ProHoster > Ibhulogi > iindaba ze-intanethi > Uvavanyo lwe-Beta yeRed Hat Enterprise Linux 9 sele iqalile

Uvavanyo lwe-Beta yeRed Hat Enterprise Linux 9 sele iqalile

Компания Red Hat прСдставила ΠΏΠ΅Ρ€Π²ΡƒΡŽ Π±Π΅Ρ‚Π°-Π²Π΅Ρ€ΡΠΈΡŽ дистрибутива Red Hat Enterprise Linux 9. Π“ΠΎΡ‚ΠΎΠ²Ρ‹Π΅ установочныС ΠΎΠ±Ρ€Π°Π·Ρ‹ ΠΏΠΎΠ΄Π³ΠΎΡ‚ΠΎΠ²Π»Π΅Π½Ρ‹ для зарСгистрированных ΠΏΠΎΠ»ΡŒΠ·ΠΎΠ²Π°Ρ‚Π΅Π»Π΅ΠΉ Red Hat Customer Portal (для ΠΎΡ†Π΅Π½ΠΊΠΈ Ρ„ΡƒΠ½ΠΊΡ†ΠΈΠΎΠ½Π°Π»ΡŒΠ½ΠΎΡΡ‚ΠΈ Ρ‚Π°ΠΊΠΆΠ΅ ΠΌΠΎΠΆΠ½ΠΎ ΠΈΡΠΏΠΎΠ»ΡŒΠ·ΠΎΠ²Π°Ρ‚ΡŒ iso-ΠΎΠ±Ρ€Π°Π·Ρ‹ CentOS Stream 9). Π Π΅ΠΏΠΎΠ·ΠΈΡ‚ΠΎΡ€ΠΈΠΈ с ΠΏΠ°ΠΊΠ΅Ρ‚Π°ΠΌΠΈ доступны Π±Π΅Π· ΠΎΠ³Ρ€Π°Π½ΠΈΡ‡Π΅Π½ΠΈΠΉ для Π°Ρ€Ρ…ΠΈΡ‚Π΅ΠΊΡ‚ΡƒΡ€ x86_64, s390x (IBM System z), ppc64le ΠΈ Aarch64 (ARM64). Π˜ΡΡ…ΠΎΠ΄Π½Ρ‹Π΅ тСксты rpm-ΠΏΠ°ΠΊΠ΅Ρ‚ΠΎΠ² Red Hat Enterprise Linux 9 Ρ€Π°Π·ΠΌΠ΅Ρ‰Π΅Π½Ρ‹ Π² Git-Ρ€Π΅ΠΏΠΎΠ·ΠΈΡ‚ΠΎΡ€ΠΈΠΉ CentOS. Π Π΅Π»ΠΈΠ· оТидаСтся Π² ΠΏΠ΅Ρ€Π²ΠΎΠΉ ΠΏΠΎΠ»ΠΎΠ²ΠΈΠ½Π΅ ΡΠ»Π΅Π΄ΡƒΡŽΡ‰Π΅Π³ΠΎ Π³ΠΎΠ΄Π°. Π’ соотвСтствии с 10-Π»Π΅Ρ‚Π½ΠΈΠΌ Ρ†ΠΈΠΊΠ»ΠΎΠΌ ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΠΈ дистрибутива RHEL 9 Π±ΡƒΠ΄Π΅Ρ‚ ΡΠΎΠΏΡ€ΠΎΠ²ΠΎΠΆΠ΄Π°Ρ‚ΡŒΡΡ Π΄ΠΎ 2032 Π³ΠΎΠ΄Π°. ОбновлСния для RHEL 7 ΠΏΡ€ΠΎΠ΄ΠΎΠ»ΠΆΠ°Ρ‚ Π²Ρ‹ΠΏΡƒΡΠΊΠ°Ρ‚ΡŒΡΡ Π΄ΠΎ 30 июня 2024 Π³ΠΎΠ΄Π°, RHEL 8 β€” Π΄ΠΎ 31 мая 2029 Π³ΠΎΠ΄Π°.

