ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Tso Tawm ntawm OpenBSD 7.3

Tso Tawm ntawm OpenBSD 7.3

Kev tso tawm ntawm UNIX-zoo li kev ua haujlwm pub dawb OpenBSD 7.3 tau nthuav tawm. Txoj haujlwm OpenBSD tau tsim los ntawm Theo de Raadt hauv 1995 tom qab muaj kev tsis sib haum xeeb nrog NetBSD cov neeg tsim khoom, vim tias Theo raug tsis lees paub nkag mus rau NetBSD CVS qhov chaw cia khoom. Tom qab no, Theo de Raadt thiab ib pab pawg neeg zoo li lub siab xav tau tsim qhov tshiab qhib kev ua haujlwm raws li NetBSD qhov chaw tsob ntoo, lub hom phiaj tseem ceeb ntawm kev txhim kho uas yog kev txav mus los (13 lub platform kho vajtse tau txais kev txhawb nqa), kev tsim qauv, kev ua haujlwm raug, kev ruaj ntseg ruaj ntseg. thiab integrated cryptographic cuab yeej. Tag nrho kev teeb tsa ISO duab ntawm OpenBSD 7.3 lub hauv paus system yog 620 MB.

Ntxiv rau qhov kev ua haujlwm ntawm nws tus kheej, qhov project OpenBSD paub txog nws cov khoom, uas tau dhau los ua ntau yam hauv lwm lub tshuab thiab tau ua pov thawj lawv tus kheej yog ib qho kev nyab xeeb tshaj plaws thiab cov kev daws teeb meem zoo. Ntawm lawv: LibreSSL ( diav rawg ntawm OpenSSL), OpenSSH, PF pob ntawv lim, OpenBGPD thiab OpenOSPFD routing daemons, OpenNTPD NTP server, OpenSMTPD mail server, text terminal multiplexer (analogous to GNU screen) tmux, identd daemon nrog IDENT raws tu qauv BSDL lwm txoj kev siv, GNU groff pob - mandoc, raws tu qauv rau kev teeb tsa kev ua txhaum cai CARP (Common Address Redundancy Protocol), lub teeb yuag http server, OpenRSYNC cov ntaub ntawv synchronization utility.

Kev txhim kho tseem ceeb:

