Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Kutulutsidwa kwa Qubes 4.1 OS, yomwe imagwiritsa ntchito virtualization kudzipatula mapulogalamu

Kutulutsidwa kwa Qubes 4.1 OS, yomwe imagwiritsa ntchito virtualization kudzipatula mapulogalamu

Pambuyo pazaka zinayi zachitukuko, makina opangira a Qubes 4.1 adatulutsidwa, kugwiritsa ntchito lingaliro la kugwiritsa ntchito hypervisor kuti adzilekanitse mapulogalamu ndi zigawo za OS (gulu lililonse la ntchito ndi ntchito zamakina zimayendetsedwa ndi makina apadera). Kuti mugwire ntchito, mufunika dongosolo lokhala ndi 6 GB ya RAM ndi 64-bit Intel kapena AMD CPU yothandizidwa ndi VT-x yokhala ndi EPT/AMD-v yokhala ndi RVI ndi VT-d/AMD IOMMU matekinoloje, makamaka Intel GPU (NVIDIA ndi ma GPU a AMD sanayesedwe bwino). Kukula kwa chithunzi choyika ndi 6 GB.

Mapulogalamu mu Qubes amagawidwa m'makalasi kutengera kufunikira kwa deta yomwe ikukonzedwa komanso ntchito zomwe zikuthetsedwa. Gulu lililonse la mapulogalamu (mwachitsanzo, ntchito, zosangalatsa, mabanki), komanso ntchito zamakina (ma network subsystem, firewall, storage, USB stack, etc.), imayendetsedwa m'makina apadera omwe akuyenda pogwiritsa ntchito Xen hypervisor . Nthawi yomweyo, mapulogalamuwa amapezeka mkati mwa desktop yomweyi ndipo amawonetsedwa kuti amveke bwino ndi mitundu yosiyanasiyana yamawindo. Malo aliwonse ali ndi mwayi wowerengera mafayilo amtundu wa mizu ndi kusungirako kwanuko, zomwe sizimayenderana ndi kusungirako malo ena; ntchito yapadera imagwiritsidwa ntchito kukonza kulumikizana kwa mapulogalamu.

Kutulutsidwa kwa Qubes 4.1 OS, yomwe imagwiritsa ntchito virtualization kudzipatula mapulogalamu

Phukusi la phukusi la Fedora ndi Debian lingagwiritsidwe ntchito ngati maziko opangira malo enieni; ma templates a Ubuntu, Gentoo ndi Arch Linux amathandizidwanso ndi anthu ammudzi. Ndizotheka kukonza mwayi wopezeka pamakina a Windows, komanso kupanga makina enieni a Whonix kuti apereke mwayi wosadziwika kudzera pa Tor. Chipolopolo cha ogwiritsa ntchito chimamangidwa pamwamba pa Xfce. Wogwiritsa ntchito akayambitsa pulogalamu kuchokera pamenyu, pulogalamuyo imayamba pamakina apadera. Zomwe zili m'malo enieni zimatsimikiziridwa ndi ma templates.

Kutulutsidwa kwa Qubes 4.1 OS, yomwe imagwiritsa ntchito virtualization kudzipatula mapulogalamu
Kutulutsidwa kwa Qubes 4.1 OS, yomwe imagwiritsa ntchito virtualization kudzipatula mapulogalamu

Zosintha zazikulu:

