LINUX.ORG.RU
ФорумTalks

Опять меня атакует провайдер

 , ,


3

1

Вряд ли это многим будет интересно, но на всякий случай держу в курсе. Казахтелеком в Нур-Султане подменяет сертификат при попытке зайти на https://rutracker.org/ (и, вероятно, некоторые другие сайты). Ещё несколько дней назад вышеупомянутый достойный сайт по https не открывался совсем, а по http открывался без проблем.

многобуков

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            e7:c6:d8:ff:97:5d:46:03:95:44:a3:c1:c0:3e:1d:7e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C = KZ, O = ISCA, CN = Intermediate
        Validity
            Not Before: May  2 16:03:17 2021 GMT
            Not After : Jul 31 16:03:17 2021 GMT
        Subject: CN = rutracker.org
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:80:70:49:32:04:7b:e1:9f:05:96:11:79:1a:
                    4d:7e:bf:d8:a7:65:42:91:28:fd:e3:63:28:40:10:
                    ae:c2:57:0b:73:fc:4d:c7:2c:cf:d1:28:8e:0e:a1:
                    f0:3d:84:53:2a:91:71:42:e4:bd:0f:f3:5c:86:06:
                    7b:6b:9b:b8:2c:06:d8:fa:19:12:72:43:d0:ba:71:
                    b9:9f:8e:2b:d2:fa:ce:3f:f5:e4:30:2f:e8:34:29:
                    52:1a:44:66:44:f9:4b:2c:73:06:fe:17:eb:10:54:
                    1b:8f:07:9c:cb:23:15:dd:81:73:39:31:64:6f:2c:
                    45:f3:a6:12:bc:24:a1:83:a7:c2:ef:23:e1:06:c0:
                    a4:52:f6:63:00:0f:33:d5:47:11:9f:dd:59:4c:2f:
                    f2:3c:10:e7:11:7e:6f:dd:e6:72:83:34:dd:ea:1d:
                    08:ec:5f:c7:ef:42:72:8a:b2:a7:a9:90:6d:d5:5f:
                    37:49:f6:91:68:83:2f:05:a5:2a:5f:0e:9e:3d:3d:
                    c5:9d:7f:0d:7b:df:8d:3c:ac:9c:4b:8d:f3:e3:34:
                    5c:8a:18:c9:ac:08:ae:b5:2f:5e:55:2c:31:dc:53:
                    79:a5:4a:a1:32:c5:d7:ee:4c:d2:6e:75:98:a1:e0:
                    9b:26:2d:a3:aa:13:05:15:8f:6c:3b:95:9a:f7:7a:
                    ad:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                F3:D1:9C:A6:73:5E:B7:24:A5:65:A5:3B:4A:80:B9:BE:EC:41:AF:9F
            X509v3 Authority Key Identifier: 
                keyid:DF:15:4C:1F:E4:DB:5C:A5:78:9E:08:22:15:42:59:B0:B6:66:A7:FE
                DirName:/CN=Information Security Certification Authority/O=ISCA/C=KZ
                serial:5F:15:4C:1F:E4:DB:5C:A5:78:9E:08:22:15:42:59:B0:B6:66:A7:FE

