ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Red Hat Enterprise Linux 8.1 faib tawm

Red Hat Enterprise Linux 8.1 faib tawm

Lub tuam txhab Red Hat tso tawm kev faib khoom siv Red Hat Enterprise Linux 8.1. Kev teeb tsa cov rooj sib txoos tau npaj rau x86_64, s390x (IBM System z), ppc64le thiab Aarch64 architectures, tab sis muaj rau downloads tsuas yog rau npe Red Hat Customer Portal cov neeg siv. Cov peev txheej ntawm Red Hat Enterprise Linux 8 rpm pob tau muab faib los ntawm Git repository CentOS. RHEL 8.x ceg yuav raug txhawb kom txog thaum tsawg kawg 2029.

Red Hat Enterprise Linux 8.1 yog thawj qhov kev tso tawm uas tau npaj ua raws li lub voj voog kev loj hlob tshiab, uas txhais tau hais tias tsim kev tshaj tawm txhua rau lub hlis ntawm lub sijhawm teem tseg. Muaj cov ntaub ntawv tseeb txog thaum twg qhov kev tso tawm tshiab yuav raug tshaj tawm tso cai rau koj los synchronize lub sijhawm txhim kho ntawm ntau yam haujlwm, npaj ua ntej rau kev tso tawm tshiab, thiab npaj thaum hloov tshiab yuav raug siv.

Nws yog sau tseg tias qhov tshiab lub neej voj voog RHEL cov khoom nthuav dav ntau txheej, suav nrog Fedora ua lub caij nplooj ntoo hlav rau lub peev xwm tshiab, CentOS Kwj rau kev nkag mus rau cov pob khoom tsim rau kev tso tawm nruab nrab tom ntej ntawm RHEL (rolling version of RHEL),
minimalistic universal puag duab (UBI, Universal Base Image) rau kev khiav cov ntawv thov hauv cov thawv cais thiab RHEL Developer Subscription rau kev siv dawb ntawm RHEL hauv txoj kev txhim kho.

Ntsiab hloov:

  • Kev txhawb nqa tag nrho rau cov txheej txheem rau kev thov Live thaj ua rau thaj yog muab (kpatch ua) txhawm rau tshem tawm qhov tsis zoo hauv Linux kernel yam tsis tau rov pib dua lub system thiab tsis ua haujlwm. Yav dhau los, kpatch tau muab cais ua qhov kev sim ua haujlwm;
  • Raws li lub moj khaum ua fapolicyd Lub peev xwm los tsim cov npe dawb thiab cov npe dub ntawm daim ntawv thov tau raug siv, uas tso cai rau koj los sib txawv cov kev pab cuam twg tuaj yeem raug tsim los ntawm tus neeg siv thiab uas tsis tuaj yeem (piv txwv li, txhawm rau thaiv qhov kev tso tawm ntawm cov ntaub ntawv tsis tau lees paub sab nraud). Kev txiav txim siab los thaiv lossis tso cai tso tawm tuaj yeem ua raws li daim ntawv thov npe, txoj hauv kev, cov ntsiab lus hash, thiab hom MIME. Kev kuaj xyuas txoj cai tshwm sim thaum lub sijhawm qhib () thiab exec() lub kaw lus hu, yog li yuav muaj kev cuam tshuam tsis zoo rau kev ua haujlwm;
  • Cov khoom muaj xws li SELinux profiles, tsom rau kev siv nrog cov thawv cais thiab tso cai rau kev tswj hwm ntau dua rau kev nkag mus rau cov kev pabcuam khiav hauv cov thawv rau kev tswj hwm cov peev txheej. Txhawm rau tsim SELinux cov cai rau cov thawv ntim khoom, qhov kev siv hluav taws xob tshiab udica tau raug tso cai, uas tso cai rau, coj mus rau hauv tus account qhov tshwj xeeb ntawm lub thawv tshwj xeeb, tsuas yog muab kev nkag mus rau cov khoom siv sab nraud uas tsim nyog, xws li cia, khoom siv thiab network. Cov khoom siv SELinux (libsepol, libselinux, libsemanage, policycoreutils, checkpolicy, mcstrans) tau hloov kho kom tso tawm 2.9, thiab SETools pob rau version 4.2.2.

