sabon batu , Ƙaƙwalwar uwar garken SSH mai lasisi na MIT da abokin ciniki da aka yi amfani da shi da farko akan tsarin da aka saka kamar na'urorin sadarwa mara waya. Dropbear yana da ƙarancin amfani da ƙwaƙwalwar ajiya (lokacin da aka haɗa shi tare da uClibc yana ɗaukar 110kB kawai), ikon kashe ayyukan da ba dole ba a matakin ginin, da goyan baya don gina abokin ciniki da sabar a cikin fayil guda ɗaya mai aiwatarwa, kama da akwatin busybox. Dropbear yana goyan bayan isar da X11, yana dacewa da fayil ɗin maɓallin OpenSSH (~/.ssh/authorized_keys) kuma yana iya ƙirƙirar haɗe-haɗe da yawa tare da turawa ta hanyar mai masaukin baki.
В :
- Ƙara goyon baya don Ed25519 sa hannu na dijital algorithm a cikin maɓallai da maɓallan izini.
- Ƙara goyon baya don ƙa'idar tabbatarwa dangane da ChaCha20 rafi cipher da Poly1305 ingantattun saƙon algorithms wanda Daniel Bernstein ya haɓaka.
- Ƙara goyon baya ga tsarin sa hannu na dijital na rsa-sha2, wanda, saboda ƙarshen goyon bayan sha-1, ba da daɗewa ba zai zama wajibi ga OpenSSH (maɓallan RSA na yanzu za su iya aiki tare da sabon tsari ba tare da canza maɓalli / izini_keys).
- An maye gurbin aiwatar da curve25519 da mafi ƙaƙƙarfan siga daga aikin TweetNaCl.
- Ƙara tallafi don AES GCM (an kashe ta tsohuwa).
- An kashe ta tsohuwa sune CBC ciphers, 3DES, hmac-sha1-96, da tura x11.
- An warware matsalolin daidaitawa tare da IRIX OS.
- An ƙara API don tantance maɓallan jama'a kai tsaye maimakon amfani da maɓallai masu izini.
- An daidaita rashin lafiya a cikin SCP , wanda ke ba da damar canza haƙƙin samun dama ga adireshin da aka yi niyya lokacin da uwar garken ta dawo da adireshi tare da fanko suna ko lokaci. Lokacin karɓar umarni "D0777 0 \n" ko "D0777 0 .\n" daga uwar garken, abokin ciniki ya yi amfani da canjin haƙƙin samun dama ga kundin adireshi na yanzu.
source: budenet.ru