ProHoster > Blog > xov xwm hauv internet > Microsoft tau tshaj tawm Azure kev faib tawm. Linux 3.0.20241101

Microsoft tau tshaj tawm Azure kev faib tawm. Linux 3.0.20241101

Microsoft tau tso tawm qhov hloov tshiab rau nws qhov kev faib tawm Azure. Linux 3.0.20241101, продолжающее развитие сформированной в августе стабильной ветки 3.0. Дистрибутив развивается в качестве универсальной базовой платформы для Linux-окружений, используемых в облачной инфраструктуре, edge-системах и различных сервисах Microsoft. Наработки проекта распространяются под лицензией MIT. Сборки пакетов формируются для архитектур aarch64 и x86_64. Размер установочного образа 751 МБ.

Ntawm cov kev hloov nyob rau hauv lub tshiab version:

  • Rau cov tshuab raws li ARM architecture, kev txhawb nqa rau FF-A (Firmware Framework for Arm A-profile) specification tau ntxiv.
  • Cov intel_ifs (In-Field Scan) kernel module suav nrog, tso cai rau koj los khiav cov kev ntsuas CPU qis qis ntawm Intel cov txheej txheem uas tuaj yeem txheeb xyuas cov teeb meem uas tsis raug kuaj pom los ntawm cov cuab yeej txheem raws li cov lej kho qhov yuam kev (ECC) lossis cov khoom sib xws.
  • В загрузчик GRUB2 добавлены SBAT-записи для Fedora Linux.
  • Thaum tsim cov ntsiav, CONFIG_X86_AMD_PLATFORM_DEVICE teeb tsa tau qhib, uas kho AMD nti tshwj xeeb ACPI cov khoom siv raws li tus qauv platform, xws li I2C, UART thiab GPIO.
  • Kev ua haujlwm ntawm iptables cov lus txib yog ua kom ntseeg tau los ntawm kev txhais cov cai rau hauv nftables bytecode (ntxiv rau iptables-legacy, iptables-nft pob yog siv).
  • Cov qauv tshiab ntawm cov pob khoom, suav nrog lub kernel Linux 6.6.57, Go 1.23, OpenIPMI 2.0.36, libpcap 1.10.5, vim 9.1.0791, mysql 8.0.40, clamav 1.0.7, cloud-init 24.3.1, php 8.3.12, mdadm 4.3, libarchive 3.7.7.

Azure Kev Faib Khoom Linux Muab ib pawg me me, cov qauv ntawm cov pob khoom tseem ceeb uas ua haujlwm ua lub hauv paus rau kev tsim cov thawv ntim khoom, cov chaw tswj hwm, thiab cov kev pabcuam khiav ntawm cov khoom siv huab thiab cov khoom siv ntug. Cov kev daws teeb meem nyuaj dua thiab tshwj xeeb tuaj yeem tsim los ntawm kev ntxiv cov pob khoom ntxiv rau saum Azure. Linux, tab sis lub hauv paus rau txhua lub tshuab zoo li no tseem tsis tau hloov pauv, uas ua rau kev saib xyuas thiab kev npaj cov kev hloov tshiab yooj yim dua.

Azure Linux Nws yog siv ua lub hauv paus rau WSLg mini-distribution, uas muab cov khoom siv graphics stack rau kev khiav GUI daim ntawv thov. Linux nyob rau hauv cov chaw ib puag ncig raws li WSL2 subsystem (Windows Lub kaw lus me me rau Linux). Kev ua haujlwm txuas ntxiv hauv WSLg raug siv los ntawm kev suav nrog cov pob khoom ntxiv nrog cov khoom sib xyaw neeg rau zaub mov Weston, XWayland, PulseAudio thiab FreeRDP.

Tus tswj hwm qhov systemd yog siv los tswj cov kev pabcuam thiab khau raj. RPM thiab DNF tus thawj tswj pob yog muab rau kev tswj pob. SSH server tsis tau qhib los ntawm lub neej ntawd. Txhawm rau nruab qhov kev faib tawm, tus installer yog muab uas tuaj yeem ua haujlwm hauv ob hom ntawv thiab duab. Lub installer muab cov kev xaiv ntawm kev txhim kho nrog ib tug tag nrho los yog yooj yim txheej ntawm tej pob khoom, thiab muaj ib tug interface rau xaiv ib tug disk muab faib, xaiv tus tswv lub npe, thiab tsim cov neeg siv.

Azure Tsim System Linux Tso cai rau koj los tsim ob qho tib si RPM pob khoom raws li SPEC cov ntaub ntawv thiab cov lej qhov chaw, nrog rau cov duab monolithic system tsim los ntawm kev siv rpm-ostree toolkit thiab hloov kho atomically yam tsis tau muab lawv faib ua cov pob khoom ib leeg. Yog li ntawd, ob qho qauv xa khoom hloov tshiab tau txhawb nqa: hloov kho cov pob khoom ib leeg thiab rov tsim dua thiab hloov kho tag nrho cov duab system. Muaj chaw khaws cia uas muaj kwv yees li 3000 pob khoom RPM ua ntej, uas tuaj yeem siv los tsim cov duab kev cai raws li cov ntaub ntawv teeb tsa.

Lub hauv paus platform suav nrog tsuas yog cov khoom tseem ceeb thiab tau ua kom zoo rau qhov tsawg kawg nkaus nco thiab qhov chaw siv disk, nrog rau kev thauj khoom siab. Qhov project siv "kev ruaj ntseg siab tshaj plaws los ntawm lub neej ntawd" mus kom ze, uas cuam tshuam nrog kev suav nrog ntau yam ntxiv los ua kom muaj kev ruaj ntseg:

  • Filtering system hu siv lub tshuab seccomp.
  • Encryption ntawm disk partitions.
  • Kev txheeb xyuas cov pob khoom los ntawm kev kos npe digital.
  • Chaw nyob chaw randomization.
  • Kev tiv thaiv kev tawm tsam symlink, mmap, /dev/mem thiab /dev/kmem.
  • Hom nyeem nkaus xwb thiab txwv tsis pub ua cov lej hauv thaj chaw nco uas muaj ntu nrog cov ntaub ntawv kernel thiab module.
  • Kev xaiv los lov tes taw loading kernel modules tom qab pib qhov system.
  • Siv iptables los lim cov pob ntawv network.
  • Enabling kev tiv thaiv hom tiv thaiv pawg overflows, tsis overflows, thiab hlua formatting teeb meem thaum lub sij hawm tsim (_FORTIFY_SOURCE, -fstack-protector, -Wformat-kev ruaj ntseg, relro).

Tau qhov twg los: opennet.ru

Yuav txhim khu kev qha hosting rau cov chaw nrog DDoS tiv thaiv, VPS VDS servers 🔥 Yuav lub vev xaib hosting txhim khu kev qha nrog kev tiv thaiv DDoS, VPS VDS servers | ProHoster