I-ProHoster > Π‘Π»ΠΎΠ³ > izindaba ze-inthanethi > Ukukhishwa kwe-Debian 10 "Buster".

Ukukhishwa kwe-Debian 10 "Buster".

Ngemva kweminyaka emibili yentuthuko kwenzeka ukukhululwa I-Debian GNU / Linux 10.0 (Buster), etholakalayo kwabayishumi abasekelwa ngokusemthethweni izakhiwo: Intel IA-32/x86 (i686), AMD64 / x86-64, ARM EABI (armel), 64-bit ARM (arm64), ARMv7 (armhf), MIPS (mips, mipsel, mips64el), PowerPC 64 (ppc64el) kanye ne-IBM System z (s390x). Izibuyekezo ze-Debian 10 zizokhishwa esikhathini esiyiminyaka emi-5.

Indawo yokugcina iqukethe amaphakheji kanambambili angama-57703, okungaba yizinkulungwane eziyi-6 ngaphezu kwalokho okwanikezwa ku-Debian 9. Uma kuqhathaniswa ne-Debian 9, amaphakheji kanambambili we-13370 angeziwe, amaphakheji kanambambili ayi-7278 (13%) aphelelwe yisikhathi noma alahliwe asusiwe, angu-35532 (62) %) amaphakheji abuyekeziwe. Ngo-91.5% wamaphakheji enikeziwe ukusekelwa kokwakhiwa okuphindaphindekayo, okukuvumela ukuthi uqinisekise ukuthi ifayela elisebenzisekayo lakhiwe ncamashi kusuka kumakhodi omthombo amenyezelwe futhi aliqukethe izinguquko ezingaphandle, esikhundleni salokho, ngokwesibonelo, kungenziwa ngokuhlasela ingqalasizinda yomhlangano noma amabhukumaka kumhlanganisi. .

Ukuze okulandwayo iyatholakala Izithombe ze-DVD ezingalandwa kusuka HTTP, jigdo noma I-BitTorrent... Futhi kwakheka Isithombe esingekho emthethweni sokufaka esingakhululekile esifaka i-firmware yobunikazi. Idizayinelwe i-amd64 ne-i386 yezakhiwo LiveUSB, etholakala ku-GNOME, KDE kanye ne-Xfce flavour, kanye ne-multi-arch DVD ehlanganisa amaphakheji epulatifomu ye-amd64 namaphakheji engeziwe okwakhiwa kwe-i386. Ukwesekwa okwengeziwe kwezithombe ezilandwe ngenethiwekhi (netboot) zamakhadi e-SD nemifanekiso engena ku-16 GB USB Flash;

Ukhiye shintsha ku-Debian 10.0:

  • Kwenziwa Ukusekelwa kwe-UEFI Secure Boot, esebenzisa isilayishi se-Shim boot, esigunyazwe ngesiginesha yedijithali evela ku-Microsoft (esayinwe yi-shim), kuhlanganiswe nesitifiketi se-grub kernel nesilayishi sebhuthi (esayinwe yi-grub-efi-amd64) iphrojekthi uqobo. isitifiketi (i-shim isebenza njengesendlalelo sokusabalalisa ukusebenzisa okhiye baso). Amaphakheji asayiniwe nge-shim nasayinwe yi-grub-efi-ARCH afakiwe njengokuncika kokwakhiwa kwe-amd64, i386 kanye ne-arm64. I-bootloader ne-grub, egunyazwe yisitifiketi sokusebenza, ifakiwe ezithombeni ze-EFI ze-amd64, i386 ne-arm64. Masikhumbule ukuthi ukusekelwa kwe-Secure Boot kwakulindelwe ekuqaleni ku-Debian 9, kodwa akuzange kuzinze ngaphambi kokukhululwa futhi kuhlehliswe kuze kube ukukhululwa okukhulu okulandelayo kokusabalalisa;
  • Kunikwe amandla ngokuzenzakalela ukusekelwa kohlelo lokulawula ukufinyelela okuyisibopho lwe-AppArmor, olukuvumela ukuthi ulawule amandla ezinqubo ngokuchaza uhlu lwamafayela anamalungelo afanele (funda, bhala, imephu yememori bese ugijima, ukusetha isikhiya sefayela, njll.) ngayinye. uhlelo lokusebenza, kanye nokulawula ukufinyelela kwenethiwekhi (isibonelo, vimbela ukusetshenziswa kwe-ICMP) futhi ulawule amandla e-POSIX. Umehluko omkhulu phakathi kwe-AppArmor ne-SELinux ukuthi i-SELinux isebenza kumalebula ahlotshaniswa nento, kuyilapho i-AppArmor inquma izimvume ngokusekelwe endleleni yefayela, eyenza inqubo yokumisa ibe lula kakhulu. Iphakheji eyinhloko ene-AppArmor inikeza amaphrofayili okuvikela kwezinye izinhlelo zokusebenza kuphela, futhi kokusele kufanele usebenzise iphakheji le-apparmor-profiles-extra noma amaphrofayili asuka kumaphakheji ohlelo oluthile;
  • Ama-iptables ashintshiwe, ama-ip6tables, ama-arptable nama-ebtable weza isihlungi sephakethe le-nfttables, manje esesiyikhona esimisiwe futhi esiphawuleka ngokuhlanganisa izindawo zokuhlunga iphakethe ze-IPv4, IPv6, ARP kanye namabhuloho enethiwekhi. I-Nftables inikeza kuphela isixhumi esibonakalayo esijwayelekile, esizimele esisekelwe kuphrothokholi ezingeni le-kernel esihlinzeka ngemisebenzi eyisisekelo yokukhipha idatha kumaphakethe, ukwenza imisebenzi yedatha, nokulawula ukugeleza. I-logic yokuhlunga ngokwayo kanye nezibambi eziqondene nephrothokholi kuhlanganiswa ku-bytecode esikhaleni somsebenzisi, ngemva kwalokho le-bytecode ilayishwa ku-kernel kusetshenziswa isixhumi esibonakalayo se-Netlink futhi isetshenziswe emshinini obonakalayo okhethekile osikhumbuza i-BPF (Izihlungi ze-Berkeley Packet);

