ProHoster > Blog > internet nhau > Kuburitswa kweSFTP Server SFTPGo 2.2.0

Kuburitswa kweSFTP Server SFTPGo 2.2.0

Kuburitswa kweSFTGo 2.2 server kwakabudiswa, izvo zvinokutendera kuti uronge kure kure kuwana mafaera uchishandisa SFTP, SCP/SSH, Rsync, HTTP uye WebDav protocol. Pakati pezvimwe zvinhu, SFTPGo inogona kushandiswa kupa mukana kune Git repositories uchishandisa SSH protocol. Dhata inogona kutamiswa kubva kunharaunda faira system uye kubva kunze kwekuchengetedza inoenderana neAmazon S3, Google Cloud Storage uye Azure Blob Storage. Zvinogoneka kuchengetedza data mune encrypted fomu. Kuchengeta dhatabhesi yevashandisi uye metadata, maDBMS ane rutsigiro rweSQL kana kiyi / kukosha fomati inoshandiswa, yakadai sePostgreSQL, MySQL, SQLite, CockroachDB kana bbolt, asi zvakare zvinokwanisika kuchengetedza metadata mu RAM, iyo isingade kubatanidza kunze database. Iyo kodhi yeprojekiti yakanyorwa muGo uye yakagoverwa pasi peGPLv3 rezinesi.

Mushanduro itsva:

  • Yakawedzera tsigiro yehuviri-chinhu chechokwadi uchishandisa nguva-inogumira-imwe-nguva mapassword (TOTP, RFC 6238). Zvishandiso zvakaita seAuthy neGoogle Authenticator zvinogona kushandiswa sezvibvumikiso.
  • Iko kugona kwekuwedzera mashandiro kuburikidza nema plugins kwaitwa. Pakati pemapulagi atove aripo: kutsigirwa kwemamwe makiyi ekutsinhana masevhisi, kubatanidzwa kwePublish/Subscribe scheme, kuchengetedza uye kutsvaga ruzivo pamusoro pezviitiko muDBMS.
  • Iyo REST API yakawedzera tsigiro yehuchokwadi uchishandisa makiyi, kuwedzera kune JWT tokens, uye inopawo kugona kuseta data kuchengetedza marongero (kudzikamisa hupenyu hwe data) maererano nemadhairekitori ega ega uye vashandisi. Nekutadza, Swagger UI inogoneswa kufamba API zviwanikwa pasina kushandisa zvekunze zvekushandisa.
  • Tsigiro yemabasa ekunyora yakawedzerwa kune yewebhu interface (kurodha mafaera, kugadzira madhairekitori, kutumidza zita uye kudzima), kugona kuseta patsva password nekusimbiswa neemail kwaitwa, chinyorwa faira mupepeti uye PDF gwaro rekuona zvakabatanidzwa. Yakawedzera kugona kugadzira HTTP zvinongedzo kuti ipe vashandisi vekunze mukana kune ega mafaera uye madhairekitori, nekugona kuseta yakaparadzana yekupinda password, kudzikisira IP kero, isa chinongedzo hupenyu uye kudzikisira huwandu hwekurodha.

Zvinhu zvikuru zveSFTPGo:

