ProHoster > Блог > labaran intanet > Sakin uwar garken ftp ProFTPD 1.3.8

Sakin uwar garken ftp ProFTPD 1.3.8

Bayan shekaru biyu da rabi na ci gaba, an buga mahimmancin sakin sabar ProFTPD 1.3.8 ftp, ƙarfin ƙarfin su shine haɓakawa da aiki, amma raunin shine gano lokaci-lokaci na raunin haɗari. A lokaci guda, ana samun sakin kulawa na ProFTPD 1.3.7f, wanda zai zama na ƙarshe a cikin jerin ProFTPD 1.3.7.

Babban sabbin abubuwa na ProFTPD 1.3.8:

  • An aiwatar da tallafi ga umarnin FTP CSID (Client/Server ID), wanda za a iya amfani da shi don aika bayanai don gano software na abokin ciniki zuwa uwar garken da kuma karɓar amsa tare da bayanai don gano uwar garken. Misali, abokin ciniki zai iya aika "CSID Name=BSD FTP; Version=7.3" kuma ya karɓi amsa "200 Name=ProFTPD; Version=1.3.8; OS="Ubuntu Linux; OSVer=22.04; Matsalar da ke da mahimmanci=1; DirSep=/;".
  • Aiwatar da ka'idar SFTP ta ƙara goyon baya ga tsawo na "gidaje-gida" don fadada ~/ da ~ mai amfani / hanyoyi. Don kunna shi, zaku iya amfani da umarnin "SFTPExtensions homeDirectory".
  • Ƙara goyon baya ga ciphers AES-GCM "aes128-gcm@openssh.com" da "aes256-gcm@openssh.com" zuwa mod_sftp, kazalika da jujjuyawar maɓalli ("SFTPOptions NoHostkeyRotation") ta amfani da kari na OpenSSH "hostkeys-00@openssh.com" da "host.com". Ƙara tallafi don kunna AES GCM ciphers zuwa umarnin SFTPCiphers.
  • Ƙara zaɓin "-enable-pcre2" don ginawa tare da ɗakin karatu na PCRE2 maimakon PCRE. An ƙara ikon zaɓar injin magana na yau da kullun tsakanin PCRE2, POSIX da PCRE zuwa umarnin RegexOptions.
  • An ƙara umarnin SFTPHostKeys don nuna maɓalli na maɓalli na rundunar da aka bayar ga abokan ciniki don tsarin mod_sftp.
  • Ƙaddara FactsDefault umarni don ayyana a sarari jerin "gaskiya" da za a mayar da su a cikin martanin FTP na MLSD/MLSD.
  • Ƙara umarnin LDAPConnectTimeout don ƙayyade lokacin ƙarewar haɗi zuwa uwar garken LDAP.
  • An ƙara umarnin ListStyle, wanda ke ba ku damar kunna fitowar jerin abubuwan da ke cikin kundin adireshi a cikin salo Windows.
  • An aiwatar da umarnin RedisLogFormatExtra don ƙara maɓallan ku da ƙimar ku a cikin log ɗin JSON wanda RedisLogOnCommand da umarnin RedisLogOnEvent suka haɗa.
  • An ƙara ma'aunin MaxLoginAttemptsFromUser zuwa umarnin BanOnEvent don toshe takamaiman haɗuwa na masu amfani da Adireshin IP.
  • An ƙara tallafin TLS zuwa umarnin RedisSentinel lokacin haɗi zuwa Redis DBMS. Umarnin RedisServer yanzu yana goyan bayan ingantaccen tsarin umarni na AUTH da aka yi amfani da shi tun Redis 6.x.
  • Ƙara goyon baya don ETM (Encrypt-Sai-MAC) hashes zuwa umarnin SFTPiges.
  • An ƙara tutar ReusePort zuwa umarnin SocketOptions don kunna yanayin soket na SO_REUSEPORT.
  • An ƙara tutar AllowSymlinkUpload zuwa umarnin Canja wurin Zaɓuɓɓuka don dawo da ikon loda zuwa hanyoyin haɗin yanar gizo.
  • Ƙara tallafi don "curve448-sha512" maɓalli na musayar algorithm zuwa umarnin SFTPKeyExchanges.
  • An ƙara ikon musanya ƙarin fayiloli a cikin allunan izini/ƙin yarda da su zuwa tsarin mod_wrap2.
  • An canza tsohuwar ƙimar ma'aunin FSCachePolicy zuwa "kashe".
  • An daidaita tsarin mod_sftp don amfani tare da ɗakin karatu na OpenSSL 3.x.
  • An ƙara tallafi don ginawa tare da ɗakin karatu na libidn2 don amfani da ƙasashen duniya sunayen yanki (IDN).
  • A cikin mai amfani na ftpasswd, tsohuwar algorithm don samar da hashes kalmar sirri shine SHA256 maimakon MD5.

source: budenet.ru

Sayi amintaccen masauki don shafuka tare da kariyar DDoS, sabar VPS VDS 🔥 Sayi ingantaccen masaukin yanar gizo tare da kariyar DDoS, sabar VPS VDS | ProHoster