Emva konyaka wophuhliso, ukukhululwa kwe-NTPsec 1.2.4 iseva yongqamaniso yexesha elichanekileyo ishicilelwe. Iprojekthi yenziwe njengefoloko yokuphunyezwa kwereferensi ye-NTPv4 protocol (NTP Classic 4.3.34), igxininise ekusebenzeni kwakhona isiseko sekhowudi ukuphucula ukhuseleko. Ikhowudi yomthombo we-NTPsec isasazwa phantsi kwe-BSD, MIT, kunye neelayisensi ze-NTP.
I-NTPsec iphuhliswa phantsi kolawulo luka-Eric S. Raymond, kunye neminikelo evela kwabanye abaphuhlisi bokuqala be-NTP Classic, iinjineli ezivela kwi-Hewlett Packard kunye ne-Akamai Technologies, kunye neeprojekthi ze-GPSD kunye ne-RTEMS. Ukwahluka kwi-NTP Classic kubandakanya ukongezwa kwenkxaso yeprotocol ye-NTS (i-Network Time Security), ukunciphisa ubungakanani besiseko sekhowudi ngaphezu kwesiqingatha (iimpawu ezichithwayo kunye neeplatifomu ezingabalulekanga zisusiwe), ukuphunyezwa kwemodi yokuzimela, ukusetyenziswa kweendlela zokuthintela ukuhlaselwa (umzekelo, ukufowuna kwenkqubo yokucoca), kunye nokutshintshela kwimisebenzi ekhuselweyo yokusebenza ngememori kunye neentambo.
Kwinguqulelo entsha:
- Kongezwe i-"extra port xxxx" ilungiselelo lokufumana izicelo kwi-network port eyongezelelweyo, ukongeza kwizibuko elingundoqo eliqwalaselwe nge-"nts port xxxx". Izibuko elongezelelweyo linokuba luncedo ekugqithiseni uthintelo lofikelelo kwiiseva zangaphandle zeNTP ezimiselwe kwiifirewall.
- Inkxaso eyongeziweyo yokwakha kwiinkqubo ze-Linux ezine-architecture ye-armhf.
- Inkxaso yokusebenza kwentpd kwiinkqubo ezikwimo ye-FIPS inikezelwe.
- Inkqubo yokwakha ye-Waf iye yahlaziywa kuguqulelo lwe-2.1.4. Kwi-Debian, izinto eziluncedo zePython ezifana ne-ntpq kunye ne-ntpmon ngoku zifakwe kulawulo "/usr/local/lib/python3.xx/site-packages" endaweni ye-"/usr/local/lib/python3.xx/dist-packages". Umyalelo we "waf install" ngoku wenza ukuba uvavanyo lwezinto eziphunyeziweyo ezifakiweyo, kwaye "waf configure --enable-Werror" umyalelo ngoku unokuvumela ukuqhubekeka kwezilumkiso zomqokeleli njengeempazamo.
- Ubuncinci benguqulelo yePython echaziweyo yi-2.7. Ndiceba ukuyeka ukuxhasa iPython 2 kwinguqulo elandelayo.
- Ngokungagqibekanga, ukhetho "--disable-fuzz" luyasetyenziswa, oluvala indlela "yeClock fuzzing" (ukwazisa i-millisecond random offsets kwixesha elinikwe abathengi, elingachaphazeli ukuchaneka ngokubanzi, kodwa lingavumeli abahlaseli ukuba baqikelele elona xabiso lexesha).
- Kususwe iintsalela zekhowudi ezinxulumene nokusebenza kwiindlela zokusasaza kunye nemulticast.
- Kukho ukhetho olongeziweyo kwi-ntpdig ukuze lubophelele kwi-echaziweyo Idilesi ye-IP.
- Ukhetho longezwe kuqwalaselo lwe-NTS-KE ukuqwalasela uluhlu lwealgorithms yoguqulelo oluntsonkothileyo olukhethwayo lweTLS.
- Endaweni ye-ntp_adjtime, i-ntp_gettime call iyasetyenziswa.
umthombo: opennet.ru
