ProHoster > Блог > ozi ịntanetị > Mwepụta nke GnuPG 2.4.0

Mwepụta nke GnuPG 2.4.0

Mgbe afọ ise nke mmepe gachara, ewepụtara ntọhapụ nke GnuPG 2.4.0 (GNU Privacy Guard) Toolkit, dakọtara na OpenPGP (RFC-4880) na ụkpụrụ S/MIME, na-enye akụrụngwa maka izo ya ezo data, na-arụ ọrụ na electronic mbinye aka, isi. njikwa na ịnweta igodo nchekwa ọha.

A na-edobe GnuPG 2.4.0 dị ka ntọhapụ mbụ nke alaka ụlọ ọrụ kwụsiri ike, nke na-agụnye mgbanwe agbakọba n'oge nkwadebe nke mwepụta 2.3.x. Ahapụla alaka 2.2 na alaka ochie kwụsiri ike, nke a ga-akwado ruo njedebe nke 2024. Alaka GnuPG 1.4 na-aga n'ihu na-edobe ya dị ka usoro kpochapụwo nke na-eri obere akụrụngwa, dabara maka sistemụ agbakwunyere, yana dakọtara na algọridim nzuzo nzuzo.

Mgbanwe dị mkpa na GnuPG 2.4 ma e jiri ya tụnyere ngalaba kwụsiri ike gara aga 2.2:

  • Agbakwunyela usoro ndabere iji mejuputa isi nchekwa data, na-eji SQLite DBMS maka nchekwa yana gosipụta igodo na-achọ ngwa ngwa. Iji mee ka ebe nchekwa ọhụrụ ahụ nwee ike, ị ga-emerịrị nhọrọ "use-keyboxd" na common.conf.
  • Usoro ndabere tpm2d agbakwunyere iji kwe ka ibe TPM 2.0 chedo igodo nzuzo wee rụọ ọrụ nzuzo ma ọ bụ ọrụ mbinye aka dijitalụ n'akụkụ modul TPM.
  • Agbakwunyela akụrụngwa gpg-kaadị ọhụrụ, nke enwere ike iji dị ka ihe na-agbanwe agbanwe maka ụdị kaadị smart niile akwadoro.
  • Agbakwunyere akụrụngwa gpg-auth ọhụrụ maka nyocha.
  • Agbakwunyere faịlụ nhazi ọhaneze ọhụrụ, common.conf, nke a na-eji mee ka usoro ndabere igodo igbe na-agbakwunyeghị ntọala na gpg.conf na gpgsm.conf iche.
  • A na-enye nkwado maka ụdị igodo nke ise na mbinye aka dijitalụ, nke na-eji SHA256 algọridim kama SHA1.
  • Algọridim ndabara maka igodo ọha bụ ed25519 na cv25519.
  • Nkwado agbakwunyere maka ụdịdị nzuzo nzuzo AEAD OCB na EAX.
  • Nkwado agbakwunyere maka akụkụ elliptik X448 (ed448, cv448).
  • Ekwenyere iji aha otu na ndetu igodo.
  • Agbakwunyere nhọrọ "--chuid" na gpg, gpgsm, gpgconf, gpg-card na gpg-connect-agent iji gbanwee ID onye ọrụ.
  • N'elu ikpo okwu Windows, a na-emejuputa nkwado Unicode zuru oke na ahịrị iwu.
  • Nhọrọ iwu agbakwunyere "--with-tss" iji họrọ ọba akwụkwọ TSS.
  • gpgsm na-agbakwunye nkwado ECC bụ isi yana ikike ịmepụta asambodo EdDSA. Nkwado agbakwunyere maka ibelata data ezoro ezo site na iji paswọọdụ. Nkwado agbakwunyere maka mwepu AES-GCM. agbakwunyere nhọrọ ọhụrụ "--ldapserver" na "--show-certs".
  • Onye nnọchite anya na-enye ohere iji uru "Label:" dị na faịlụ igodo iji hazie ngwa ngwa PIN. Nkwado etinyere maka ndọtị onye nnọchite ssh maka mgbanwe gburugburu ebe obibi. agbakwunyere ihe nṅomi Win32-OpenSSH site na onye nnọchite gpg. Iji mepụta mkpịsị aka mkpịsị aka nke igodo SSH, SHA-256 algọridim na-eji ndabara. agbakwunyere nhọrọ "--pinentry-formatted-passphrase" na "-check-sym-passphrase-pattern".
  • Scd emelitere nkwado maka ịrụ ọrụ na ọtụtụ ndị na-agụ kaadị na akara ngosi. E tinyela ikike iji ọtụtụ ngwa nwere kaadi smart akọwapụtara. Nkwado agbakwunyere maka kaadị PIV, Telesec Signature Cards v2.0 na Rohde&Schwarz Cybersecurity. agbakwunyere nhọrọ ọhụrụ "--application-priority" na "--pcsc-Shared".
  • Agbakwunyela nhọrọ "--show-configs" na ngwa gpgconf.
  • Mgbanwe na gpg:
    • Oke agbakwunyere "--list-filter" maka ịhọpụta ndepụta igodo, dịka ọmụmaatụ "gpg -k --list-filter 'select=revoked-f && sub/algostr=ed25519′".
    • Iwu ọhụrụ na nhọrọ agbakwunyere: "--quick-update-pref", "show-pref", "show-pref-verbose", "-export-filter export-revocs", "-full-timestrings", "-min - rsa-ogologo", "-forbid-gen-key", "--override-compliance-check", "-force-sign-key" na "--no-auto-trust-New-key".
    • Nkwado agbakwunyere maka ibubata ndetu mwepu akwụkwọ omenala.
    • Nkwenye nke mbinye aka dijitalụ agbagoro ugboro iri ma ọ bụ karịa.
    • Nsonaazụ nkwenye ugbu a dabere na nhọrọ “--sender” yana ID nke onye okike mbinye aka.
    • Agbakwunyere ike mbupụ igodo Ed448 maka SSH.
    • Naanị ụdị OCB ka anabatara maka izo ya ezo AEAD.
    • A na-anabata ntọhapụ na-enweghị igodo ọha ma ọ bụrụ na etinyere kaadị smart.
    • Maka ed448 na cv448 algọridim, enyerela ike imepụta igodo nke ụdị nke ise ugbu a n'ike.
    • Mgbe ị na-ebubata site na ihe nkesa LDAP, nhọrọ nke-sigs-naanị nwere nkwarụ na ndabara.
  • gpg anaghịzi eji 64-bit ngọngọ algọridim maka izo ya ezo. Amachibidoro iji 3DES, ma kwupụta AES dị ka algọridim kacha nta akwadoro. Iji gbanyụọ mmachi ahụ, ịnwere ike iji nhọrọ "--allow-old-cipher-algos".
  • Ewepụla akụrụngwa symcryptrun (ihe mkpuchi emechiela n'elu akụrụngwa Chiasmus dị na mpụga).
  • Ụzọ nchọta igodo PKA akwụsịla ma wepụrụ nhọrọ ndị metụtara ya.

isi: opennet.ru

Tinye a comment