  • Imwe neimwe account yakadzikwa, ichiganhurira kupinda kune dhairekitori remusha remushandisi. Izvo zvinogoneka kugadzira chaiwo madhairekitori anoreva kune data kunze kwedhairekitori remusha remushandisi.
  • Maakaunti anochengetwa mune chaiyo mushandisi dhatabhesi iyo isingapesane neiyo system mushandisi database. SQLite, MySQL, PostgreSQL, bbolt uye in-memory chengetedzo inogona kushandiswa kuchengetedza mushandisi dhatabhesi. Nzira dzakapihwa kumepu chaiwo uye system maakaundi - yakananga kana yekupokana mepu inogoneka (mumwe mushandisi wesystem anogona kumepu kune mumwe mushandisi chaiwo).
  • Kiyi yeruzhinji, SSH kiyi, uye password yechokwadi inotsigirwa (kusanganisira inopindirana yechokwadi nekhibhodi yekupinda password). Zvinokwanisika kusunga makiyi akati wandei kumushandisi wega wega, pamwe nekumisikidza multi-factor uye multi-stage authentication (semuenzaniso, kana ikabudirira kiyi yechokwadi, password inogona kukumbirwa zvakare).
  • Zvinokwanisika kugadzirisa nzira dzakasiyana dzechokwadi dzemushandisi wega wega, pamwe nekutsanangura nzira dzadzo dzakaitwa nekudaidza zvirongwa zveuthenticator zvekunze (semuenzaniso, zvekusimbisa kuburikidza neLDAP) kana kutumira zvikumbiro kuburikidza neHTTP API.
  • Zvinogoneka kubatanidza vekunze vanobata kana HTTP API mafoni kuti uchinje zvine simba marongero emushandisi anodanwa mushandisi asati apinda. Inotsigira dynamic mushandisi kusikwa pakubatanidza.
  • Tsigiro yemakota ega ega saizi yedata uye nhamba yemafaira.
  • Tsigiro yekudzikamisa bandwidth neyakasiyana marongero emiganhu yeinouya uye inobuda traffic, pamwe nemiganhu yehuwandu hwekubatanidza panguva imwe chete.
  • Kuwana zvigadziriso zvekushandisa zvinoshanda zvine chekuita nemushandisi kana dhairekitori (iwe unogona kurambidza kutarisa rondedzero yemafaira, kurambidza kurodha, kurodha, kunyora pasi, kudzima, kutumidza zita kana kushandura kodzero dzekuwana, kurambidza kusikwa kwemadhairekitori kana zviratidzo zvinongedzo, nezvimwewo).
  • Kune wega wega mushandisi, iwe unogona kutsanangura wega kurambidzwa kwenetiweki, semuenzaniso, iwe unogona chete kubvumira kuwana kubva kune dzimwe IPs kana subnets.
  • Iyo inotsigira kubatana kwemafirita ekudhawunirodha zvemukati zvine chekuita nevashandisi vega uye madhairekitori (semuenzaniso, unogona kuvharira kurodha kwemafaira neimwe yekuwedzera).
  • Iwe unogona kusunga zvibatiso zvinotangwa panguva dzakasiyana siyana mashandiro nefaira (kurodha, kudzima, kutumidza zita, nezvimwewo). Pamusoro pekufonera vanobata, kutumira zviziviso nenzira yeHTTP zvikumbiro zvinotsigirwa.
  • Kudzima otomatiki kwezvisingashande zvinongedzo.
  • Atomic gadziriso yegadziriso pasina kutyora zvinongedzo.
  • Kupa metrics ekutarisa muPrometheus.
  • Iyo HAProxy PROXY protocol inotsigirwa kuronga kuyera kuremerwa kana proxy yekubatanidza kune SFTP/SCP masevhisi pasina kurasikirwa neruzivo rwekunobva mushandisi IP kero.
  • REST API yekutarisira vashandisi uye madhairekitori, kugadzira backups uye kushuma pane inoshanda yekubatanidza.
  • Webhu interface (http://127.0.0.1:8080/web) yekumisikidza uye kutarisa (kumisikidza kuburikidza neyakajairwa configuration mafaira kunotsigirwawo).
  • Kugona kutsanangura marongero muJSON, TOML, YAML, HCL uye envfile mafomati.
  • Tsigiro yekubatanidza kuburikidza neSSH ine shoma yekuwana kune system mirairo. Semuenzaniso, mirairo inodiwa kuGit (git-receive-pack, git-upload-pack, git-upload-archive) uye rsync inotenderwa kumhanya, pamwe nemirairo yakati wandei yakavakirwa (scp, md5sum, sha*sum, cd, pwd, sftpgo-kopi uye sftpgo-bvisa).
  • Inotakurika modhi yekugovera imwe yakagovaniswa dhairekitori ine otomatiki chizvarwa chekubatanidza zvitupa zvinoshambadzirwa kuburikidza nemulticast DNS.
  • Yakavakwa-in-profiling system yekuongorora maitiro.
  • Yakareruka Linux system account yekufambisa maitiro.
  • Kuchengeta matanda muJSON format.
  • Tsigiro yemadhairekitori echokwadi (semuenzaniso, zviri mukati meimwe dhairekitori zvinogona kupihwa kwete kubva kune yemuno faira system, asi kubva kunze kwegore kuchengetedza).
  • Tsigiro ye cryptfs kunyora pachena data pane nhunzi paunenge uchichengetedza kune iyo faira system uye decrypt paunenge uchiisa.
  • Tsigiro yekutumira zvinongedzo kune mamwe maseva eSFTP.
  • Kugona kushandisa SFTPGo seSFTP subsystem yeOpenSSH.
  • Iko kugona kuchengetedza zvitupa uye yakavanzika data mune yakavanzika fomu uchishandisa KMS maseva (Key Management Services), seVault, GCP KMS, AWS KMS.

Source: opennet.ru

Voeg