ProHoster > Blog > internet nhau > Kuburitswa kweQubes 4.1 OS, iyo inoshandisa virtualization kuparadzanisa maapplication

Kuburitswa kweQubes 4.1 OS, iyo inoshandisa virtualization kuparadzanisa maapplication

Mushure meanoda kusvika makore mana ebudiriro, iyo Qubes 4.1 inoshanda sisitimu yakaburitswa, ichishandisa zano rekushandisa hypervisor kunyatsoparadzanisa maapplication uye OS zvikamu (kirasi yega yega yekushandisa uye masevhisi ehurongwa anomhanya mumashini akasiyana chaiwo). Kuti ushande, unoda system ine 6 GB ye RAM uye 64-bit Intel kana AMD CPU ine rutsigiro rweVT-x ine EPT/AMD-v ine RVI uye VT-d/AMD IOMMU matekinoroji, ingangoita Intel GPU (NVIDIA uye AMD GPUs haina kuedzwa zvakanaka). Saizi yekuisa mufananidzo ndeye 6 GB.

Zvikumbiro muQubes zvakakamurwa kuita makirasi zvichienderana nekukosha kweiyo data iri kugadziriswa uye mabasa ari kugadziriswa. Yega yega kirasi yekushandisa (semuenzaniso basa, varaidzo, kubhengi) pamwe nesevhisi masevhisi (network subsystem, firewall, chengetedzo, USB stack, nezvimwewo) inomhanya mumichina yakaparadzana inomhanya uchishandisa Xen hypervisor . Panguva imwecheteyo, aya maapplication anowanikwa mukati medesktop imwechete uye anosiyaniswa kuti ajekeswe neakasiyana mavara ehwindo furemu. Nzvimbo yega yega ine mukana wekuverenga kune iyo yepasi mudzi FS uye chengetedzo yemunharaunda isingapindire nekuchengetwa kwedzimwe nharaunda; sevhisi yakakosha inoshandiswa kuronga kusangana kweapp.

Kuburitswa kweQubes 4.1 OS, iyo inoshandisa virtualization kuparadzanisa maapplication

Iyo Fedora neDebian package base inogona kushandiswa sehwaro hwekuumbwa kwemamiriro ekunze, uye matemplate eUbuntu, Gentoo uye Arch Linux anotsigirwawo nenharaunda. Zvinogoneka kuronga kupinda kwezvishandiso muWindows virtual muchina, pamwe nekugadzira Whonix-based virtual muchina kuti ipe kusazivikanwa kupinda kuburikidza neTor. Iyo mushandisi shell yakavakirwa paXfce. Kana mushandisi avhura application kubva kumenyu, iyo application inotanga mune chaiyo chaiyo muchina. Izvo zviri mukati meiyo virtual environments zvinotsanangurwa neseti yematemplate.

Kuburitswa kweQubes 4.1 OS, iyo inoshandisa virtualization kuparadzanisa maapplication
Kuburitswa kweQubes 4.1 OS, iyo inoshandisa virtualization kuparadzanisa maapplication

Shanduko huru:

  • Iko kugona kushandisa yakaparadzana GUI Domain nharaunda ine zvikamu zvekuona kushanda kweiyo graphical interface kwaitwa. Pakutanga, munzvimbo chaidzo, kirasi yega yega yekushandisa yaimhanya yakaparadzana X sevha, yakarerutswa hwindo maneja, uye stub vhidhiyo mutyairi akashandura kuburitsa kune yekudzora nharaunda mune inoumbwa modhi, asi magiraidhi stack zvikamu, iyo huru desktop hwindo maneja, skrini. zvinodzora, uye madhiraivha emifananidzo akamhanya munzvimbo huru yekudzora Dom0. Ikozvino mabasa ane chekuita nemifananidzo anogona kutamiswa kubva kuDom0 kuenda kune yakaparadzana GUI Domain nharaunda uye yakapatsanurwa kubva kune system manejimendi zvikamu. Dom0 inongosiya yakakosha kumashure maitiro kuti ipe mukana kune mamwe mapeji ekurangarira. GUI Domain tsigiro ichiri kuyedza uye haina kugoneswa nekusarudzika.
  • Yakawedzera tsigiro yekuyedza yeAudio Domain, nharaunda yakaparadzana yekumhanyisa sevha yekuteerera iyo inokutendera kuti upatsanure zvikamu zveodhiyo kugadzirisa kubva kuDom0.
  • Yakawedzera kumashure maitiro qrexec-policy uye itsva sisitimu yemitemo yeiyo Qrexec RPC mashini, iyo inokutendera iwe kuita mirairo mumamiriro ezvinhu akatsanangurwa chaiwo nharaunda. Iyo Qrexec mitemo system inosarudza kuti ndiani angaite chii uye kupi muQubes. Iyo itsva vhezheni yemitemo ine yakawedzera kuchinjika fomati, yakakura kuwedzera mukubudirira, uye yekuzivisa sisitimu inoita kuti zvive nyore kuongorora matambudziko. Yakawedzera kugona kumhanya Qrexec masevhisi sevhavha inowanikwa kuburikidza nesocket server.
  • Matatu matemplate matsva emamiriro ekunze akavakirwa paGentoo Linux anokurudzirwa - mashoma, ane Xfce uye neGNOME.
  • Chivako chitsva chakaitwa chekugadzirisa, kuungana otomatiki uye kuyedzwa kwemamwe matemplate enzvimbo. Pamusoro peGentoo, zvivakwa zvinopa rutsigiro rwematemplate ane Arch Linux uye Linux kernel yekuyedza.
  • Iyo yekuvaka uye yekuyedza sisitimu yakagadziridzwa, tsigiro yekusimbisa mune inoenderera mberi yekubatanidza sisitimu yakavakirwa paGitLab CI yakawedzerwa.
  • Basa rakaitwa kuita tsigiro yezvivakwa zvinodzokororwa zveDebian-based nharaunda, iyo inogona kushandiswa kusimbisa kuti zvikamu zveQubes zvakavakwa chaizvo kubva kune yakataurwa sosi macode uye haina shanduko yekunze, iyo inotsiva iyo, semuenzaniso, inogona kuva. inogadzirwa nekurwisa zvivakwa zvegungano kana mabhukimaki mune iyo compiler.
  • Kuitwa kwe firewall kwakanyorwa zvakare.
    Kuburitswa kweQubes 4.1 OS, iyo inoshandisa virtualization kuparadzanisa maapplication
  • Iyo sys-firewall uye sys-usb nharaunda zvino kumhanya mu "kurasa" modhi nekusarudzika, i.e. zvinoraswa uye zvinogona kugadzirwa pazvinenge zvichidiwa.
  • Yakavandudzwa rutsigiro rwepamusoro pixel density skrini.
  • Yakawedzera tsigiro yeakasiyana cursor maumbirwo.
  • Yakaitwa chiziviso pamusoro pekushaikwa kwemahara disk nzvimbo.
  • Yakawedzerwa rutsigiro rweparanoid backup yekudzoreredza modhi, iyo inoshandisa imwe-nguva chaiyo chaiyo nharaunda yekupora.
  • Iyo yekuisa inokutendera iwe kuti usarudze pakati peDebian neFedora kune chaiwo muchina matemplate.
  • Yakawedzera itsva graphical interface yekugadzirisa zvigadziriso.
    Kuburitswa kweQubes 4.1 OS, iyo inoshandisa virtualization kuparadzanisa maapplication
  • Yakawedzera Template Manager utility yekuisa, kudzima uye kugadzirisa matemplate.
  • Yakavandudzwa nzira yekugovera template.
  • The base Dom0 environment has been updated to the Fedora 32 package base.Matemplates ekugadzira mavirtual environments akagadziridzwa kuFedora 34, Debian 11 uye Whonix 16. Linux 5.10 kernel inopiwa nekusingaperi. Iyo Xen 4.14 hypervisor uye Xfce 4.14 graphical nharaunda yakagadziridzwa.

Source: opennet.ru

Voeg