I-Red Hat Enterprise Linux 9 iphawuleka ngokuhamba kwayo kwinkqubo yophuhliso evuleleke ngakumbi. Ngokungafaniyo namasebe angaphambili, isiseko sephakheji ye-CentOS Stream 9 sisetyenziswa njengesiseko sokwakha ukuhanjiswa.I-CentOS Stream ibekwe njengeprojekthi ephezulu ye-RHEL, evumela abathathi-nxaxheba beqela lesithathu ukuba balawule ukulungiswa kweepakethe ze-RHEL, bacebise utshintsho kunye nefuthe labo. izigqibo ezenziweyo. Ngaphambili, i-snapshot yesinye se-Fedora ekhutshwayo yayisetyenziswe njengesiseko sesebe elitsha le-RHEL, elagqitywa kwaye lazinziswa emva kweengcango ezivaliweyo, ngaphandle kokukwazi ukulawula inkqubela phambili yophuhliso kunye nezigqibo ezenziwe. Ngoku, ngokusekelwe kwi-snapshot ye-Fedora, kunye nokuthatha inxaxheba koluntu, isebe le-CentOS Stream liyenziwa, apho umsebenzi wokulungiselela wenziwa kwaye isiseko senziwe kwisebe elitsha elibalulekileyo le-RHEL.

Utshintsho oluphambili:

  • Ubume benkqubo kunye nezixhobo zokuhlanganisa zihlaziyiwe. I-GCC 11 isetyenziselwa ukwakha iipakethe Ithala leencwadi elisemgangathweni C lihlaziywe ukuba libe yi-glibc 2.34. Iphakheji ye-Linux kernel isekwe kukhupho lwe-5.14. Umphathi wephakheji ye-RPM uhlaziywe ukuba abe yi-version 4.16 ngenkxaso yokubekwa esweni kokuthembeka kusetyenziswa i-fapolicyd.
  • Ukufuduswa kokuhanjiswa kwiPython 3 kugqityiwe.Isebe lePython 3.9 linikezelwa ngokungagqibekanga. IPython 2 iyekisiwe.
  • Idesktop isekwe kwi-GNOME 40 (i-RHEL 8 ithunyelwe nge-GNOME 3.28) kunye nethala leencwadi le-GTK 4. Kwi-GNOME 40, iidesktop zenyani ezikwimowudi ye-Activity Overview zitshintshelwa kwi-landscape orientation kwaye ziboniswa njengekhonkco eliqhubekayo lokuskrola ukusuka ekhohlo ukuya ekunene. Idesktop nganye eboniswe kwimowudi yokuJonga ijonga iifestile ezikhoyo kunye neepani eziguqukayo kunye nokwandisa njengoko umsebenzisi esebenzisana. Utshintsho olungenamthungo lunikiwe phakathi koluhlu lweenkqubo kunye nedesktop enenyani.
  • I-GNOME ibandakanya i-power-profiles-daemon handler ebonelela ngokukwazi ukutshintshela kwi-fly phakathi kwendlela yokugcina amandla, imowudi yokulinganisa amandla, kunye nemowudi yokusebenza ephezulu.
  • Yonke imijelo yomsindo iye yasiwa kwiseva yemidiya yePipeWire, ngoku engagqibekanga endaweni yePulseAudio kunye neJACK. Ukusebenzisa iPipeWire kukuvumela ukuba unikezele ngezakhono zokucutshungulwa komsindo kuhlelo oluqhelekileyo lwedesktop, susa ukuqhekeka kwaye udibanise iziseko zomsindo kwizicelo ezahlukeneyo.
