Ukukhutshwa kwe-OpenSSH 9.0, ukuphunyezwa okuvulekileyo komxhasi kunye neseva yokusebenza usebenzisa i-SSH 2.0 kunye ne-SFTP protocol, ibonakalisiwe. Kuguqulelo olutsha, usetyenziso lwe-scp lutshintshwe ngokungagqibekanga ukusebenzisa i-SFTP endaweni yeprotocol ye-SCP/RCP yakudala.
I-SFTP isebenzisa iindlela zokuphatha amagama aqikelelwayo ngakumbi kwaye ayisebenzisi ukusetyenzwa kweqokobhe leepateni zeglobhu kumagama efayile kwelinye icala lomamkeli, nto leyo idala iingxaki zokhuseleko. Ngokukodwa, xa usebenzisa i-SCP kunye ne-RCP, umncedisi uthatha isigqibo sokuba zeziphi iifayile kunye nabalawuli abaza kuthumela kumxhasi, kwaye umxhasi ujonga kuphela ukuchaneka kwamagama ezinto ezibuyisiweyo, apho, ngokungabikho kokuhlolwa okufanelekileyo kwicala lomxhasi, ivumela umncedisi ukuhambisa amanye amagama efayile ahlukileyo kulawo aceliweyo.
Iprotocol yeSFTP ayinazo ezi ngxaki, kodwa ayikuxhasi ukwandiswa kweendlela ezikhethekileyo ezifana ne "~/". Ukuphelisa lo mahluko, ukuqala kwi-OpenSSH 8.7, ukuphunyezwa kweseva yeSFTP ixhasa ulwandiso lweprotocol "[imeyile ikhuselwe]" ukwandisa i ~/ kunye ne ~umsebenzisi/ iindlela.
Xa usebenzisa i-SFTP, abasebenzisi banokuphinda bahlangabezane nokungahambelani okubangelwa isidingo sokuphinda kabini-abalinganiswa bokwandiswa kwendlela ekhethekileyo kwizicelo ze-SCP kunye ne-RCP zokuthintela ukutolikwa kwabo kwicala elikude. Kwi-SFTP, ukubaleka okunjalo akufuneki kwaye iikowuti ezongezelelweyo zinokukhokelela kwimpazamo yokudluliselwa kwedatha. Kwangaxeshanye, abaphuhlisi be-OpenSSH bala ukongeza ulwandiso lokuphindaphinda ukuziphatha kwe-scp kulo mzekelo, ngoko ke ukubaleka kabini kuthathwa njengesiphene esingenangqondo ukuphinda.
Olunye utshintsho kukhupho olutsha:
- I-Ssh kunye ne-sshd zine-algorithm yokutshintshiselana kwesitshixo esivulwe ngokungagqibekanga "[imeyile ikhuselwe]"(ECDH/x25519 + NTRU Prime), ukumelana nokuchola kwiikhomputha ze-quantum kwaye kudityaniswe ne-ECDH / x25519 ukuvala iingxaki ezinokwenzeka kwi-NTRU Prime ezinokuvela kwixesha elizayo. Kuluhlu lwe-KexAlgorithms, olumisela umyalelo apho iindlela zokutshintshiselana eziphambili zikhethiweyo, i-algorithm ekhankanywe ngoku ibekwe kuqala kwaye inokubaluleka okuphezulu kune-ECDH kunye ne-DH algorithms.
Iikhomputha ze-Quantum azikafiki kwinqanaba lokuqhekeza izitshixo zendabuko, kodwa ukusetyenziswa kokhuseleko lwe-hybrid kuya kukhusela abasebenzisi ekuhlaselweni okuhambelana nokugcina iiseshoni ze-SSH ezithintelweyo ngethemba lokuba zingacinywa kwixesha elizayo, xa iikhomputha eziyimfuneko ze-quantum zifumaneka.
- Ukwandiswa kwe-"copy-data" yongezwe kwi-sftp-server, ekuvumela ukuba ukopishe idatha kwicala lomncedisi, ngaphandle kokuyidlulisela kumxhasi, ukuba umthombo kunye neefayile ezijoliswe kuzo zikwiseva efanayo.
- Umyalelo we "cp" wongezwe kwi-sftp eluncedo ukuqalisa umxhasi ukukopa iifayile kwicala lomncedisi.
umthombo: opennet.ru