  • Kutha kugwiritsa ntchito malo osiyana a GUI Domain okhala ndi zigawo zina kuti zitsimikizire kuti mawonekedwe a graphical akugwiritsidwa ntchito. M'mbuyomu, m'malo enieni, kalasi iliyonse yogwiritsira ntchito imakhala ndi seva yosiyana ya X, woyang'anira zenera wosavuta, ndi dalaivala wa kanema wa stub yemwe amamasulira zotuluka kumalo olamulira mumagulu ophatikizika, koma zida zazithunzi zojambulidwa, woyang'anira zenera la desktop, chophimba. zowongolera, ndi madalaivala azithunzi adayenda mumalo owongolera a Dom0. Tsopano ntchito zokhudzana ndi zithunzi zitha kusunthidwa kuchokera ku Dom0 kupita kudera lapadera la GUI Domain ndikusiyanitsidwa ndi magawo oyang'anira dongosolo. Dom0 imangosiya njira yapadera yakumbuyo kuti ipereke mwayi wofikira masamba ena okumbukira. Thandizo la Domain la GUI likadali loyesera ndipo silimathandizidwa mwachisawawa.
  • Thandizo loyeserera la Audio Domain, malo osiyana ogwiritsira ntchito seva yomvera yomwe imakupatsani mwayi wolekanitsa magawo azomvera kuchokera ku Dom0.
  • Ndondomeko yowonjezera yakumbuyo ya qrexec-policy ndi dongosolo latsopano la malamulo a Qrexec RPC limagwirira, lomwe limakupatsani mwayi wopereka malamulo malinga ndi zomwe zafotokozedwa. Dongosolo la malamulo a Qrexec limasankha yemwe angachite chiyani komanso komwe ku Qubes. Malamulo atsopanowa ali ndi mawonekedwe osinthika, kuwonjezeka kwakukulu kwa zokolola, ndi dongosolo lazidziwitso zomwe zimapangitsa kuti zikhale zosavuta kuzindikira mavuto. Anawonjezera kuthekera koyendetsa ntchito za Qrexec ngati seva yopezeka kudzera pa socket seva.
  • Ma tempulo atatu atsopano a malo omwe ali ndi Gentoo Linux akufunsidwa - ochepa, ndi Xfce komanso ndi GNOME.
  • Mapangidwe atsopano akhazikitsidwa kuti akonze, kusonkhanitsa makina ndi kuyesa ma templates owonjezera a chilengedwe. Kuphatikiza pa Gentoo, zomangamanga zimapereka chithandizo cha ma templates okhala ndi Arch Linux ndi Linux kernel kuyesa.
  • Dongosolo lomanga ndi kuyesa lakonzedwa bwino, chithandizo chotsimikizira mu kachitidwe kophatikizana kopitilira GitLab CI wawonjezedwa.
  • Ntchito yachitidwa kuti ikwaniritse zomanga zobwerezabwereza za Debian-based environments, zomwe zingagwiritsidwe ntchito kutsimikizira kuti zigawo za Qubes zimamangidwa ndendende kuchokera kuzinthu zomwe zatchulidwa ndipo sizikhala ndi zosintha zowonjezera, zomwe m'malo mwake, mwachitsanzo, zikhoza kukhala. zopangidwa ndi kuwononga zida zopangira msonkhano kapena ma bookmark mu compiler.
  • Kukhazikitsa kwa firewall kwalembedwanso.
    Kutulutsidwa kwa Qubes 4.1 OS, yomwe imagwiritsa ntchito virtualization kudzipatula mapulogalamu
  • Malo a sys-firewall ndi sys-usb tsopano akuyenda mu "disposable" mode mwachisawawa, i.e. ndi zotayidwa ndipo zitha kupangidwa pakufunika.
  • Thandizo lokwezeka la zowonera zapamwamba za pixel.
  • Thandizo lowonjezera pamawonekedwe osiyanasiyana a cholozera.
  • Chidziwitso chokhazikitsidwa chokhudza kusowa kwa malo aulere a disk.
  • Thandizo lowonjezera la paranoid zosunga zobwezeretsera, zomwe zimagwiritsa ntchito nthawi imodzi kuti zitheke.
  • Woyikirayo amakulolani kusankha pakati pa Debian ndi Fedora pazithunzi zamakina.
  • Anawonjezera mawonekedwe atsopano owongolera zosintha.
    Kutulutsidwa kwa Qubes 4.1 OS, yomwe imagwiritsa ntchito virtualization kudzipatula mapulogalamu
  • Zowonjezera Template Manager pokhazikitsa, kufufuta ndikusintha ma tempuleti.
  • Makina ogawa ma template owongolera.
  • Malo oyambira a Dom0 asinthidwa ku maziko a phukusi la Fedora 32. Ma templates opangira malo enieni asinthidwa ku Fedora 34, Debian 11 ndi Whonix 16. Linux 5.10 kernel imaperekedwa mwachisawawa. Xen 4.14 hypervisor ndi mawonekedwe a Xfce 4.14 asinthidwa.

Source: opennet.ru

Kuwonjezera ndemanga