  • По ΡƒΠΌΠΎΠ»Ρ‡Π°Π½ΠΈΡŽ скрыто Π·Π°Π³Ρ€ΡƒΠ·ΠΎΡ‡Π½ΠΎΠ΅ мСню GRUB, Ссли RHEL являСтся СдинствСнным установлСнным Π² систСмС дистрибутивом ΠΈ Ссли ΠΏΡ€ΠΎΡˆΠ»Π°Ρ Π·Π°Π³Ρ€ΡƒΠ·ΠΊΠ° ΠΏΡ€ΠΎΡˆΠ»Π° Π±Π΅Π· сбоСв. Для ΠΏΠΎΠΊΠ°Π·Π° мСню Π²ΠΎ врСмя Π·Π°Π³Ρ€ΡƒΠ·ΠΊΠΈ достаточно ΡƒΠ΄Π΅Ρ€ΠΆΠΈΠ²Π°Ρ‚ΡŒ ΠΊΠ»Π°Π²ΠΈΡˆΡƒ Shift ΠΈΠ»ΠΈ нСсколько Ρ€Π°Π· Π½Π°ΠΆΠ°Ρ‚ΡŒ ΠΊΠ»Π°Π²ΠΈΡˆΡƒ Esc ΠΈΠ»ΠΈ F8. Из ΠΈΠ·ΠΌΠ΅Π½Π΅Π½ΠΈΠΉ Π² Π·Π°Π³Ρ€ΡƒΠ·Ρ‡ΠΈΠΊΠ΅ Ρ‚Π°ΠΊΠΆΠ΅ отмСчаСтся Ρ€Π°Π·ΠΌΠ΅Ρ‰Π΅Π½ΠΈΠ΅ Ρ„Π°ΠΉΠ»ΠΎΠ² ΠΊΠΎΠ½Ρ„ΠΈΠ³ΡƒΡ€Π°Ρ†ΠΈΠΈ GRUB для всСх Π°Ρ€Ρ…ΠΈΡ‚Π΅ΠΊΡ‚ΡƒΡ€ Π² ΠΎΠ΄Π½ΠΎΠΌ ΠΊΠ°Ρ‚Π°Π»ΠΎΠ³Π΅ /boot/grub2/ (Ρ„Π°ΠΉΠ» /boot/efi/EFI/redhat/grub.cfg Ρ‚Π΅ΠΏΠ΅Ρ€ΡŒ являСтся символичСской ссылкой Π½Π° /boot/grub2/grub.cfg), Ρ‚.Π΅. ΠΎΠ΄Π½Ρƒ ΠΈ Ρ‚Ρƒ ΠΆΠ΅ ΡƒΡΡ‚Π°Π½ΠΎΠ²Π»Π΅Π½Π½ΡƒΡŽ систСму ΠΌΠΎΠΆΠ½ΠΎ Π·Π°Π³Ρ€ΡƒΠΆΠ°Ρ‚ΡŒ ΠΊΠ°ΠΊ с использованиСм EFI, Ρ‚Π°ΠΊΠΈ ΠΈ BIOS.
  • Amacandelo okuxhasa iilwimi ezahlukeneyo apakishwe kwiilangpacks, ezikuvumela ukuba utshintshe inqanaba lenkxaso yolwimi efakiweyo. Umzekelo, i-langpacks-core-font inikezela ngamagama kuphela, i-langpacks-core ibonelela nge-glibc locale, isiseko sefonti, kunye nendlela yokufaka, kwaye i-langpacks ibonelela ngeenguqulelo, iifonti ezongezelelweyo, kunye nezichazi-magama zokukhangela upelo.
  • Для ΠΎΠ΄Π½ΠΎΠ²Ρ€Π΅ΠΌΠ΅Π½Π½ΠΎΠΉ установки Ρ€Π°Π·Π½Ρ‹Ρ… вСрсий ΠΏΡ€ΠΎΠ³Ρ€Π°ΠΌΠΌ ΠΈ Π±ΠΎΠ»Π΅Π΅ частого формирования обновлСния ΠΏΡ€ΠΈΠΌΠ΅Π½ΡΡŽΡ‚ΡΡ ΠΊΠΎΠΌΠΏΠΎΠ½Π΅Π½Ρ‚Ρ‹ Application Streams, ΠΊΠΎΡ‚ΠΎΡ€Ρ‹Π΅ Ρ‚Π΅ΠΏΠ΅Ρ€ΡŒ ΠΌΠΎΠ³ΡƒΡ‚ Ρ„ΠΎΡ€ΠΌΠΈΡ€ΠΎΠ²Π°Ρ‚ΡŒΡΡ с использованиСм всСх ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΈΠ²Π°Π΅ΠΌΡ‹Ρ… Π² RHEL Π²Π°Ρ€ΠΈΠ°Π½Ρ‚ΠΎΠ² распространСния ΠΏΠ°ΠΊΠ΅Ρ‚ΠΎΠ², Π²ΠΊΠ»ΡŽΡ‡Π°Ρ RPM-ΠΏΠ°ΠΊΠ΅Ρ‚Ρ‹, ΠΌΠΎΠ΄ΡƒΠ»ΠΈ (сгруппированныС Π² ΠΌΠΎΠ΄ΡƒΠ»ΠΈ Π½Π°Π±ΠΎΡ€Ρ‹ rpm-ΠΏΠ°ΠΊΠ΅Ρ‚ΠΎΠ²), SCL (Software Collection) ΠΈ Flatpak.
