Molo emva kwemini, Luluntu!
Igama lam ndingu Yanislav Basyuk. Ndingumququzeleli wombutho woluntu "Medium".
Kule nqaku ndizamile ukuqokelela ulwazi olubanzi malunga nokuba yintoni le isebenza kwintsimi yeRussian Federation. .
Ndiza kuthi:
Yintoni iMedium?
Yintoni i-Yggdrasil kwaye kutheni i-Medium iyisebenzisa njengeyona ndlela yokuthutha
Uyiqwalasela njani ngokufanelekileyo imeko-bume yokusebenzisa izixhobo zothungelwano oluPhakathi
Yintoni iMedium?
phakathi (eng. phakathi - "umthetheleli", isilogeni sokuqala - Musa ukukubuza imfihlo yakho. Yibuyisele; kwakhona ngesiNgesi igama medium kuthetha "ophakathi") - umnikezeli we-Intanethi waseRussia onikezela ngeenkonzo zokufikelela kwinethiwekhi simahla kungafunwanga ntlawulo.
Nini, phi kwaye kutheni iMedium yadalwa?
Ekuqaleni, le projekthi yaqanjwa njenge в .
“Ephakathi” yasekwa ngo-Epreli ka-2019 njengenxalenye yokuyilwa kwendawo yonxibelelwano ezimeleyo ngokubonelela abasebenzisi bokugqibela ukufikelela kwimithombo yothungelwano yeYggdrasil ngokusetyenziswa kobuchwephesha bokuhambisa idatha engenazingcingo ye-Wi-Fi.
Ndingalufumana phi uluhlu olupheleleyo lwazo zonke iindawo zenethiwekhi?Ungayifumana kwi .
Yintoni iYggdrasil kwaye kutheni iMedium iyisebenzisa njengeyona ndlela yothutho?
kukuzicwangcisa , enekhono lokudibanisa ii-routers zombini kwimodi yokwaleka (phezulu kwi-Intanethi) kwaye ngokuthe ngqo komnye nomnye ngoqhagamshelwano olungenazintambo okanye olungenazintambo.
I-Yggdrasil kukuqhubekeka kweprojekthi . Owona mahluko mkhulu phakathi kweYggdrasil kunye neCjDNS kusetyenziso lweprotocol (iprotocol yomthi enwebekayo).
Ngokungagqibekanga, zonke iirouter ezikwinethiwekhi ziyasetyenziswa ukudlulisa idatha phakathi kwabanye abathathi-nxaxheba.
Ukukhethwa kwenethiwekhi yeYggdrasil njengothutho oluphambili ngenxa yesidingo sokwandisa isantya soxhulumaniso (kude kube ngu-Agasti 2019, i-Medium isetyenzisiwe. ).
Utshintsho oluya kwi-Yggdrasil lukwanike abathathi-nxaxheba beprojekthi ithuba lokuqalisa ukusasaza inethiwekhi yeMesh ene-Full-Mesh topology. Umbutho wothungelwano olunjalo lolona nyango lusebenzayo lokuvalelwa.
I-Yggdrasil isebenzisa uguqulelo oluntsonkothileyo ekupheleni ukuya-ekupheleni ngokungagqibekanga. Kutheni iinkonzo zenethiwekhi eziPhakathi zisebenzisa i-HTTPS?
Akukho sidingo sokusebenzisa i-HTTPS ukuqhagamshela kwiinkonzo zewebhu kuthungelwano lweYggdrasil ukuba uqhagamshela kubo ngomzila wothungelwano weYggdrasil osebenza ekuhlaleni.
Ngokwenene: Uthutho lweYggdrasil lukwinqanaba ikuvumela ukuba usebenzise ngokukhuselekileyo izixhobo ngaphakathi kwenethiwekhi yeYggdrasil - ukukwazi ukuqhuba ngaphandle ngokupheleleyo.
Imeko iyatshintsha kakhulu ukuba ufikelela kwimithombo ye-intranet ye-Yggdarsil kungekhona ngokuthe ngqo, kodwa ngokusebenzisa i-node ephakathi - indawo yokufikelela kwinethiwekhi ePhakathi, elawulwa ngumqhubi wayo.
Kule meko, ngubani onokubeka esichengeni idatha oyithumelayo:
- Umsebenzisi wendawo yokufikelela. Kucacile ukuba umqhubi wangoku wendawo yokufikelela kwinethiwekhi ePhakathi unokuphulaphula i-traffic engafihlwanga edlula kwizixhobo zayo.
- umhlaseli (). Eliphakathi linengxaki efana ne , kuphela ngokunxulumene neendawo zokungena kunye neziphakathi.
Oku kubonakala ngathi
Isisombululo: ukufikelela kwiinkonzo zewebhu ngaphakathi kwenethiwekhi yeYggdrasil, sebenzisa iprotocol yeHTTPS (inqanaba lesi-7 ). Ingxaki kukuba akwenzeki ukukhupha isatifikethi sokhuseleko lokwenyani kwiinkonzo zenethiwekhi yeYggdrasil ngeendlela eziqhelekileyo ezinje .
Ke ngoko, saseka iziko lethu lezatifiketi - . Uninzi lweenkonzo zothungelwano oluPhakathi zisayinwe sisatifikethi sokhuseleko esiyingcambu salo gunyaziwe wesatifikethi.
