Ka’idojin Mu’amala da “Password” (9)

Ga kashi na tara cikin jerin kasidun dake nazari kan “Kalmar Sirri”, wato “Password” da mahimmancinsa ga mai mu’amala a shafin Intanet. A sha karatu lafiya.

142

Gidan Yanar Bogi (Phishing)

Daga cikin hanyoyi shahararru, kwantattu wadanda ba kowa ke iya gane su ba, akwai yin amfani da gidan yanar bogi don sace “Password” din mutane, cikin sauki.  Wannan dabara mummuna ita ake kira “Phishing” a ilimin kimiyyar sadarwar zamani.  Kuma hakan na yiwuwa ne ta hanyar kirkirar shafin karya da a harshen kimiyyar sadarwa da tsaron bayanai ake kira: “Web Site Cloning.”  Wannan hanya ta sace “Password” din jama’a tana da shahararrun fuskoki guda biyu ne, kuma kadan cikin kadan na mutanen dake mu’amala da shafukan Intanet a duniya ne suka san wadannan hanyoyi.  Sauran jama’a dai sai Allah, wai Dan daudu a kabari.

Fuska ta farko ita ce gina shafukan Intanet sanannu, wadanda suka san galibin jama’a na ziyartarsu a kai-a kai don bukatun kasuwanci da hada-hadar kudi.  Ire-iren wadannan shafuka sun hada da gidajen yanar sadarwa na bankuna, da na makarantu (shafukan da ake biyan kudade), da shagunan saye da sayarwa.  Wannan shi ake kira “Website Cloning.”  Da zarar sun gina shafi mai kama da na kamfanin da suke son jawo hankulan mutane gare shi, sai su masa rajista da adireshi mai kama da wanda aka sani.  Misali, suna iya gina shafin yanar sadarwa na bankin GTB (Guaranty Trust Bank).  Komai iri daya da na bankin.  Adireshin shafin ma sai su zabi wanda ya kusan dacewa da na bankin.  Idan Allah bai s aka hardace adireshin gidan yanar sadarwar bankin ba, kana shigar da nasu kawai za a zarce da kai wancan na bogin.

Abin da suke bukata shi ne bayananka; suna (username), da kalmar izinin shiga (password), watakila da lambar taskar ajiyarka, idan banki ne. Da zarar ka shigar da wadannan bayanai a shafin da aka tanada, za su zarce ne zuwa rumbun adana bayanan barawon, a cikin kwamfutar dake dauke da gidan yanar sadarwar, maimakon na bankin da kake zato ko kake da tabbacin a shafinsu kake.   Daga nan zasu kwashe bayanan cikin sauki don cin ma manufar da suke bukata ba tare da wata wahala ba.

Fuska ta biyu ta kunshi aiko wa mutane sakonnin bogi (Spam Mails) ta akwatin Imel dinsu, masu dauke da Rariyar Likau (Web Link).  Wannan rariyar likau na dauke ne da bayanai masu jan hankali.  Misali, a sakon Imel din za a ce maka ga wata fa’ida nan misali, idan kana bukatar kaiwa gare ta, to, ka latsa rariyar likau dake kasa.  Kana matsawa, sai a zarce da kai wancan shafi na bogi (cloned site), inda za ka shigar da bayanai.   Na san da yawa cikin masu mu’amala da Imel, kai da ma Facebook a yanzu, sun sha samun sakonnin Imel daga wasu mutane da basu taba saninsu ba, masu dauke da labarai na tausayi dake bukatar taimako, ko kuma alkawuran kudi masu tsoka, ko kuma, a daya bangaren, ace maka bankinka na bukatar ka sabunta bayanan katinka na ATM.

Masu wannan dabara ta karshe sukan lika rariyar likau a kasan bayanan, sai a ce ka matsa rariyar don isa ga fam din da ake son ka cika.  Kwamfa!  Da zarar ka matsa, akwai wata fasaha mummuna dake makale a jikin bayanan daka matsa.  Wannan fasaha dai ba wani abu bane face yar karamar manhaja ce da aka gina ta da dabarun gina manhajar kwamfuta mai suna “Java Script.”  Bayanan dake cikin wannan fasaha dai aikinsu shi ne, da zarar ka matsa rariyar da suke dauke a cikinta, sai su shige cikin manhajar lilo da kake amfani da ita (wato “Browser”), kai tsaye.  A ciki za su ci gaba da zama.  Shafin da zai budo maka ba wani abin kirki a ciki.  Daman dabara ce da yaudara.  To meye matsalar wannan fasaha ta “Java Script” da ta shige cikin masarrafar lilo?

Matsalarta ita ce, za ta tabbata ne a cikin manhajar lilonka, da’iman.  Kuma ba za ka iya gane samuwarta a ciki ba, ko kadan.  Sabanin kwayar cutar kwamfuta mai sumarwa ko haukatar da kwamfuta, wannan fasaha tana aikin leken asiri ne a kwamfutar.  Duk shafin da ka shiga, ka bayar da suna (username) da kalmar izinin shiganka (password), ko ka shigar da lambobin katin ATM dinka, nan take wannan fasaha za ta rika aika wa magininta wadancan bayanai, kai tsaye.  Wannan manhaja ita ake kira “Keylogger,” saboda tana aikawa da bayanan ne daidai lokacin da kake shigar dasu da zarar ka latsa maballan kwamfuta ko wayar salularka.  Ita ce masifar da tafi kowane kwayar cutar kwamfuta hadari a duniyar kimiyya da fasahar bayanai na zamani.  Tana iya kwashe shekaru iya zamanin da kwamfutar ke raye, tana cin karenta babu babbaka.  Wannan na daga cikin hanyoyin satar “Password” masu sarkakiya wanda kwararrun barayi a duniyar yanar gizo suka fi amfani da ita.