  • Amacandelo okhuseleko ahlaziyiwe. Ukusasazwa kusebenzisa isebe elitsha le-OpenSSL 3.0 yelayibrari ye-cryptographic. Ngokungagqibekanga, ii-algorithms zangoku nezithembekileyo ze-cryptographic ziyasebenza (umzekelo, ukusetyenziswa kwe-SHA-1 kwi-TLS, DTLS, SSH, IKEv2 kunye neKerberos akuvumelekanga, iTLS 1.0, TLS 1.1, DTLS 1.0, RC4, Camellia, DSA, 3DES kunye ne-FFDHE-1024 zikhubazekile) . Iphakheji ye-OpenSSH ihlaziywe kwinguqulo ye-8.6p1. I-Cyrus SASL iye yasiwa kwi-backend ye-GDBM endaweni ye-Berkeley DB. Amathala eencwadi e-NSS (iiNkonzo zoKhuseleko lweNethiwekhi) awasayixhasi ifomathi ye-DBM (Berkeley DB). I-GnuTLS ihlaziywe kuguqulelo 3.7.2.
  • Ukuphucula ngokuphawulekayo ukusebenza kwe-SELinux kunye nokunciphisa ukusetyenziswa kwememori. Kwi/etc/selinux/config, inkxaso ye-"SELINUX=ekhubazekileyo" ukuseta ukukhubaza i-SELinux isusiwe (esi setingi ngoku sivala kuphela ukulayishwa komgaqo-nkqubo, kwaye ukuvala ukusebenza kwe-SELinux ngoku kufuna ukuba kudluliswe iparamitha "selinux=0" kwi ikernel).
  • Inkxaso yovavanyo eyongeziweyo yeVPN WireGuard.
  • Ngokungagqibekanga, ukungena nge-SSH njengengcambu akuvumelekanga.
  • Izixhobo zokulawula iipakethe ze-iptables-nft (ii-iptables, ip6tables, i-ebtables kunye ne-arptables utilities) kunye ne-ipset ziye zachithwa. Ngoku kuyacetyiswa ukuba usebenzise ii-nftables ukulawula i-firewall.
  • Iquka i-daemon entsha ye-mptcpd yokuqwalasela i-MPTCP (i-MultiPath TCP), ulwandiso lwe-protocol ye-TCP yokuququzelela ukusebenza koqhagamshelo lwe-TCP kunye nokuhanjiswa kwepakethi ngaxeshanye kwiindlela ezininzi ngeendlela ezahlukeneyo zenethiwekhi ezihambelana needilesi ze-IP ezahlukeneyo. Ukusebenzisa mptcpd kwenza kube nokwenzeka ukuqwalasela iMPTCP ngaphandle kokusebenzisa iproute2 into eluncedo.
  • I-network-scripts package isusiwe, Imanejala yenethiwekhi kufuneka isetyenziswe ukumisela uqhakamshelwano lwenethiwekhi. Inkxaso yefomati yoseto lwe-ifcfg igciniwe, kodwa i-NetworkManager isebenzisa ifomathi esekwe kwifayile yesitshixo ngokungagqibekanga.