Ithuba lokunciphisa isatifikethi sengcambu yegunya lesatifikethi, ngokuqinisekileyo, sithathelwe ingqalelo - kodwa apha isatifikethi siyimfuneko ngakumbi ukuqinisekisa ukunyaniseka kokudluliselwa kwedatha kunye nokuphelisa ukuhlaselwa kwe-MITM.
Iinkonzo zothungelwano oluphakathi ezisuka kubasebenzisi abohlukeneyo zinezatifikethi zokhuseleko ezohlukeneyo, ngendlela enye okanye enye esayinwe ngugunyaziwe woqinisekiso lweengcambu. Nangona kunjalo, abasebenzisi be-Root CA abakwazi kuvala i-traffic efihliweyo kwiinkonzo abatyikitye kuzo izatifikethi zokhuseleko (bona ).
Abo baxhalabele ngokukhethekileyo ukhuseleko lwabo banokusebenzisa iindlela ezinjalo njengokhuseleko olongezelelweyo, njenge и .
Okwangoku, isiseko sesiseko soluntu sothungelwano oluPhakathi lunamandla okukhangela ubume besatifikethi sisebenzisa iprotocol okanye ngokusebenzisa .
Ngaba iMedium inenkqubo yayo yegama lesizinda?
Ekuqaleni, inethiwekhi ePhakathi yayingenalo iseva yegama lesizinda esisembindini esinokuvumela abathathi-nxaxheba bothungelwano ukuba bafikelele kwezona zixhobo zityelelwa rhoqo ngendlela elula neqhelekileyo (ngokuchaseneyo nokusebenzisa idilesi ye-IPv6 yomncedisi othile).
Thina kwiMedium sagqiba ekubeni siphefumle ubomi kule ngcamango-kwaye, sijonge phambili kancinci, siphumelele!
Ubhaliso lwegama lesizinda lwenzeka ngokuzenzekelayo - kufuneka uchaze idilesi ye-IPv6 yomncedisi apho inkonzo isebenza khona. Irobhothi iya kukhangela ukuba le dilesi yeyomntu ozama ukubhalisa igama lesizinda.
Ukuba uphumelele, igama lesizinda liya kongezwa kwi-database yegama lesizinda kwiiyure ze-24. Ukuba umncedisi uyeka ukuphendula kwi-robot kwaye ayifumaneki ngaphezu kweeyure ze-72, igama lesizinda liya kukhutshwa.
Akunakwenzeka ukubhalisa igama lesizinda kwi::1
Ikopi yoluhlu olupheleleyo lwamagama e-domain abhalisiweyo iyafumaneka . Oku kusivumela ukuba siqinisekise ubuninzi obucacileyo malunga nemeko yangoku yamagama esizinda kunye nokuphelisa ukubhloka kwabo ngokusekelwe kwimeko enokwenzeka yokuvela kwe-ambivalent ngenxa yesenzo somntu. Kuthekani ukuba umqhubi we-DNS akayithandi into?.
Kuthekani ngokukhupha izatifikethi ze-SSL kwiinkonzo zewebhu?
Ukudalwa kwe-domain ye-domain ye-server kwakungenxa yesidingo sokuthumela isiseko esingundoqo soluntu - ukwenzela ukuba kukhutshwe isatifikethi, kufuneka sibe nebala le-CN (igama eliqhelekileyo), eliligama lesizinda apho isatifikethi sikhutshwe khona.
Inkqubo yokukhupha izatifikethi ezisayinwe ngugunyaziwe wesatifikethi yenzeke ngokuzenzekelayo - i-robot ihlola ukuchaneka kunye nokunyaniseka kwedatha efakwe ngumsebenzisi. Ukuba kuphumelele, i-imeyile ithunyelwa kumsebenzisi wokugqibela equka nesatifikethi esisayiniweyo.
Nantsi
Uyiqwalasela njani ngokufanelekileyo imeko-bume yokusebenzisa izixhobo zothungelwano oluPhakathi?
Iimpawu zenkqubo yokumisela indawo yokusebenza zixhomekeke kwindlela yokusebenza oyisebenzisayo.
Khetha ngobulumko (umfanekiso ucofa):
I-Intanethi yasimahla eRussia iqala ngawe
Unokunikezela ngalo lonke uncedo olunokwenzeka ekusekeni i-Intanethi yasimahla eRashiya namhlanje. Siqulunqe uluhlu olubanzi lwendlela onokunceda ngayo inethiwekhi:
Xelela abahlobo bakho kunye noogxa bakho malunga nenethiwekhi ePhakathi
Yabelana kweli nqaku kwiintanethi zentlalo okanye kwiblogi yomntu
Thatha inxaxheba kwiingxoxo zemiba yobugcisa yothungelwano oluPhakathi
Yenza inkonzo yakho yewebhu kwinethiwekhi yeYggdrasil kwaye uyongeze kuyo
Phakamisa eyakho kwinethiwekhi ePhakathi
Funda kwakhona:
SikwiTelegram:
Ngabasebenzisi ababhalisiweyo kuphela abanokuthatha inxaxheba kuphando. , ndiyacela.
Olunye ukuvota: kubalulekile kuthi ukuba sazi uluvo lwabo bangenayo iakhawunti epheleleyo kuHabré
-
↑
-
↓
Bali-138 abasebenzisi abavotileyo. Abasebenzisi abasi-65 abakhange.
umthombo: www.habr.com