<p>Tas, ka IP adrese laiku pa laikam main\u0101s, nav \u012bsti mierino\u0161i, jo \u0161aj\u0101 laik\u0101 var tikt izdar\u012bti vair\u0101ki autorties\u012bbu p\u0101rk\u0101pumi ...<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Losungsansatz\"><\/span>Risin\u0101juma pieeja<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p>T\u0101tad, ko lietot\u0101ji var dar\u012bt, lai pasarg\u0101tu sevi no \"melno aitu\" darb\u012bb\u0101m un to iesp\u0113jam\u0101m krimin\u0101l\u0101m sek\u0101m saist\u012bb\u0101 ar CGNAT?<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"WLAN_Passwort\"><\/span>WLAN parole<span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>\u013boti svar\u012bgs ir vienm\u0113r aktu\u0101lais padoms, ka paroles nedr\u012bkst b\u016bt viegli iegaum\u0113jamas, bet p\u0113c iesp\u0113jas sare\u017e\u0123\u012bt\u0101kas.<\/p>\n\n\n\n<p>Tom\u0113r ne katrs mar\u0161rut\u0113t\u0101js vai piek\u013cuves punkts \u013cauj izmantot visu rakstz\u012bmju kopumu, tostarp \u012bpa\u0161\u0101s rakstz\u012bmes. Vien\u012bg\u0101 iesp\u0113ja ir izmantot maksim\u0101lo iesp\u0113jamo rakstz\u012bmju skaitu - 63. Da\u017ei ra\u017eot\u0101ji ar\u012b samazina iesp\u0113jamo maksim\u0101lo rakstz\u012bmju skaitu l\u012bdz maz\u0101kam par rakstz\u012bmju skaitu, kas nor\u0101d\u012bts WPA2 standarta implement\u0101cij\u0101 (<em>Wi-Fi aizsarg\u0101t\u0101 piek\u013cuve<\/em>), pamatojoties uz novecoju\u0161o AES standartu (<em>Uzlabotais \u0161ifr\u0113\u0161anas standarts<\/em>), kas savuk\u0101rt balst\u0101s uz WEP standartu (<em>Vadu ekvivalences konfidencialit\u0101te<\/em>) uz <a href=\"https:\/\/de.wikipedia.org\/wiki\/IEEE_802.11a\" target=\"_blank\" rel=\"noopener\"><strong>IEEE 802.11<\/strong><\/a> noteikts rakstz\u012bmju skaits.<\/p>\n\n\n\n<p>Tas noz\u012bm\u0113, ka j\u0101izmanto maksim\u0101lais rakstz\u012bmju skaits un, ja nav at\u013cautas speci\u0101l\u0101s rakstz\u012bmes, j\u0101izmanto burtciparu parole, ja iesp\u0113jams, izmantojot umlautus un lielos un mazos burtus.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"MAC_Adress-Filter\"><\/span>MAC adre\u0161u filtrs <span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p>Cita, daudz dro\u0161\u0101ka metode, k\u0101 aizsarg\u0101ties pret neautoriz\u0113tiem WLAN lietot\u0101jiem, ir MAC adre\u0161u (48 bitu adrese, kas unik\u0101li un nemain\u012bgi tiek pie\u0161\u0137irta katrai t\u012bkla ier\u012bcei) filtr\u0113\u0161ana mar\u0161rut\u0113t\u0101ja WLAN iestat\u012bjumos.<\/p>\n\n\n\n<p>MAC filtra iestat\u012bjumi parasti ir pasl\u0113pti mar\u0161rut\u0113t\u0101ja vai piek\u013cuves punkta WLAN iestat\u012bjumos, bie\u017ei vien - sada\u013c\u0101 Papla\u0161in\u0101tie iestat\u012bjumi.<\/p>\n\n\n\n<p>Ja funkcija ir aktiviz\u0113ta, MAC adreses var vai nu aktiviz\u0113t no visu iepriek\u0161 piesl\u0113gto MAC adre\u0161u saraksta, vai ievad\u012bt un pie\u0146emt manu\u0101li.<\/p>\n\n\n\n<p>No \u0161\u012b br\u012b\u017ea piek\u013cuve Wi-Fi b\u016bs iesp\u0113jama tikai ier\u012bc\u0113m ar re\u0123istr\u0113t\u0101m MAC adres\u0113m. Tas nodro\u0161ina, ka neviena neautoriz\u0113ta ier\u012bce nevar piek\u013c\u016bt internetam, izmantojot savu IP adresi, pat ja ir uzlauzta Wi-Fi parole.<\/p>","protected":false},"excerpt":{"rendered":"<p><span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Las\u012b\u0161anas laiks<\/span> <span class=\"rt-time\"> 2<\/span> <span class=\"rt-label rt-postfix\">protokols<\/span><\/span>Starlink e-pasta v\u0113stul\u0113 ar pazi\u0146ojumu par apgalvoto p\u0101rk\u0101pumu j\u016bs tiekat inform\u0113ts, ka, izmantojot j\u016bsu IP adresi, ir noticis autorties\u012bbu p\u0101rk\u0101pums, kas izpau\u017eas k\u0101 torrent failu lejupiel\u0101de. Viltojums? S\u0101kum\u0101, ja neesat veicis \u0161\u0101das darb\u012bbas, j\u016bs dom\u0101jat, ka e-pasta v\u0113stule ir viltota, un atturaties noklik\u0161\u0137in\u0101t uz zi\u0146ojumam pievienot\u0101s saites. J\u016bs esat...&nbsp;<a href=\"https:\/\/csiag.eu\/lv\/blog\/2024\/10\/27\/starlink-notice-of-claimed-infringement\/\" rel=\"bookmark\">Las\u012bt vair\u0101k \"<span class=\"screen-reader-text\">STARLINK - Pazi\u0146ojums par apgalvoto p\u0101rk\u0101pumu<\/span><\/a><\/p>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_lmt_disableupdate":"","_lmt_disable":"","neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","footnotes":""},"categories":[2039,2868,358],"tags":[3701,3704,3698,2078,3700,2794,1050,3703,2792,3702,3697,3610,1182,2711,3699,3705,563,3708,3706],"class_list":["post-8158","post","type-post","status-publish","format-standard","hentry","category-internet","category-router","category-verbindung-zu-wlan-access-points","tag-adressraum","tag-alphanumerisch","tag-cgnat","tag-download","tag-ip-adresse-2","tag-ipv4","tag-ipv6","tag-mac-adress-filter","tag-mac-adresse-2","tag-mac-adressfilter","tag-notice-of-claimed-infringement","tag-passwort","tag-provider","tag-starlink","tag-torrent","tag-wep","tag-wlan","tag-wlan-einstellungen","tag-wpa2"],"modified_by":"Achim Goerner","_links":{"self":[{"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/posts\/8158","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/comments?post=8158"}],"version-history":[{"count":0,"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/posts\/8158\/revisions"}],"wp:attachment":[{"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/media?parent=8158"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/categories?post=8158"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/csiag.eu\/lv\/wp-json\/wp\/v2\/tags?post=8158"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}