  • Ukwakhiwa kubandakanya iinguqulelo ezintsha zabaqulunqi kunye nezixhobo zabaphuhlisi: GCC 11.2, LLVM/Clang 12.0.1, Rust 1.54, Hamba 1.16.6, Node.js 16, OpenJDK 17, Perl 5.32, PHP 8.0, Python 3.9, Ruby Git 3.0, Ukuguqulwa 2.31, binutils 1.14, CMake 2.35, Maven 3.20.2, Imbovane 3.6.
  • Iiphakheji zeseva ye-Apache HTTP Server 2.4, nginx 1.20, i-Varnish Cache 6.5, i-squid 5.1 ihlaziywe.
  • I-DBMS MariaDB 10.5, MySQL 8.0, PostgreSQL 13, Redis 6.2 ihlaziywe.
  • Ukwakha i-emulator ye-QEMU, i-Clang inikwe amandla ngokungagqibekanga, okwenza kube lula ukusebenzisa ezinye iindlela zokukhusela ezongezelelweyo kwi-hypervisor ye-KVM, njenge-SafeStack ukukhusela kwiindlela zokuxhaphaza ezisekelwe kwiprogram ejolise ekubuyiseleni (i-ROP - i-Return-Oriented Programming).
  • Π Π°ΡΡˆΠΈΡ€Π΅Π½Ρ‹ возмоТности web-консоли: Π΄ΠΎΠ±Π°Π²Π»Π΅Π½Ρ‹ Π΄ΠΎΠΏΠΎΠ»Π½ΠΈΡ‚Π΅Π»ΡŒΠ½Ρ‹Π΅ ΠΌΠ΅Ρ‚Ρ€ΠΈΠΊΠΈ ΠΏΡ€ΠΎΠΈΠ·Π²ΠΎΠ΄ΠΈΡ‚Π΅Π»ΡŒΠ½ΠΎΡΡ‚ΠΈ для выявлСния ΡƒΠ·ΠΊΠΈΡ… мСст (CPU, ΠΏΠ°ΠΌΡΡ‚ΡŒ, диск, сСтСвыС рСсурсы), ΡƒΠΏΡ€ΠΎΡ‰Ρ‘Π½ экспорт ΠΌΠ΅Ρ‚Ρ€ΠΈΠΊ для визуализация ΠΏΡ€ΠΈ ΠΏΠΎΠΌΠΎΡ‰ΠΈ Grafana, Π΄ΠΎΠ±Π°Π²Π»Π΅Π½Π° Π²ΠΎΠ·ΠΌΠΎΠΆΠ½ΠΎΡΡ‚ΡŒ управлСния live-ΠΏΠ°Ρ‚Ρ‡Π°ΠΌΠΈ ΠΊ ядру, прСдоставлСна ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΠ° Π°ΡƒΡ‚Π΅Π½Ρ‚ΠΈΡ„ΠΈΠΊΠ°Ρ†ΠΈΠΈ Ρ‡Π΅Ρ€Π΅Π· смарт-ΠΊΠ°Ρ€Ρ‚Ρ‹ (Π² Ρ‚ΠΎΠΌ числС для sudo ΠΈ SSH).
  • Kwi-SSSD (IiNkonzo zoKhuseleko lweSistim iDaemon), iinkcukacha zelogi zonyusiwe, umzekelo, ixesha lokugqitywa komsebenzi ngoku lifakwe kwiziganeko kwaye ukuhamba kokuqinisekiswa kubonakaliswe. Kongezwe umsebenzi wokukhangela ukuhlalutya useto kunye nemiba yokusebenza.
  • Inkxaso ye-IMA (i-Integrity Measurement Architecture) iye yandiswa ukuze kuqinisekiswe ukunyaniseka kwamacandelo enkqubo yokusebenza usebenzisa iisignesha zedijithali kunye ne-hashes.