            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Key Usage: 
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:rutracker.net, DNS:rutracker.nl, DNS:rutracker.org
    Signature Algorithm: sha256WithRSAEncryption
         a5:48:85:33:8c:e4:0c:02:08:d3:77:cb:57:a0:96:8d:92:fa:
         e2:7a:93:ff:e0:ae:57:5a:fa:6c:6c:f0:a3:cb:77:19:0a:98:
         f5:da:cf:2f:1e:11:f8:28:d5:9f:28:71:fd:55:36:8c:8b:23:
         bd:4e:da:9c:12:01:3a:77:76:e3:ff:c7:f8:32:7e:7f:37:e2:
         9d:50:5c:5b:49:c1:a6:1b:0f:42:22:f9:fe:d0:23:9e:ab:2f:
         f3:d0:85:ca:62:9f:28:02:f6:a4:4f:0c:61:96:b7:e7:05:3d:
         f7:f3:de:d1:4b:49:fb:bf:d2:50:f7:f8:f7:56:27:38:92:ca:
         29:fd:3a:45:63:61:97:a5:53:ad:87:62:c9:22:b0:7b:9d:f7:
         50:65:15:cd:35:ce:8b:75:ff:41:a6:1a:85:be:23:f8:ac:72:
         bc:44:bc:99:f8:46:72:4e:eb:39:76:f4:d8:37:e6:43:1c:a8:
         e4:25:e5:f5:92:7d:e8:48:1b:85:cf:ae:a9:21:72:9c:46:4b:
         a4:36:bb:1d:38:60:42:2a:e4:48:9c:da:83:19:13:fe:16:7f:
         0d:ed:a4:6e:83:e2:34:a4:c0:b1:41:71:07:b6:52:e0:19:32:
         5b:8c:31:69:8e:82:37:95:ab:ac:fb:f7:0a:bc:c8:1e:a8:3b:
         53:95:9a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5f:15:4c:1f:e4:db:5c:a5:78:9e:08:22:15:42:59:b0:b6:66:a7:fe
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN = Information Security Certification Authority, O = ISCA, C = KZ
        Validity
            Not Before: Jun 18 12:54:34 2021 GMT
            Not After : Sep  1 12:54:34 2021 GMT
        Subject: C = KZ, O = ISCA, CN = Intermediate
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:30:cf:c6:a9:9b:dd:b1:ce:ab:38:27:35:cc:
                    b9:88:45:04:65:70:46:ae:96:f7:43:35:d3:52:e0:
                    3a:1e:4b:64:3a:59:f1:b6:fa:87:ab:b3:df:5e:d8:
                    66:bd:87:89:1f:29:40:43:16:e9:d4:5a:6c:e9:38:
                    5f:cb:8e:a2:f3:6c:6f:0d:a7:53:22:e3:d5:82:dc:
                    5c:3a:e3:83:b3:c3:62:4e:46:8c:a4:9d:84:9e:c2:
                    49:74:f0:7e:e9:c9:8f:be:2a:1d:d3:3a:5b:a6:57:
                    d6:1f:45:40:0c:83:95:70:f1:f5:fa:ce:a6:5f:92:
                    c2:bc:b2:68:4a:df:64:14:12:39:b9:35:95:1e:b3:
                    ea:60:17:be:65:35:95:7c:e6:ac:4b:87:9b:22:5a:
                    90:7a:69:00:e3:ba:7b:3e:96:71:09:5a:59:e6:7f:
                    30:fe:34:73:38:b1:8c:14:68:cc:9f:9f:e3:12:92:
                    af:96:94:5b:59:29:30:12:07:47:f1:7a:2d:45:7c:
                    c0:ca:9f:04:2b:59:ee:17:cd:8c:85:35:97:fe:c1:
                    de:5c:47:ef:a8:1a:e0:e9:d2:3d:5f:b9:a1:71:8f:
                    bb:05:9f:46:78:9a:d1:46:11:af:13:c1:cb:2b:47:
                    0c:10:74:9a:50:1d:f6:ad:5c:8c:55:48:50:e7:f4:
                    1b:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Subject Key Identifier: 
                DF:15:4C:1F:E4:DB:5C:A5:78:9E:08:22:15:42:59:B0:B6:66:A7:FE
            X509v3 Authority Key Identifier: 
                keyid:25:44:98:FC:AA:DD:96:DE:51:81:47:2E:D0:7B:16:3F:F7:9E:6A:D3
                DirName:/CN=Information Security Certification Authority/O=ISCA/C=KZ
                serial:25:44:98:FC:AA:DD:96:DE:51:81:47:2E:D0:7B:16:3F:F7:9E:6A:D3

