ProHoster > Blog > nkhani zapaintaneti > Kutulutsidwa kwa seva ya ProFTPD 1.3.8 ftp

Kutulutsidwa kwa seva ya ProFTPD 1.3.8 ftp

Pambuyo pa zaka ziwiri ndi theka za chitukuko, kumasulidwa kwakukulu kwa seva ya ftp ProFTPD 1.3.8 kwasindikizidwa, ndi mphamvu zowonjezera ndi ntchito, ndi zofooka pakuzindikiritsa zowonongeka zoopsa. Kutulutsidwa kowongolera kwa ProFTPD 1.3.7f kumapezeka nthawi yomweyo ndipo kudzakhala komaliza pamndandanda wa ProFTPD 1.3.7.

Zatsopano zazikulu za ProFTPD 1.3.8:

  • Thandizo laperekedwa pa lamulo la FTP CSID (Client/Server ID), lomwe lingagwiritsidwe ntchito kutumiza chidziwitso chodziwitsa pulogalamu ya kasitomala ku seva ndikulandira yankho ndi chidziwitso chodziwitsa seva. Mwachitsanzo, kasitomala akhoza kutumiza "CSID Name=BSD FTP; Version=7.3" ndikulandira yankho "200 Name=ProFTPD; Version=1.3.8; OS="Ubuntu Linux; OSVer=22.04; CaseSensitive=1; DirSep=/;".
  • Thandizo lowonjezera pakuwonjezedwa kwa "home-directory" kuti mukulitse ~/ ndi ~user/ njira zakukhazikitsa protocol ya SFTP. Mutha kugwiritsa ntchito malangizo a "SFTExtensions homeDirectory" kuti muthe.
  • Thandizo lowonjezera la ma ciphers a AES-GCM "aes128-gcm@openssh.com" ndi "aes256-gcm@openssh.com" ku mod_sftp, komanso kusintha kwa kiyi ("SFTPOptions NoHostkeyRotation") pogwiritsa ntchito zowonjezera za OpenSSH "hostkeys-00@openssh.com-prove00. Thandizo lowonjezera lothandizira ma ciphers a AES GCM ku malangizo a SFTPCiphers.
  • Chowonjezera "-enable-pcre2" njira yomanga ndi laibulale ya PCRE2 m'malo mwa PCRE. Kutha kusankha injini yanthawi zonse pakati pa PCRE2, POSIX ndi PCRE yawonjezedwa ku malangizo a RegexOptions.
  • Onjezani malangizo a SFTPHostKeys kuti mutchule ma algorithms ofunikira omwe amaperekedwa kwa makasitomala a mod_sftp module.
  • Dongosolo Lowonjezera la FactsDefault kuti mufotokoze bwino mndandanda wa "zowona" zomwe zabwezedwa mu mayankho a MLSD/MLSD FTP.
  • Adawonjezera malangizo a LDAPConnectTimeout kuti afotokoze nthawi yolumikizana ndi seva ya LDAP.
  • Lamulo la ListStyle lawonjezeredwa, lomwe limakupatsani mwayi woti muyambitse kutulutsa kwa mndandanda wa zomwe zili mu chikwatu mu kalembedwe kake Windows.
  • Lamulo la RedisLogFormatExtra lakhazikitsidwa kuti liwonjezere makiyi ndi zikhalidwe pa chipika cha JSON, chophatikizidwa ndi malangizo a RedisLogOnCommand ndi RedisLogOnEvent.
  • Gawo la MaxLoginAttemptsFromUser lawonjezedwa ku lamulo la BanOnEvent kuti liletse kuphatikiza kwa ogwiritsa ntchito ndi Ma adilesi a IP.
  • Thandizo lowonjezera la TLS polumikizana ndi Redis DBMS ku malangizo a RedisSentinel. Thandizo lowonjezeredwa ku malangizo a RedisServer pamawu osinthidwa a AUTH omwe amagwiritsidwa ntchito kuyambira Redis 6.x.
  • Thandizo la ETM (Encrypt-Then-MAC) ma hashes awonjezedwa ku malangizo a SFTPDigests.
  • Onjezani mbendera ya ReusePort ku malangizo a SocketOptions kuti mutsegule SO_REUSEPORT socket mode.
  • Mbendera ya AllowSymlinkUpload yawonjezedwa ku malangizo a TransferOptions kuti muthe kutsitsanso maulalo ophiphiritsa.
  • Thandizo la "curve448-sha512" makiyi osinthira makiyi awonjezedwa ku SFTPKeyExchanges malangizo.
  • Kutha kuyika mafayilo owonjezera m'matebulo olola / kukana awonjezedwa ku mod_wrap2 module.
  • Mtengo wosasinthika wa FSCachePolicy parameter wasinthidwa kukhala "off".
  • Mod_sftp module yasinthidwa kuti igwiritsidwe ntchito ndi laibulale ya OpenSSL 3.x.
  • Thandizo lowonjezera pakumanga ndi laibulale ya libidn2 kuti igwiritsidwe ntchito padziko lonse lapansi mayina a domain (IDN).
  • Chida cha ftpasswd chopangira ma hashes achinsinsi chili ndi SHA256 m'malo mwa MD5 yothandizidwa mwachisawawa.

Source: opennet.ru

Gulani kuchititsa kodalirika kwamasamba okhala ndi chitetezo cha DDoS, ma seva a VPS VDS Gulani malo odalirika osungira mawebusayiti okhala ndi chitetezo cha DDoS, ma seva a VPS VDS | ProHoster