    Ntxiv ib hom SELinux tshiab, boltd_t, uas txwv boltd, txheej txheem rau kev tswj hwm Thunderbolt 3 li (boltd tam sim no khiav hauv ib lub thawv txwv los ntawm SELinux). Ntxiv chav kawm tshiab ntawm SELinux cov cai - bpf, uas tswj kev nkag mus rau Berkeley Packet Filter (BPF) thiab tshuaj xyuas cov ntawv thov rau eBPF;

  • Xws li ib pawg ntawm cov txheej txheem routing FRRouting (BGP4, MP-BGP, OSPFv2, OSPFv3, RIPv1, RIPv2, RIPng, PIM-SM/MSDP, LDP, IS-IS), uas tau hloov lub pob Quagga yav dhau los (FRRouting yog rab rawg ntawm Quagga, yog li kev sib raug zoo tsis cuam tshuam. );
  • Rau encrypted partitions nyob rau hauv LUKS2 hom, kev txhawb nqa tau ntxiv rau rov encrypting thaiv cov cuab yeej ntawm ya, tsis txwv lawv siv nyob rau hauv lub kaw lus (piv txwv li, tam sim no koj tuaj yeem hloov tus yuam sij lossis encryption algorithm yam tsis muaj unmounting qhov muab faib);
  • Kev them nyiaj yug rau ib tsab tshiab ntawm SCAP 1.3 raws tu qauv (Security Content Automation Protocol) tau ntxiv rau hauv OpenSCAP lub moj khaum;
  • Hloov kho tshiab ntawm OpenSSH 8.0p1, Tuned 2.12, chrony 3.5, samba 4.10.4. Modules nrog cov ceg tshiab ntawm PHP 7.3, Ruby 2.6, Node.js 12 thiab nginx 1.16 tau ntxiv rau AppStream repository (hloov kho cov qauv nrog cov ceg yav dhau los tau txuas ntxiv). Cov pob khoom nrog GCC 9, LLVM 8.0.1, Rust 1.37 thiab Go 1.12.8 tau ntxiv rau Software Sau;
  • Cov khoom siv SystemTap tracing tau raug hloov kho rau ceg 4.1, thiab Valgrind nco debugging toolkit tau hloov kho rau version 3.15;
  • Kev kuaj xyuas kev noj qab haus huv tshiab tau ntxiv rau cov cuab yeej qhia tus neeg rau zaub mov xa tawm (IdM, Kev Tswj Xyuas Tus Kheej), uas yooj yim rau kev txheeb xyuas cov teeb meem nrog kev ua haujlwm ntawm ib puag ncig nrog rau tus neeg rau zaub mov. Kev teeb tsa thiab teeb tsa ntawm IdM ib puag ncig yog yooj yim, ua tsaug rau kev txhawb nqa rau Ansible lub luag haujlwm thiab muaj peev xwm rau nruab modules. Ntxiv kev txhawb nqa rau Active Directory Trusted Forests raws li Windows Server 2019.
  • Lub virtual desktop switcher tau hloov pauv hauv GNOME Classic kev sib kho. Lub widget rau kev hloov ntawm desktops yog tam sim no nyob rau sab xis ntawm lub vaj huam sib luag hauv qab thiab yog tsim los ua ib qho sawb nrog cov duab me me (kom hloov mus rau lwm lub desktop, tsuas yog nyem rau ntawm tus ntiv tes xoo uas qhia txog nws cov ntsiab lus);
  • Lub DRM (Direct Rendering Manager) subsystem thiab cov tsav tsheb qis qis (amdgpu, nouveau, i915, mgag200) tau hloov kho kom haum rau Linux 5.1 kernel. Ntxiv kev txhawb nqa rau AMD Raven 2, AMD Picasso, AMD Vega, Intel Amber Lake-Y thiab Intel Comet Lake-U video subsystems;
  • Cov cuab yeej rau kev hloov kho RHEL 7.6 rau RHEL 8.1 tau ntxiv kev txhawb nqa rau kev kho dua tshiab yam tsis muaj kev rov nruab rau ARM64, IBM POWER (me ntsis endian) thiab IBM Z architectures. Ntxiv cockpit-leapp plugin los kho lub xeev thaum muaj teeb meem thaum hloov tshiab. Cov /var thiab /usr cov npe tau muab cais ua ntu cais. Ntxiv UEFI kev txhawb nqa. IN Leapp cov pob khoom raug hloov kho los ntawm cov chaw khaws khoom ntxiv (nrog rau cov pob khoom ntiag tug);
  • Image Builder tau ntxiv kev txhawb nqa rau kev tsim cov duab rau Google Cloud thiab Alibaba Cloud huab ib puag ncig. Thaum tsim cov duab sau, muaj peev xwm siv repo.git tau ntxiv kom suav nrog cov ntaub ntawv ntxiv los ntawm cov chaw khaws cia Git arbitrary;
  • Cov kev txheeb xyuas ntxiv tau muab ntxiv rau Glibc rau malloc txhawm rau txheeb xyuas thaum faib cov cim cim xeeb tsis raug;
  • Cov pob dnf-utils tau hloov npe mus rau yum-utils rau kev sib raug zoo (lub peev xwm rau nruab dnf-utils tau khaws cia, tab sis cov pob no yuav tau hloov los ntawm yum-utils);
  • Ntxiv ib tsab tshiab ntawm Red Hat Enterprise Linux System Roles, muab ib txheej ntawm modules thiab lub luag hauj lwm rau deploying ib tug centralized configuration tswj system raws li nyob rau hauv Ansible thiab configuring subsystems los pab kom muaj tej yam kev muaj feem xyuam rau kev cia, networking, sij hawm synchronization, SElinux cov cai thiab kev siv kdump mechanism. Piv txwv li, lub luag haujlwm tshiab
    cia tso cai rau koj ua hauj lwm xws li tswj cov ntaub ntawv systems ntawm lub disk, ua hauj lwm nrog LVM pawg thiab logical partitions;

