Sabon sabon barga na Tor 0.4.4.5 yanzu yana nan, san mafi mahimman canje-canje

Darkcrizt

4 minti

Kwanan nan an gabatar da sabon sabon yanayin Tor 0.4.4.5, amfani da shi don tsara aikin cibiyar sadarwar Tor da ba a sani ba. Tor 0.4.4.5 yana dauke da farko barga ce ta reshe 0.4.4, hakan ya samo asali ne a cikin watanni biyar da suka gabata.

Reshe 0.4.4 zai kasance a matsayin ɓangare na sake zagayowar kulawa na yau da kullun; za a dakatar da sakin sabuntawa bayan watanni 9 (a Yuni 2021) ko watanni 3 bayan sakin reshen 0.4.5.x.

Bugu da kari, an kuma samar da zagaye na tallafi mai tsawo (LTS) don reshe na 0.3.5, za a fitar da abubuwan sabuntawa har zuwa 1 ga Fabrairu, 2022. Taimakon 0.4.0.x, 0.2.9.x da 0.4.2 an katse rassa 0.4.1.x. Tallafa wa reshe na 20.x zai karye a ranar 0.4.3 ga Mayu da 15 a ranar 2021 ga Fabrairu, XNUMX.

Ga wadanda har yanzu basu san aikin Tor ba (The Onion Router) Wannan aiki ne wanda babban burin sa shine cigaban hanyar sadarwar sadarwa rarraba tare da rashin latency da ɗorawa akan intanet, - ta hanyar da sakonnin da aka musayar tsakanin masu amfani ba ya bayyana ainihin su, wato, adireshin IP ɗinsa (rashin suna a matakin cibiyar sadarwa) kuma hakan, ƙari, yana kiyaye mutunci da sirrin bayanan da ke tafiya ta cikinsa.

An tsara tsarin tare da sassaucin da ake buƙata don ya iya aiwatar da haɓakawa, sanya shi cikin duniyar gaske kuma zai iya tsayayya da nau'ikan hari. Koyaya, yana da raunin maki kuma baza'a iya la'akari dashi a matsayin tsarin wauta ba.

Babban sabon fasali na Tor 0.4.4.5

Wannan sabon sigar Tor ya zo da 'yan canje-canje da gyaran gaba daya, daga cikinsu muna haskaka mafi mahimmanci kamar ingantaccen zaɓi na ƙofar sentinel, wanda a cikin shi matsalar matsalar daidaita nauyi, tare da inganta yawan aiki da tsaro.

Wani babban canji, shine ikon aiwatarda ayyukan albasa an aiwatar dashi. Tunda sabis ɗin da ya dogara da sigar yarjejeniya ta uku yanzu zai iya aiki azaman bayan bayan OnionBalance, wanda aka saita shi ta amfani da zaɓi na HiddenServiceOnionBalanceInstance.

An kuma haskaka cewa an sabunta jerin sabobin kundin adireshi, wanda ba a sabunta shi ba tun shekarar da ta gabata, kuma 105 daga cikin sabobin 148 sun kasance suna aiki (sabon jerin sun hada da shigarwar 144 da aka samar a watan Yuli).

A cikin zango, an ba shi izinin aiki tare da ƙwayoyin EXTEND2 ana samunsu kawai akan adireshin IPv6, kuma ana fadada fadada sarkar kan IPv6 idan abokin harka da relay suna tallafawa IPv6.

Idan, ta hanyar faɗaɗa sarƙoƙin nodes, ana iya samun damar kwayar halitta lokaci guda ta IPv4 da IPv6, to, an zaɓi adireshin IPv4 ko IPv6 bazuwar. Haɗin IPv6 na yanzu yana iya faɗaɗa sarkar. An hana amfani da adiresoshin IPv4 da IPv6 na ciki.

Bugu da ƙari fadada adadin lambar da za'a iya kashewa lokacin farawa Tor ba tare da tallafi ba.

A daya bangaren kuma, an ambaci madaidaicin sigogi don tsaron DoS na hidimar albasa. Da kyau, a baya, sigogin yarjejeniya don kariyar DoS ɗin sabis ɗin zasu sake sake sigogin da afaretan sabis ya saita ta HiddenServiceEnableIntroDoSDefense.

Wani mahimmin gyaran buguwa shine kwaron da yake rashin kimanta yawan zirga-zirga daga sabis ɗin albasa na cibiyar sadarwar Tor, yana watsi da duk wata zirga-zirga da ta samo asali daga abokan ciniki.

Bayan haka tashoshi masu amfani da tsaffin juzu'i na musafihar Tor ba za su iya ƙetare cak ba canonicity na adiresoshin. (Wannan ƙaramin abu ne kawai, saboda irin waɗannan tashoshi ba su da hanyar saita maɓallan ed25519 don haka ya kamata koyaushe a ƙi su don da'irorin da ke tantance ainihin ed25519.)

Na sauran canje-canje cewa tsaya a waje:

  • Yanzu hukumomi suna ba da shawarar sigar yarjejeniya waɗanda suka dace da Tor 0.3.5 kuma daga baya.
  • Sake saita tallafi don al'amuran tashar jiragen ruwa na GUARD NEW / UP / DOWN.
  • IPara tallafi na IPv6 zuwa tor_addr_is_valid ().
  • Testsara gwaje-gwaje don canje-canje na sama da tor_addr_is_null ().
  • Bada izinin kwastomomi da maimaitawa don aika IPv2-kawai, ɗakunan tari biyu EXTEND6.
  • Bada Tor damar yin gini akan dandamali inda bai san yadda ake ba da rahoton wanne syscall din da ya haddasa faduwar sandbox seccomp2 na Linux ba.
  • Bada izinin tsarin unlinkat (), wanda wasu aiwatarwar Libc suke amfani dashi don aiwatar da unlink ().
  • Ara sabbin sabbin SocksPort ExtendedErrors guda 3 (F2, F3, F7) suna ba da rahoton sabon nau'in gazawar haɗin sabis.

A ƙarshe, idan kuna son ƙarin sani game da shi, zaku iya bincika cikakkun bayanai a cikin bin hanyar haɗi.


Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.