    Ngokuzenzakalelayo, iphakheji ye-iptables-nft ifakiwe, enikeza isethi yezinsiza ukuqinisekisa ukuhambisana nama-iptables, ane-syntax yomugqa womyalo ofanayo, kodwa ukuhumusha imithetho ewumphumela ibe yi-nf_tables bytecode, eyenziwa emshinini obonakalayo. Iphakheji ye-iptables-legacy iyatholakala ukuze ifakwe, kuhlanganise ukuqaliswa okudala okusekelwe ku-x_tables. iptables executables manje isifakwe ku/usr/sbin kune/sbin (ama-symlink adalelwe ukuhambisana);

  • Ku-APT, imodi yokuhlukanisa ye-sandbox iyasetshenziswa, inikwe amandla nge-APT::Sandbox::Inketho ye-Seccomp kanye nokuhlinzeka ngokuhlunga kwezingcingo zesistimu kusetshenziswa i-seccomp-BPF. Ukushuna kahle uhlu olumhlophe nolumnyama lwezingcingo zesistimu, ungasebenzisa uhlu APT::Sandbox::Seccomp::Trap and APT::Sandbox::Seccomp::Vumela;
  • I-Linux kernel ibuyekezwe kunguqulo 4.19;
  • Ideskithophu ye-GNOME ishintshelwe ku-Wayland ngokuzenzakalelayo, futhi iseshini esekelwe kuseva ye-X inikezwa njengenketho (iseva ye-X isafakiwe njengengxenye yephakheji lesisekelo). Isitaki sezithombe ezibuyekeziwe kanye nezindawo zabasebenzisi: I-GNOME 3.30, I-KDE Plasma 5.14, Cinnamon 3.8, LXDE 0.99.2, I-LXQt 0.14, MATE 1.20, kanye ne-Xfce 4.12. Office suite LibreOffice ibuyekeziwe ukuze ikhishwe 6.1, kanye neCalligra ngaphambi kokukhululwa 3.1. Kubuyekeziwe i-Evolution 3.30, GIMP 2.10.8, Inkscape 0.92.4, Vim 8.1;
  • Ukusabalalisa kufaka phakathi inhlanganisela yolimi lwe-Rust (i-Rustc 1.34 inikezwa). Kubuyekeziwe i-GCC 8.3, LLVM/Clang 7.0.1, OpenJDK 11, Perl 5.28, PHP 7.3, Python 3.7.2;
  • Izinhlelo zokusebenza zeseva zibuyekeziwe, okuhlanganisa i-Apache httpd 2.4.38, BIND 9.11, Dovecot 2.3.4, Exim 4.92, Postfix 3.3.2, MariaDB 10.3, nginx 1.14, PostgreSQL 11, Samba 4.9 (SMBv3 support inikezwe ngosizo lwe-SMBvXNUMX);
  • Ku-cryptsetup kwenziwe ukushintshela kufomethi yokubethela yediski ye-LUKS2 (ngaphambilini yayisetshenziswa i-LUKS1). I-LUKS2 ihlukaniswa ngohlelo olulula lokulawula ukhiye, ikhono lokusebenzisa imikhakha emikhulu (4096 esikhundleni se-512, inciphisa umthwalo ngesikhathi sokuqanjwa), izihlonzi zokuhlukanisa ezingokomfanekiso (ilebula) namathuluzi okulondoloza imethadatha anekhono lokuzibuyisela ngokuzenzakalelayo kusuka kukhophi uma umonakalo utholakele. Inqubo yokuthuthukisa izoguqula ngokuzenzakalelayo izingxenye ezikhona ze-LUKS1 zibe ifomethi ehambisanayo ye-LUKS2, kodwa ngenxa yokulinganiselwa kosayizi wesihloko, akuzona zonke izici ezintsha ezizotholakala kubo;
  • Isifaki singeze ikhono lokusebenzisa ama-consoles amaningi ngesikhathi esisodwa phakathi nenqubo yokufaka. Usekelo lwe-ReiserFS lususiwe. Kungezwe usekelo lokuminyaniswa kwe-ZSTD (libzstd) kuma-Btrfs. Ukwesekwa okwengeziwe kwamadivayisi we-NVMe;
