Ngaphezu kweminyaka engu-6 kusukela kokugcina
Phakathi kwe
- Usekelo olungeziwe lwe-TLS 1.1, 1.2 no-1.3 (--sslproto {tls1.1+|tls1.2+|tls1.3+}). I-Build with OpenSSL inikwe amandla ngokuzenzakalelayo (okungenani igatsha elingu-1.0.2 liyadingeka ukuze lisebenze, kanye ne-TLSv1.3 - 1.1.1). Usekelo lwe-SSLv2 lunqanyuliwe. Ngokuzenzakalelayo, esikhundleni se-SSLv3 ne-TLSv1.0, i-STLS/STARTTLS imemezela i-TLSv1.1. Ukuze ubuyisele i-SSLv3, udinga ukusebenzisa i-OpenSSL enosekelo lwe-SSLv3 olusele futhi uqalise ukulanda ngefulegi elithi “-sssproto ssl3+”.
- Ngokuzenzakalelayo, imodi yokuhlola isitifiketi se-SSL ivuliwe (-sslcertck). Ukuze ukhubaze isheke, manje udinga ukucacisa ngokusobala inketho ethi “--nosslcertck”;
- Usekelo lwabahlanganisi be-C amadala kakhulu aluqhubeki. Ukwakha manje kudinga isihlanganisi esisekela izinga lika-2002 SUSv3 (I-Single Unix Specification v3, isethi engaphansi ye-POSIX.1-2001 enezandiso ze-XSI);
- Ukusebenza kahle kokulandelela kwe-UID kunyusiwe (imodi ye-“—gcina i-UID”) lapho usakaza imilayezo evela ebhokisini leposi nge-POP3;
- Intuthuko eminingi yenziwe ukusekela ukuxhumana okubethelwe;
- Kulungiswe ukuba sengozini okungase kuholele ekuchichimeni kwebhafa kukhodi yokuqinisekisa ye-GSSAPI uma ikhohlisa amagama abasebenzisi angaphezu kwezinhlamvu ezingu-6000.
Ukwengeza:
Source: opennet.ru