  • Kev siv lub kaw lus hu waitid (tseem tos rau cov txheej txheem hauv lub xeev hloov), pinsyscall (kom dhau cov ntaub ntawv hais txog kev nkag mus rau qhov tseem ceeb los tiv thaiv ROP exploits), getthrname thiab setthrname (tau txais thiab teeb tsa lub npe xov).
  • Tag nrho cov architectures siv clockintr, hardware-independent timer cuam tshuam teem sijhawm.
  • Ntxiv sysctl kern.autoconf_serial, uas tuaj yeem siv los taug qab cov cuab yeej ntoo hauv lub xeev hloov pauv hauv cov ntsiav los ntawm cov neeg siv qhov chaw.
  • Txhim kho kev txhawb nqa rau multiprocessor (SMP) systems. Cov ntxaij lim dej tshwm sim rau tun thiab kais li tau hloov mus rau mp-safe qeb. Cov haujlwm xaiv, pselect, poll, ppoll, getsockopt, setsockopt, mmap, munmap, mpprotect, sched_yield, minherit thiab utrace, nrog rau ioctl SIOCGIFCONF, SIOCGIFGMEMB, SIOCGIFGATTR thiab SIOCGIFGLIST tau raug tshem tawm ntawm kev thaiv. Txhim kho kev tuav ntawm kev thaiv hauv pf pob ntawv lim. Txhim kho kev ua tau zoo ntawm qhov system thiab network pawg ntawm ntau cov tub ntxhais systems.
  • Kev siv ntawm drm (Direct Rendering Manager) lub moj khaum yog synchronized nrog Linux ntsiav 6.1.15 (kawg tso tawm - 5.15.69). Amdgpu tus tsav tsheb tam sim no txhawb nqa Ryzen 7000 "Raphael", Ryzen 7020 "Mendocino", Ryzen 7045 "Dragon Range", Radeon RX 7900 XT / XTX "Navi 31", Radeon RX 7600M (XT), 7700S" 7600 . Amdgpu tau ntxiv kev txhawb nqa rau kev tswj cov teeb pom kev zoo tom qab thiab xyuas kom meej tias xbacklight ua haujlwm thaum siv X.Org modesetting tsav tsheb. Mesa muaj shader caching enabled los ntawm lub neej ntawd.
  • Kev txhim kho tau ua rau VMM hypervisor.
  • Muaj peev xwm ntxiv kev tiv thaiv lub cim xeeb ntawm cov txheej txheem hauv cov neeg siv qhov chaw tau ua tiav: kev hu xov tooj sib txuas lus thiab cov tsev qiv ntawv cuam tshuam ntawm tib lub npe, uas tso cai rau koj kho txoj cai nkag mus thaum xav txog hauv kev nco (memory mappings). Tom qab kev cog lus, cov cai tau teem tseg rau thaj chaw nco, piv txwv li, txwv tsis pub sau thiab ua tiav, tsis tuaj yeem hloov pauv los ntawm kev hu mus rau mmap(), mpprotect() thiab munmap() ua haujlwm, uas yuav ua rau EPERM yuam kev thaum sim hloov.
  • Ntawm AMD64 architecture, RETGUARD cov txheej txheem tiv thaiv tau qhib rau kev hu xov tooj, tsom rau kev ua kom tsis zoo ntawm kev ua haujlwm ntawm kev siv cov khoom siv qiv nyiaj thiab cov txheej txheem rov qab los qhia txog kev ua haujlwm.
  • Kev tiv thaiv tiv thaiv kev ua phem ntawm qhov tsis zoo yog qhib, raws li random relinking ntawm sshd executable ntaub ntawv txhua lub sij hawm lub system khau raj. Reflow ua rau nws muaj peev xwm ua kom muaj nuj nqi offsets hauv sshd tsawg dua kev kwv yees, uas ua rau nws nyuaj rau kev tsim kev siv siv cov txheej txheem rov qab-oriented programming.
  • Enabled aggressive stack layout randomization ntawm 64-ntsis systems.
  • Ntxiv kev tiv thaiv tawm tsam Spectre-BHB qhov tsis zoo hauv cov txheej txheem microarchitectural.
  • Ntawm ARM64 processors, DIT (Data Independent Timing) chij yog qhib rau cov neeg siv qhov chaw thiab cov chaw hauv pob los thaiv cov kev tawm tsam sab-channel uas tswj xyuas qhov kev cia siab ntawm kev qhia ua tiav lub sijhawm ntawm cov ntaub ntawv ua tiav hauv cov lus qhia no.
  • Muab lub peev xwm los siv lladdr thaum txhais cov kev teeb tsa network. Piv txwv li, ntxiv rau kev khi rau lub npe interface (hostname.fxp0), koj tuaj yeem siv khi rau MAC chaw nyob (hostname.00:00:6e:00:34:8f).
  • Txhim kho pw tsaug zog txhawb nqa rau ARM64-based systems.
  • Kev txhawb nqa tau nthuav dav rau Apple ARM chips.
  • Ntxiv kev txhawb nqa rau kho vajtse tshiab thiab suav nrog cov tsav tsheb tshiab.
  • Tus tsav tsheb bwfm rau daim npav wireless raws li Broadcom thiab Cypress chips muab kev txhawb nqa encryption rau WEP.
  • Lub installer tau txhim kho kev ua haujlwm nrog software RAID thiab tau siv thawj zaug kev txhawb nqa rau Guided Disk Encryption.
  • Cov lus txib tshiab scroll-sab saum toj thiab scroll-hauv qab tau ntxiv rau tmux ("terminal multiplexer") kom scroll tus cursor mus rau qhov pib thiab xaus. Cov pob LibreSSL thiab OpenSSH tau hloov kho. Rau cov ncauj lus kom ntxaws txog kev txhim kho, saib cov kev tshuaj xyuas ntawm LibreSSL 3.7.0, OpenSSH 9.2 thiab OpenSSH 9.3.
  • Tus naj npawb ntawm cov chaw nres nkoj rau AMD64 architecture yog 11764 (los ntawm 11451), rau aarch64 - 11561 (los ntawm 11261), rau i386 - 10572 (los ntawm 10225). Ntawm cov ntawv thov versions hauv cov chaw nres nkoj:
    • Asterisk 16.30.0, 18.17.0 thiab 20.2.0
    • Audacity 3.2.5
    • Cawv 3.25.2
    • Chromium 111.0.5563.110
    • Emacs 28.2
    • FFmpeg 4.4.3
    • GCC 8.4.0 thiab 11.2.0
    • GHC 9.2.7 Nws
    • GNOME 43.3
    • Mus 1.20.1
    • JDK 8u362, 11.0.18 thiab 17.0.6
    • KDE Gears 22.12.3
    • KDE loj loj 5.103.0
    • Krita 5.1.5
    • LLVM/Clang 13.0.0
    • LibreOffice 7.5.1.2
    • Lua 5.1.5, 5.2.4, 5.3.6 thiab 5.4.4
    • MariaDB 10.9.4
    • Liab 6.12.0.182
    • Mozilla Firefox 111.0 thiab ESR 102.9.0
    • Mozilla Thunderbird 102.9.0
    • Mutt 2.2.9 thiab NeoMutt 20220429
    • npe.js 18.15.0
    • OCaml 4.12.1
    • QhibLDAP 2.6.4
    • PHP 7.4.33, 8.0.28, 8.1.16 thiab 8.2.3
    • Postfix 3.5.17 thiab 3.7.3
    • PostgreSQL 15.2
    • Python 2.7.18, 3.9.16, 3.10.10 thiab 3.11.2
    • Qt 5.15.8 thiab 6.4.2
    • R 4.2.1
    • Ruby 3.0.5, 3.1.3 thiab 3.2.1
    • Xeb 1.68.0
    • SQLite 2.8.17 thiab 3.41.0
    • Phom Sij 22.12.21
    • Rub tawm 1.9.13.3
    • Meerkat 6.0.10
    • Tcl/Tk 8.5.19 and 8.6.13
    • TeX Nyob 2022
    • Vim 9.0.1388 and Neovim 0.8.3
    • Xfce 4.18
  • Hloov tshiab cov khoom thib peb suav nrog OpenBSD 7.3:
    • Xenocara graphics pawg raws li X.Org 7.7 nrog xserver 1.21.6 + thaj ua rau thaj, freetype 2.12.1, fontconfig 2.14, Mesa 22.3.4, xterm 378, xkeyboard-config 2.20, fonttosfnt 1.2.2.
    • LLVM/Clang 13.0.0 (+ thaj ua rau thaj)
    • GCC 4.2.1 (+ thaj ua rau thaj) thiab 3.3.6 (+ thaj ua rau thaj)
    • Perl 5.36.1 (+ thaj ua rau thaj)
    • NSD 4.6.1
    • Unbound 1.17
    • Ncurses 5.7
    • Binutils 2.17 (+ thaj ua rau thaj)
    • Gdb 6.3 (+ thaj)
    • Aw 12.9.2022
    • Expat 2.5.0.

    Tau qhov twg los: opennet.ru

Ntxiv ib saib