  • Ngokungagqibekanga, ulawulo lweqela elidityanisiweyo elinye (iqela v2) yenziwe. Amaqela v2 anokusetyenziswa, umzekelo, ukunciphisa inkumbulo, i-CPU kunye nokusetyenziswa kwe-I/O. Umahluko ophambili phakathi kwe-cgroups v2 kunye ne-v1 kukusetyenziswa kweqela eliqhelekileyo loluhlu lwazo zonke iintlobo zemithombo, endaweni yoluhlu oluhlukeneyo lokwabiwa kwezixhobo ze-CPU, zokulawula ukusetyenziswa kwememori, kunye ne-I / O. Uluhlu olwahlukileyo lukhokelele kubunzima ekuququzeleleni intsebenziswano phakathi kwabaphathi kunye neendleko ezongezelelweyo zemithombo ye-kernel xa kusetyenziswa imithetho yenkqubo ekubhekiselwa kuyo kwii-hierarchies ezahlukeneyo.
  • Inkxaso eyongeziweyo yongqamaniso lwexesha elichanekileyo ngokusekwe kwiprotocol ye-NTS (Network Time Security), esebenzisa izinto zesiseko esingundoqo sikawonke-wonke (PKI) kwaye ivumela ukusetyenziswa kwe-TLS kunye ne-encryption eqinisekisiweyo ye-AEAD (Ufihlo oluQinisekisiweyo ngeDatha eManyanisiweyo) kukhuseleko lwe-cryptographic of unxibelelwano lomxhasi-umncedisi ngeNTP protocol ( Network Time Protocol). Iseva ye-NTP yekhrony ihlaziywe kuguqulelo lwe-4.1.
  • Π”ΠΎΠ±Π°Π²Π»Π΅Π½Ρ‹ Π½ΠΎΠ²Ρ‹Π΅ систСмныС Ρ€ΠΎΠ»ΠΈ Ansible для Π°Π²Ρ‚ΠΎΠΌΠ°Ρ‚ΠΈΠ·Π°Ρ†ΠΈΠΈ установки, настройки ΠΈ запуска Postfix, Microsoft SQL Server, VPN-Ρ‚ΡƒΠ½Π½Π΅Π»Π΅ΠΉ ΠΈ сСрвиса timesync. Π”ΠΎΠ±Π°Π²Π»Π΅Π½Π° новая Ρ€ΠΎΠ»ΡŒ Ansible для ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΠΈ Ρ€Π°Π·Π΄Π΅Π»ΠΎΠ² LVM (Logical Volume Manager) VDO (Virtual Data Optimizer).
  • Kubonelelwe ngenkxaso yovavanyo (i-Technology Preview) ye-KTLS (i-kernel-level TLS ukuphunyezwa), i-Intel SGX (Izandiso ze-Software Guard), i-DAX (Ukufikelela ngokuthe ngqo) kwi-ext4 kunye ne-XFS, inkxaso ye-AMD SEV kunye ne-SEV-ES kwi-hypervisor ye-KVM.
  • Π’ΠΊΠ»ΡŽΡ‡Π΅Π½Ρ‹ измСнСния, связанныС с Ρ€Π°Π±ΠΎΡ‚ΠΎΠΉ ΠΏΠΎ ΠΏΠ΅Ρ€Π΅Π²ΠΎΠ΄Ρƒ Ρ€Π°Π·Ρ€Π°Π±Π°Ρ‚Ρ‹Π²Π°Π΅ΠΌΠΎΠ³ΠΎ Π² Red Hat ΠΊΠΎΠ΄Π°, Π΄ΠΎΠΊΡƒΠΌΠ΅Π½Ρ‚Π°Ρ†ΠΈΠΈ ΠΈ web-рСсурсов Π½Π° использованиС Π±ΠΎΠ»Π΅Π΅ инклюзивной Ρ‚Π΅Ρ€ΠΌΠΈΠ½ΠΎΠ»ΠΎΠ³ΠΈΠΈ, ΠΏΠΎΠ΄Ρ€Π°Π·ΡƒΠΌΠ΅Π²Π°ΡŽΡ‰ΠΈΠΉ ΠΎΡ‚ΠΊΠ°Π· ΠΎΡ‚ употрСблССния слов master, slave, blacklist ΠΈ whitelist.

umthombo: opennet.ru

Yongeza izimvo