  • Ku-debootstrap, inketho ethi β€œ--merged-usr” inikwa amandla ngokuzenzakalela, lapho wonke amafayela asebenzisekayo nemitapo yolwazi esuka kuhlu lwezimpande ahanjiswa ku/usr partition (iziqondiso / bin, /sbin kanye /lib* ziklanywe njenge izixhumanisi ezingokomfanekiso zemibhalo ehambisanayo ngaphakathi/usr) . Ushintsho lusebenza kuphela ekufakweni okusha, ukwakheka kohla lwemibhalo oludala lugcinwa phakathi nenqubo yokubuyekeza;
  • Kuphakheji yokuthuthukiswa okungagadiwe, ngaphezu kokufaka ngokuzenzakalelayo izibuyekezo ezihlobene nokususa ubungozi, ukuthuthukela ekukhishweni okuphakathi nendawo (Debian 10.1, 10.2, njll.) manje nayo isinikwe amandla ngokuzenzakalela;
  • Izingxenye zesistimu yokuphrinta zibuyekezwe ukuze zibe IZINDEBE 2.2.10 kanye nezihlungi zenkomishi 1.21.6 ezisekelwa ngokugcwele i-AirPrint, i-DNS-SD (Bonjour) ne-IPP Yonke indawo ukuze ziphrinte ngaphandle kokuqala kokufaka abashayeli;
  • Ukwesekwa okwengeziwe kwamabhodi asuselwe kuma-Allwinner A64 processors, afana ne-FriendlyARM NanoPi A64, Olimex A64-OLinuXino, TERES-A64, PINE64 PINE A64/A64/A64-LTS, SOPINE, Pinebook, SINOVOIP Banana Pi BPI-Orange M64 kanye ne-Xun Orange Pine (Okunye);
  • Inombolo yama-metapackage e-med-* asekelwa ithimba le-Debian Med inwetshiwe, okukuvumela ukuthi ufake okukhethiwe kohlelookuhlobene nebhayoloji nemithi;
  • Ukusekelwa kwezinhlelo zezivakashi ze-Xen kumodi ye-PVH kunikezwa;
  • I-OpenSSL ayisekeli izivumelwano ze-TLS 1.0 kanye ne-1.1; I-TLS 1.2 imenyezelwa njengenguqulo encane esekelwe;
  • Amaphakheji amaningi aphelelwe yisikhathi nanganakekelwa asusiwe, okuhlanganisa i-Qt 4 (kusele i-Qt 5 kuphela), i-phpmyadmin, i-ipsec-tools, i-racoon, i-ssmtp, i-ecryptfs-utils, i-mcelog, isambulo. I-Debian 11 izoqeda ukusekelwa kwePython 2;
  • Imbobo idalelwe ukwakheka kwe-64-bit RISC-V, okungasekelwe ngokusemthethweni ku-Debian 10. Okwamanje, ye-RISC-Vkuhlanganiswe ngempumelelo cishe amaphesenti angama-90 yenani eliphelele lamaphakheji;
  • Isifaki se-modular esakhiwe ngokuzimela saqala ukusetshenziswa ezindaweni ezibukhoma Izikhalazo nge-interface esekelwe ku-Qt, ephinde isetshenziselwe ukuhlela ukufakwa kwe-Manjaro, i-Sabayon, i-Chakra, i-NetRunner, i-KaOS, i-OpenMandriva ne-KDE neon ukusatshalaliswa. Ukwakhiwa kokufakwa okuvamile kuyaqhubeka nokusebenzisa isifaki se-debian.

    Ngaphezu kwalezi ezitholakala ngaphambilini, indawo ebukhoma enedeskithophu ye-LXQt kanye nendawo ebukhoma engenakho ukusebenzelana kwesithombe, okunezinsiza ze-console kuphela ezakha isistimu yesisekelo, zidaliwe. Imvelo ye-console Live ingasetshenziswa ukufaka ukusatshalaliswa ngokushesha okukhulu, ngoba, ngokungafani nezithombe zokufaka zendabuko, ucezu olwenziwe ngomumo lwezinkomba luyakopishwa, ngaphandle kokuvula amaphakheji ngamanye kusetshenziswa i-dpkg.

Source: opennet.ru

Engeza amazwana