- Adv -

Amfani da Shafin Google

Manhajar “Matambayi Ba Ya Bata” (Search Engine) dake shafin kamfanin Google yana da matukar mahimmanci wajen neman bayanai nau’uka daban-daban.  Ba bayanai na rubutu kadai ba, hatta alamomin rubutu da ramzozi, duk ana iya binciko su, a samu bayanai kan hakikaninsu.  Hada har da hotuna, da sauti, da kuma bidiyo, duk suna nan birjik.  An gina wannan manhaja ne a farkon lamari a shekarar 1995, sadda masu kamfanin (Larry Page da Sargey Brin) suke karatun digirinsu na uku a jami’ar Standford dake kasar Amurka.  Sannan kowannensu bai shige shekara 25 ba.  Wannan manhaja mai suna “Google Bot” yana yawo ne rariya-rariya, loko-loko a giza-gizan sadarwa na duniya, don kalato rariyar likau dake sadar da gidajen yanar sadarwa daga bangarorin duniya daban-daban.  Da zarar ya kalato wadannan bayanai sai ya jera su a rumbun adana bayanai na kamfanin, wato “Servers.”  A halin yanzu kamfanin ya bunkasa, sanadiyar ingancin wannan manhaja wajen gudanar da aikinsa.

Tsarin neman bayanai a Google ya kasu kashi biyu, a mahangar kwararru.  Akwai tsarin neman bayanai n agama-garin mutane, wato ka shigar da kalma ko rabin jimla ko taken kasidar da kake bukata, nan take a aiko maka da bayanan da suka dace da bukatarta.  Wannan shi ne abin da galibin mutane suke yi, ko hanyar da galibin mutane suka fi bi wajen neman bayanai a shafin Google.  Sai dai a karkashin wannan tsari, akwai nau’ukan bayanan da ba za ka iya samu ba ko da ka shigar dasu, kamar adireshin Imel din mutane.  In dai ta wannan hanya ce ta gama-gari, ba za ka samu ba.  Domin hakan ya saba wa ka’idar da kamfanin ke gundanuwa a kai, kuma shiga hakkin wasu ne.  Amma sai dai wannan ka’ida ce gurguwa, domin abin da wannan manhaja ta “Google Bot” ke kalatowa ya wuce gona da iri.

Tsari na biyu shi ne wanda kwararru ke amfani dashi wajen kalato bayanan sirri kuma masu mahimmanci, wadanda suka dace da abin da mai bincike ko tambaya ke so.  Wannan tsari ba kowa ya sanshi ba.  Idan aka kasa masu ne amfani da manhajar Google Bot zuwa kashi 100, kashi 95 basu san wannan tsari ba.  Ta amfani da wannan tsari da ake kira “Google Keyword Search Terms,” kana iya samun adireshin Imel din mutane, da “Password” dinsu, da lambobin titunan unguwanni, da lambobin katin adashin bankin (Credit Card Number) mutane da dai sauran bayanan sirri.  Kalmomi ne da alamomin neman bayanai da kamfanin Google ya samar, wadanda wancan manhaja tasa mai suna “Google Bot” ke iya fahimtarsu (ko ma yake amfani dasu wajen kalato bayanai).

Ta amfani da wannan dabara na biyu ne wasu daga cikin ‘yan dandatsa ke amfani wajen kalato “Password” din da a baya wasu suka sace, ko wadanda ke makare a Uwar garken wani gidan yanar sadarwa, ko kuma wadanda ke cikin wani tsohon gidan yanar sadarwa da aka daina amfani dashi a giza-gizan yanar duniya.  Babban tasirin wannan hanya wajen zakulo bayanan sirri ya ta’allaka ne ga karfin manhajar “Google Bot” wajen iya shiga lungu-lungu a shafukan yanar sadarwa, da zimmar zakulo haram da halas.  Na san mai karatu ya fahimci abin da nake nufi a nan; ba sai an yi karin bayani ba.

Amfani da Manhajojin Kmamfuta na Musamman

Akwai manhajojin kwamfuta na musamman da aka gina don satar “Password” kai tsaye.  Akwai wadanda ke taimakawa wajen gano “Password” ta hanyar kirdado.  Wannan tsari shi ake kira “Brute Force.”   Akwai wadanda ke iya kwance “Password” din da aka layance shi.  Bayani kan wadannan manhajoji na tafe filla-filla a sashen dake tafe mai take: “Tsarin Adana “Password” a Kwamfuta.”  Abin nufi a nan shi ne, barayin “Password” na dada habbaka ne sanadiyyar yawaita da ingantuwan manhajojin satar “Password” da ake ginawa a yanzu.

Wadannan manhajoji, abin mamaki, kana iya samunsu kyauta babu ko sisin kwabonka!  Illa dai galibinsu na bukatar kwarewa ta musamman wajen sarrafa su ne, tare da hakuri da juriya da lokaci, don samun abin da ake nema.  Barayin “Password” duk sun mallaki wadannan dabi’u, tunda sun san abin da suke nema, duk da haramcinsa.

- Adv -

You might also like
Leave A Reply

Your email address will not be published.