    Signature Algorithm: sha256WithRSAEncryption
         a1:7e:b3:3a:f2:61:a6:c0:e6:32:90:88:e3:43:f4:b1:c0:2a:
         b7:70:8d:f2:14:df:4c:ec:91:33:29:a3:ad:9d:44:87:21:dc:
         39:72:b6:97:59:0c:4c:74:f2:6e:76:50:fb:9f:4a:95:dd:d4:
         01:c1:47:54:5c:37:35:17:07:3c:14:d9:79:d5:94:28:c2:52:
         e6:b1:d0:34:71:9f:10:b7:bc:70:dc:d5:9f:e3:91:7f:4d:16:
         f4:ae:24:5f:f5:11:95:a8:88:90:78:a8:ff:43:a7:b6:0a:5a:
         c6:c0:3a:22:63:7a:61:30:da:0f:6a:e8:f3:a8:16:79:2f:16:
         9e:2e:7b:db:68:59:79:4b:6d:45:1d:2e:8b:bc:83:e0:ff:86:
         4c:82:61:92:28:7b:bc:f4:72:b2:3a:50:d0:0a:79:8f:db:27:
         2b:ac:6a:20:c1:14:cd:8c:4c:ba:4e:09:f1:2f:c7:dc:40:d2:
         66:45:1a:3e:46:e1:ab:61:57:1b:3a:14:2b:c3:21:ec:24:4a:
         84:28:b8:09:02:49:56:14:22:1d:92:f1:ea:4b:f0:b8:11:7f:
         ca:70:bc:16:08:82:6d:06:49:65:b6:da:e1:5d:8a:e4:0d:22:
         11:92:56:30:e2:bb:ab:86:c8:f8:36:20:a2:2b:d7:71:52:d0:
         1b:6a:1e:54:09:8b:a3:d1:32:3d:78:c2:59:20:ff:e8:8e:c5:
         23:75:74:41:d8:83:fd:e2:1e:b5:5a:d1:59:9f:1f:ad:04:89:
         83:86:ee:2b:d4:ce:da:89:65:5e:b1:db:18:fe:d8:9a:df:48:
         3f:bb:fc:70:c8:fe:62:cd:50:c7:ef:62:44:ab:88:c9:16:a0:
         52:7d:fb:ee:d5:37:25:36:a0:cb:8a:0a:aa:04:59:75:29:a0:
         d0:1f:70:05:77:ba:4f:d5:1a:cd:ce:5f:7c:82:31:c4:10:80:
         44:9a:2f:e7:3b:32:df:fc:87:d1:0a:59:5a:7c:2b:d2:24:8d:
         8c:a3:57:d5:32:bb:71:ed:4e:a3:ad:30:f9:56:14:2c:b1:37:
         d6:09:a8:c6:3a:ad:2b:c0:6a:e5:90:12:ed:a5:c9:ee:00:40:
         c7:8c:2a:1d:c9:f2:10:f6:f0:f2:92:8a:2a:d5:e4:21:01:21:
         29:e8:ac:f0:f3:d0:a7:52:f3:0f:7e:ea:8b:2a:14:27:14:e4:
         41:13:ba:93:57:09:22:bd:20:87:67:b8:f3:d8:f7:10:74:e1:
         30:ca:8b:e2:c4:e1:fb:19:5d:30:35:e4:9f:24:82:32:b7:1a:
         44:46:53:3a:cf:39:96:95:b2:dc:1c:21:7d:7b:a3:90:3c:fc:
         a2:8b:11:61:06:cc:c7:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Корневой сертификат не высылают. Интересно, где его взять. Прошлый раз на сайтах провайдеров публиковали, но его браузеры в чёрный список внесли, тут Subject отличается, значит новый выпустили.

★★★★★

Последнее исправление: Legioner (всего исправлений: 1)
Ответ на: комментарий от Nastishka

Это если трафик маскировать под обычный TLS на 443. По дефолту OpenVPN палится на раз-два.

xenith
()

Ходи на сайт через номерной айпи.

burato ★★★★★
()
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.