  • Lub network pawg rau VXLAN thiab GENEVE tunnels tau siv lub peev xwm los ua cov ICMP pob ntawv "Lub Hom Phiaj Unreachable", "Packet Loj" thiab "Redirect Message", uas daws qhov teeb meem nrog qhov tsis muaj peev xwm siv txoj kev hloov pauv thiab Path MTU Discovery hauv VXLAN thiab GENEVE. .
  • Ib qho kev sim siv ntawm XDP (eXpress Data Path) subsystem, uas tso cai rau Linux khiav BPF cov kev pab cuam ntawm qib tsav tsheb nrog lub peev xwm nkag mus ncaj qha rau DMA pob ntawv tsis muaj thiab nyob rau theem ua ntej skbuff tsis yog faib los ntawm pawg network, zoo li eBPF cov khoom, synchronized nrog Linux 5.0 ntsiav. Ntxiv kev sim txhawb nqa rau AF_XDP kernel subsystem (eXpress Data Path);
  • Kev them nyiaj yug tag nrho network raws tu qauv muab TIPC (Transparent Inter-process Communication), tsim los txhim kho kev sib txuas lus hauv ib pawg. Cov txheej txheem muab ib txoj hauv kev rau cov ntawv thov sib txuas lus sai thiab ntseeg tau, tsis hais cov nodes hauv pawg twg lawv tab tom khiav;
  • Ib hom tshiab rau kev txuag lub hauv paus pob tseg thaum tsis ua haujlwm tau ntxiv rau initramfs - "pob tseg thaum ntxov", ua haujlwm thaum ntxov ntawm kev thauj khoom;
  • Ntxiv cov ntsiab lus tshiab ipcmni_extend, uas txuas ntxiv IPC ID txwv los ntawm 32 KB (15 khoom) mus rau 16 MB (24 khoom), tso cai rau cov ntawv thov siv ntau ntu kev nco;
  • Ipset tau hloov kho kom tso tawm 7.1 nrog kev txhawb nqa rau IPSET_CMD_GET_BYNAME thiab IPSET_CMD_GET_BYINDEX cov haujlwm;
  • Lub rngd daemon, uas nyob rau hauv lub pas dej entropy ntawm lub pseudorandom tooj generator, yog freed los ntawm qhov yuav tsum tau khiav raws li hauv paus;
  • Txhawb nqa tag nrho Intel OPA (Omni-Path Architecture) rau cov khoom siv nrog Host Fabric Interface (HFI) thiab kev txhawb nqa tag nrho rau Intel Optane DC Persistent Memory li.
  • Debug kernels los ntawm lub neej ntawd suav nrog kev tsim nrog UBSAN (Undefined Behavior Sanitizer) detector, uas ntxiv cov kev kuaj xyuas ntxiv rau cov lej sau ua ke txhawm rau txheeb xyuas cov xwm txheej thaum tus cwj pwm kev ua haujlwm tsis tau txhais (piv txwv li, kev siv cov hloov pauv tsis zoo li qub ua ntej lawv pib, faib. integers los ntawm xoom, overflows kos npe integer hom, dereferencing NULL pointers, teeb meem nrog pointer alignment, thiab lwm yam);
