ProHoster > Ibhulogi > iindaba ze-intanethi > Ukukhutshwa kweFreeRDP 2.0, ukuphunyezwa simahla kweprotocol yeRDP

Ukukhutshwa kweFreeRDP 2.0, ukuphunyezwa simahla kweprotocol yeRDP

Emva kweminyaka esixhenxe yophuhliso yathatha indawo ukukhutshwa kweprojekthi I-RDP yasimahla 2.0, enikezela ngophumezo lwasimahla lweprotocol yofikelelo lwedesktop ekude I-RDP (iProtokholi yeDesktop ekude), iphuhliswe ngokusekelwe kwi iinkcukacha IMicrosoft. Le projekthi ibonelela ngethala leencwadi lokudibanisa inkxaso ye-RDP kwii-aplikeshini zomntu wesithathu kunye neklayenti enokusetyenziswa kwiikhompyutha ezikude. Windows. Ikhowudi yeprojekthi isasazwa ngu ilayisenisi phantsi kweApache 2.0.

Ukukhutshwa kokugqibela okuzinzileyo kweprojekthi kwaba yenziwe ngoJanuwari 2013, kwaye ukuvavanywa kwesebe le-2.0 kwaqala ngo-2007. Ukuze ungalibazisi uphuhliso kwixesha elizayo, ukukhutshwa okulandelayo kuya kuphuhliswa ngaphakathi kwesakhelo
imodeli eqengqelekayo, nto leyo ethetha ukusekwa konyaka kokukhutshwa okubalulekileyo emva kokuzinziswa kwesebe eliphambili kunye nopapasho lwamaxesha ngamaxesha lohlaziyo olulungisayo. Ukukhutshwa okukhulu kuya kuxhaswa iminyaka emibini - unyaka omnye wokulungiswa kwebug kunye nomnye unyaka ukulungisa kuphela ubuthathaka.

Siseko utshintsho:

  • Yongeza isakhono sokusebenza njenge-proxy ye-RDP yothutho;
  • Inkxaso eyongeziweyo ye-MS-RA 2 (iProtokholi yoNcedo olukude);
  • Ikhowudi enxulumene nenkxaso yekhadi le-smart yenziwe ngokutsha. Ukongezwa kokusebenza okulahlekileyo kwangaphambili kunye nokomeleza ukuqinisekiswa kwedatha yegalelo;
  • Kongezwe i "/cert" ukhetho, oludibanisa umsebenzi obonelelwe ngaphambili ngeenketho ezahlukeneyo zokucubungula izatifikethi (i-cert-ignore, cert-deny, cert-name, cert-tofu);
  • Ukuhanjiswa komxhasi ngokusekelwe kwi-DirectFB, eshiywe ingaxhaswanga, yayekwa;
  • Ukugudisa ifonti kwenziwa ngokungagqibekanga;
  • Inkxaso eyongeziweyo yenkqubo yeFlatpack yeephakheji ezizimeleyo;
  • Kwiinkqubo ezisekelwe kwi-Wayland, imowudi yokulinganisa ehlakaniphile iphunyezwe ngokusebenzisa i-libcairo;
  • Yazisa i-API yokukala imifanekiso xa unikezela ngesoftware;
  • Ukuphunyezwa kwe-RAIL (i-Remote Applications Integrated Locally) icandelo, elivumela ukufikelela kude kwiifestile zomntu ngamnye kunye nezibonakaliso zezaziso, ihlaziywe kwiinkcukacha ze-28.0;
  • Ngexesha lokusebenza, kuqinisekiswa ukuba umncedisi uxhasa usasazo kwifomethi ye-H.264;
  • Yongezwe "imaski=" ukhetho kwi "/gfx" kunye ne "/gfx-h264" imiyalelo ";
  • Izicatshulwa zomthombo zalungiswa ngokutsha;
  • Inketho eyongeziweyo "/ ixesha lokuphuma" ukulungisa ixesha lokulinda iipakethi ze-TCP ACK;
  • Ubuthathaka CVE-2020-11521, CVE-2020-11522, CVE-2020-11523, CVE-2020-11524, CVE-2020-11525, CVE-2020-11526 zilungisiwe, kuquka kukho iingxaki ezikhokelela ekubhaleni kwindawo yenkumbulo ngaphandle kwesithinteli esinikezelweyo xa kusetyenzwa idatha evela ngaphandle. Ukongeza, ubuthathaka obungakumbi obu-9 ngaphandle kwe-CVE bulungisiwe, ngakumbi yenziwe ngu ukufunda kwiindawo zememori ngaphandle kwesithinteli esinikiweyo.

Ukukhutshwa kweFreeRDP 2.0, ukuphunyezwa simahla kweprotocol yeRDP

umthombo: opennet.ru

Thenga ukusingathwa okuthembekileyo kwiindawo ezinokhuseleko lweDDoS, iiseva zeVPS VDS 🔥 Thenga ukusingathwa kwewebhusayithi okuthembekileyo ngokhuseleko lwe-DDoS, iiseva zeVPS VDS | ProHoster