ProHoster > Π‘Π»ΠΎΠ³ > wararka internetka > ProFTPD 1.3.8 ftp server siideynta

ProFTPD 1.3.8 ftp server siideynta

Laba sano iyo badh ka dib horumarinta, siideynta muhiimka ah ee server-ka ftp ProFTPD 1.3.8 ayaa la daabacay, oo leh awoodaha xoojinta iyo shaqeynta, iyo daciifnimada aqoonsiga xilliyeed ee dayacanka khatarta ah. Siideynta sixitaanka ee ProFTPD 1.3.7f waa la heli karaa isku mar waxayna noqon doontaa tan ugu dambeysa ee taxanaha ProFTPD 1.3.7.

Hal-abuurka ugu muhiimsan ee ProFTPD 1.3.8:

  • Taageerada amarka FTP ee CSID (Client/Aqoonsiga Adeegga) waa la fuliyay, kaas oo loo isticmaali karo in lagu diro macluumaadka si loo aqoonsado software-ka macmiilka ee server-ka iyo helitaanka jawaabaha macluumaadka si loo aqoonsado server-ka. Tusaale ahaan, macmiilku waxa uu qori karaa "CSID Name=BSD FTP; Nooca=7.3" oo hel "200 Magaca=ProFTPD; Nooca=1.3.8; OS=Ubuntu Linux; OSVer=22.04; Xaalad xasaasi ah=1; DirSep=/;".
  • Taageero dheeri ah oo loogu talagalay fidinta "hagaha guriga" si loo ballaariyo ~/iyo ~ isticmaalaha/ waddooyinka hirgelinta nidaamka SFTP. Waxaad isticmaali kartaa dardaaranka "SFTPExtensions homeDirectory" si aad awood ugu yeelato.
  • Taageero lagu daray AES-GCM ciphers mod_sftp"[emailka waa la ilaaliyay]"Iyo"[emailka waa la ilaaliyay]", iyo sidoo kale wareejinta furayaasha martida loo yahay ("SFTPOptions NoHostkeyRotation") iyadoo la adeegsanayo kordhinta OpenSSH"[emailka waa la ilaaliyay]"iyo"[emailka waa la ilaaliyay]" Taageerada awood siinta ciphers AES GCM ayaa lagu daray dardaaranka SFTPCiphers.
  • Waxaa lagu daray "-enable-pcre2" ikhtiyaar si loogu dhiso maktabadda PCRE2 halkii PCRE. Awoodda lagu dooran karo matoorka hadalka caadiga ah ee u dhexeeya PCRE2, POSIX iyo PCRE ayaa lagu daray dardaaranka RegexOptions.
  • Waxaa lagu daray dardaaranka SFTPHostKeys si loo qeexo algorithms-yada muhiimka ah ee loo fidiyay macaamiisha moduleka mod_sftp.
  • Dardaaranka XaqiiqdaDefault ee lagu daray si uu si cad u qeexo liiska "xaqiiqda" ee lagu soo celiyay jawaabaha MLSD/MLSD FTP.
  • Lagu daray dardaaranka LDAPConnectTimeout si loo qeexo wakhtiga xidhidhiyaha ee serfarka LDAP.
  • Awaamiirta ListStyle ayaa lagu daray si ay awood ugu siiso liiska waxa ku jira hagaha qaabka Windows.
  • Dardaaranka RedisLogFormatExtra waa la fuliyay si loogu daro furayaasha gaarka ah iyo qiyamka log-ka JSON, oo ay ku jiraan dardaaranka RedisLogOnCommand iyo RedisLogOnEvent.
  • Halbeegga MaxLoginAttemptsFromUser ayaa lagu daray dardaaranka BanOnEvent si loo joojiyo isku darka isticmaaleyaasha iyo cinwaannada IP-ga.
  • Taageerada lagu daray TLS marka lagu xidho Redis DBMS dardaaranka RedisSentinel. Taageero lagu daray dardaaranka RedisServer ee habaynta amarka AUTH ee la isticmaalay tan iyo Redis 6.x.
  • Taageerada xashiishka ETM (Encrypt-Kadib-MAC) ayaa lagu daray dardaaranka SFTPdigeests.
  • Lagu darey calankii ReusePort dardaaranka SocketOptions si loo suurtageliyo qaabka godka SO_REUSEPORT.
  • Calankii AllowSymlinkUpload waxaa lagu daray dardaaranka TransferOptions si loogu soo celiyo awoodda lagu dhejiyo xiriiriyeyaasha astaanta ah.
  • Taageerada "curve448-sha512" algoorithm-isweydaarsiga furaha ah ayaa lagu daray dardaaranka SFTPKeyExchanges.
  • Awoodda lagu beddelo faylal dheeri ah oo ku jira miisaska oggolaanshaha/diidmada ayaa lagu daray moduleka mod_wrap2.
  • Qiimaha caadiga ah ee cabbirka FSCachePolicy ayaa loo beddelay "off".
  • Module mod_sftp waxa loo habeeyey isticmaalka maktabada OpenSSL 3.x
  • Taageero lagu daray in lagu dhiso maktabadda libidn2 si loo isticmaalo Magacyada Domain-ka Caalamiga ah (IDNs).
  • Sida caadiga ah, utility ftpasswd ee soo saarista hashes erayga sirta ah ayaa leh SHA256 algorithm halkii MD5.

Source: opennet.ru

Add a comment