ProHoster > Blog > litaba tsa inthanete > Ho lokolloa ha FreeRDP 2.0, ts'ebetsong ea mahala ea protocol ea RDP

Ho lokolloa ha FreeRDP 2.0, ts'ebetsong ea mahala ea protocol ea RDP

Kamora lilemo tse supileng tsa nts'etsopele etsahetse tokollo ea morero FreeRDP 2.0, e fanang ka ts'ebetsong ea mahala ea protocol ea phihlello ea komporo e hole RDP (Remote Desktop Protocol), e ntlafalitsoeng ho latela litlhaloso Microsoft. Morero o fana ka laeborari bakeng sa ho kopanya tšehetso ea RDP lits'ebetsong tsa mokha oa boraro le moreki ea ka sebelisoang ho hokela komporo ea Windows u le hole. Khoutu ea morero ajoa ke e nang le tumello tlas'a Apache 2.0.

Tokollo ea ho qetela e tsitsitseng ea morero e bile thehoa ka January 2013, ’me teko ea lekala la 2.0 e qalile ka 2007. E le hore ho se ke ha lieha nts'etsopele nakong e tlang, litokollo tse latelang li tla ntlafatsoa ka har'a moralo oa
rolling model, e leng se bolelang ho thehoa ha selemo le selemo ho lokolloa ha bohlokoa ka mor'a hore lekala le leholo le tsitsitsoe le ho phatlalatsoa nako le nako ea lintlafatso tsa tokiso. Litokollo tse kholo li tla tšehetsoa ka lilemo tse peli - selemo se le seng bakeng sa ho lokisa liphoso le selemo se seng bakeng sa ho lokisa feela bofokoli.

ka sehloohong fetola:

  • E ekelitse bokhoni ba ho sebetsa joalo ka moemeli oa RDP oa lipalangoang;
  • Tšehetso e ekelitsoeng bakeng sa MS-RA 2 (Protocol ea Thuso ea Remote);
  • Khoutu e amanang le tšehetso ea karete e bohlale e hlophisitsoe bocha. E ekelitse ts'ebetso e neng e le sieo pele le netefatso e matlafalitsoeng ea data e kentsoeng;
  • E kentse khetho ea "/cert", e kopanyang ts'ebetso e fanoeng pele ke likhetho tse arohaneng bakeng sa litifikeiti tsa ho sebetsa (cert-ignore, cert-deny, cert-name, cert-tofu);
  • Ho fana ka moreki ho ipapisitsoe le DirectFB, e neng e siiloe e sa tšehetsoe, e ile ea khaotsoa;
  • Ho nolofatsa fonte ho nolofalloa ka ho sa feleng;
  • Tšehetso e eketsehileng bakeng sa tsamaiso ea Flatpack ea liphutheloana tse ikemetseng;
  • Bakeng sa litsamaiso tse thehiloeng ho Wayland, mokhoa o bohlale oa ho lekanya o kentsoe ts'ebetsong ho sebelisoa libcairo;
  • E hlahisitse API bakeng sa ho lekanya litšoantšo ha ho etsoa software;
  • Ho kenngwa tshebetsong ha karolo ya RAIL (Remote Applications Integrated Locally), e dumellang phihlello ya remoutu ho difensetere tsa motho ka mong le matshwao a tsebiso, e ntjhafaditswe ho ya ho tlhaloso ya 28.0;
  • Nakong ea ts'ebetso, ho netefatsoa hore seva se tšehetsa phatlalatso ka mokhoa oa H.264;
  • Khetho ea "mask=" e kenyellelitsoe ho "/gfx" le litaelo tsa "/gfx-h264" ";
  • Lingoliloeng tsa mohloli li ile tsa hlophisoa bocha;
  • Khetho e ekelitsoeng "/ timeout" ho hlophisa nako ea ho emela lipakete tsa TCP ACK;
  • Vulnerabilities CVE-2020-11521, CVE-2020-11522, CVE-2020-11523, CVE-2020-11524, CVE-2020-11525, CVE-2020-11526 li se li hlophisitsoe, ho kenyelletsa le ho na le mathata a lebisang ho ngolleng sebaka sa memori kantle ho buffer e abilweng ha ho sebetswa data e tswang kantle. Ntle le moo, bofokoli bo bong ba 9 ntle le CVE bo lokisitsoe, haholo e bakoang ke ho bala ho tsoa libakeng tsa memori kantle ho buffer e abetsoeng.

Ho lokolloa ha FreeRDP 2.0, ts'ebetsong ea mahala ea protocol ea RDP

Source: opennet.ru

Eketsa ka tlhaloso