Ngemva konyaka nengxenye yentuthuko, ukukhululwa kwe-Rsync 3.2.4 kuyatholakala, ukuvumelanisa ifayela kanye nensiza yokusekelayo ekuvumela ukuthi unciphise ithrafikhi ngokukopisha izinguquko ngokuqhubekayo. Izinto zokuhamba zingaba i-ssh, i-rsh noma iphrothokholi ye-rsync yobunikazi. Isekela ukuhlelwa kwamaseva e-rsync angaziwa, afaneleka kahle ukuqinisekisa ukuvumelanisa kwezibuko. Ikhodi yephrojekthi isatshalaliswa ngaphansi kwelayisensi ye-GPLv3.
Phakathi kwezinguquko ezengeziwe:
- Indlela entsha yokuvikela izimpikiswano zomugqa womyalo isiphakamisiwe, efana nenketho ye-“--protect-args” (“-s”) eyayitholakala ngaphambilini, kodwa ayikuphuli ukusebenza kweskripthi se-rrsync (i-rsync ekhawulelwe). Ukuvikela kufika ekubalekeleni izinhlamvu ezikhethekile, okuhlanganisa izikhala, lapho kuthunyelwa izicelo kumyalo womyalo wangaphandle. Indlela entsha ayibaleki izinhlamvu ezikhethekile ngaphakathi kwebhulokhi ecashuniwe, okukuvumela ukuthi usebenzise izimpawu zokucaphuna ezilula eduze kwegama lefayela ngaphandle kokweqa okwengeziwe, isibonelo, umyalo othi “rsync -aiv host:'a simple file.pdf' manje isivunyelwe .” Ukuze ubuyisele ukuziphatha okudala, inketho ethi “-old-args” kanye nokuhluka kwemvelo kwe-“RSYNC_OLD_ARGS=1” kuyaphakanyiswa.
- Kuxazululwe inkinga edala ngokuphatha izinhlamvu zamaphoyinti edesimali ngokusekelwe endaweni yamanje ("," esikhundleni sokuthi "."). Okwemibhalo eklanyelwe ukucubungula kuphela "." ezinombolweni, esimweni sokwephulwa kokuhambisana, ungasetha indawo ku-“C”.
- Kulungiswe ubungozi (CVE-2018-25032) kukhodi efakiwe evela kulabhulali ye-zlib eholela ekuchichimeni kwebhafa lapho izama ukucindezela ukulandelana kwezinhlamvu ezilungiselelwe ngokukhethekile.
- Kusetshenziswe inketho ethi "--fsync" ukushayela umsebenzi we-fsync() ekusebenzeni kwefayela ngalinye ukuze usule inqolobane yediski.
- Iskripthi se-rsync-ssl sisebenzisa inketho ethi "-verify_hostname" lapho ufinyelela i-openssl.
- Kwengezwe inketho ethi "-copy-devices" ukuze ukopishe amafayela edivayisi njengamafayela avamile.
- Ukusetshenziswa kwememori okuncishisiwe lapho kudluliswa ngokwandayo inombolo enkulu yezinkomba ezincane.
- Epulatifomu ye-macOS, inketho ethi "-atimes" iyasebenza.
- Kusetshenziswe ikhono lokubuyekeza izici ze-xattrs zamafayela akumodi yokufunda kuphela uma umsebenzisi enemvume yokushintsha amalungelo okufinyelela (ngokwesibonelo, uma esebenza njengempande).
- Kwengezwe futhi kunikwe amandla ngokuzenzakalela ipharamitha ethi “--info=NONREG” ukuze kuboniswe izexwayiso mayelana nokudlulisa amafayela akhethekile.
- Iskripthi se-rrsync (i-rsync ekhawulelwe) sibhalwe kabusha nge-Python. Kungezwe izinketho ezintsha "-munge", "-no-lock" kanye "-no-del". Ngokuzenzakalelayo, ukuvinjwa kwezinketho ze --copy-links (-L), --copy-dirlinks (-k), kanye --keep-dirlinks (-K) kunikwe amandla ukwenza ukuhlasela okushintsha ama-symlink ezinkhombandlela kube nzima kakhulu.
- Iskripthi se-atomic-rsync sibhalwe kabusha nge-Python futhi sanwetshwa ukuze kuzibe amakhodi angewona aziro. Ngokuzenzakalelayo, ikhodi 24 ishaywa indiva lapho amafayela elahleka ngenkathi i-rsync isebenza (ngokwesibonelo, ikhodi 24 ibuyiselwa kumafayela esikhashana ayekhona phakathi nokukhonjwa kokuqala kodwa asuswa ngesikhathi sokuthutha).
- Iskripthi se-munge-symlinks sibhalwa kabusha nge-Python.
Source: opennet.ru