  • Lub hauv paus cag ntoo nrog lub sijhawm txuas ntxiv (kernel-rt) yog synchronized nrog lub ntsiab RHEL 8 kernel code;
  • Ntxiv ibmvnic tsav tsheb rau vNIC (Virtual Network Interface Controller) network tswj nrog kev siv PowerVM virtual network technology. Thaum siv nrog SR-IOV NIC, tus tsav tsheb tshiab tso cai rau kev siv bandwidth thiab kev tswj xyuas kev pabcuam zoo ntawm qib virtual network adapter, txo qis virtualization nyiaj siv ua haujlwm thiab txo CPU load;
  • Ntxiv kev txhawb nqa rau Data Integrity Extensions, uas tso cai rau koj los tiv thaiv cov ntaub ntawv los ntawm kev puas tsuaj thaum sau ntawv rau kev khaws cia los ntawm kev txuag cov kev kho ntxiv ntxiv;
  • Ntxiv kev txhawb nqa kev sim (Technology Preview) rau pob nmstate ua, uas muab cov tsev qiv ntawv nmstatectl thiab kev siv hluav taws xob rau kev tswj hwm kev teeb tsa network los ntawm kev tshaj tawm API (lub xeev lub network tau piav qhia hauv daim ntawv ntawm cov txheej txheem ua ntej);
  • Ntxiv kev sim txhawb rau cov ntsiav-theem TLS (KTLS) kev siv nrog AES-GCM-based encryption, nrog rau kev sim txhawb rau OverlayFS, cgroup v2, Stratis, mdev (Intel vGPU) thiab DAX (kev nkag ncaj qha mus rau cov ntaub ntawv kaw lus hla ntawm nplooj ntawv cache yam tsis siv cov cuab yeej thaiv qib) hauv ext4 thiab XFS;
  • Deprecated kev txhawb nqa rau DSA, TLS 1.0 thiab TLS 1.1, uas tau raug tshem tawm los ntawm DEFAULT teeb tsa thiab tsiv mus rau LEGACY ("hloov-crypto-txoj cai -set LEGACY");
  • Cov pob khoom 389-ds-base-legacy-tools tau raug tso tseg.
    authd
    kev saib xyuas,
    hostname,
    libidn,
    cuab yeej net,
    network scripts,
    nss-pam-ldapd,
    xa email,
    yp-cov cuab yeej
    ypbind thiab ypserv. Tej zaum lawv yuav raug txiav tawm hauv qhov kev tso tawm tseem ceeb yav tom ntej;

  • Cov ntawv ifup thiab ifdown tau raug hloov nrog cov ntaub qhwv uas hu rau NetworkManager ntawm nmcli (kom rov qab cov ntawv qub, koj yuav tsum tau khiav "yum nruab network-scripts").

Tau qhov twg los: opennet.ru

Ntxiv ib saib