Emva konyaka wophuhliso, ukukhululwa kwe-NTPsec 1.2.3 inkqubo yokuvumelanisa ixesha elichanekileyo yapapashwa, eyifolokhwe yokuphunyezwa kwereferensi ye-NTPv4 protocol (NTP Classic 4.3.34), igxininise ekusebenzeni kwakhona isiseko sekhowudi ukwenzela ukuba ukuphucula ukhuseleko (ikhowudi ephelelwe yisikhathi yahlanjululwa, iindlela zokuthintela ukuhlaselwa zisetyenzisiweyo, imisebenzi ekhuselweyo yokusebenza ngememori kunye neentambo). Le projekthi iphuhliswa phantsi kobunkokeli buka-Eric S. Raymond ngokuthatha inxaxheba kwabanye babaphuhlisi be-NTP ye-Classic yoqobo, iinjineli ezivela kwi-Hewlett Packard kunye ne-Akamai Technologies, kunye neeprojekthi ze-GPSD kunye ne-RTEMS. Ikhowudi yomthombo we-NTPsec isasazwa phantsi kwe-BSD, MIT, kunye neelayisensi ze-NTP.
Phakathi kotshintsho kwinguqulelo entsha:
- Ulungelelwaniso lweepakethi zeprotocol yolawulo lweMode 6 lutshintshiwe, olunokwaphula ukuhambelana neNTP yakudala. Indlela yesi-6 yeprothokholi isetyenziselwa ukunxibelelana ngolwazi lobume beseva kunye nokutshintsha ukuziphatha kweseva kubhabho.
- I-ntpq isebenzisa i-algorithm ye-encryption ye-AES ngokungagqibekanga.
- Ukusebenzisa indlela ye-Seccomp, amagama eefowuni zesixokelelwano angachanekanga avaliwe.
- Ukusetha kwakhona ngeyure kwezinye iinkcukacha-manani. Iifayile zelog ezongeziweyo ngeNTS kunye neNTS-KE izibalo ezirekhodwa rhoqo ngeyure. Imbonakalo eyongeziweyo kwimpazamo ye-ms-sntp kunye nelog yezibalo.
- Ngokungagqibekanga, ukwakha ngeesimboli zokucoca kuvuliwe.
- Inkxaso eyongeziweyo yokuchaza uluhlu olusebenzayo lwe-ECDH olujiko lwegophe (tlsecdhcurves useto) oluxhaswa kwi-OpenSSL.
- Yongezwa "uhlaziyo" ukhetho lokwakha.
- Imveliso ye-JSON ye-ntpdig ibonelela ngepakethi yedatha yokulinda.
umthombo: opennet.ru