Mazuva mashoma apfuura GitHub yakazivisa akati wandei shanduko ku sevhisi inoenderana nekusunga kweprotocol Git, iyo inoshandiswa panguva yeGit Push uye git dhonza mashandiro kuburikidza neSSH kana iyo "git: //" scheme.
Izvo zvinotaurwa kuti zvikumbiro kuburikidza ne https: // hazvizokanganisike uye kana shanduko dzatanga kushanda, ingangoita vhezheni 7.2 yeOpenSSH inodiwa (yakaburitswa muna 2016) kana vhezheni 0.75 kubva PuTTY (yakaburitswa muna Chivabvu gore rino) kuti ubatanidze neGitHub kuburikidza neSSH.
Semuenzaniso, rutsigiro rweSSH mutengi weCentOS 6 uye Ubuntu 14.04, ayo akatomiswa, achaputswa.
Mhoro kubva kuGit Systems, timu yeGitHub iyo inoita shuwa kuti yako kodhi kodhi inowanikwa uye yakachengeteka. Tiri kuita dzimwe shanduko kusimudzira kuchengetedzeka kweprotocol kana iwe uchipinda kana kuburitsa data kubva kuGit. Tinovimba kuti vashoma vanhu vanozoona shanduko idzi, sezvo isu tiri kuzviita zvakatsetseka sezvinobvira, asi isu tichiri kuda kupa kumberi ziviso.
Chaizvoizvo zvinotaurwa izvozvo shanduko wira pasi kudzimisa rutsigiro rweisina kunyorwa Git mafoni kuburikidza "git: //" uye gadzirisa zvido zvemakiyi eSSH anoshandiswa kana uchiwana GitHub, izvi kuitira kusimudzira kuchengetedzeka kwekubatana kunoitwa nevashandisi, sezvo GitHub ichitaura kuti nzira iyo yanga ichiitwa nayo yatopera uye zvisina kuchengeteka.
GitHub haichazotsigira ese makiyi eDSA nenhaka SSH algorithms, senge CBC ciphers (aes256-cbc, aes192-cbc aes128-cbc) uye HMAC-SHA-1. Pamusoro pezvo, zvimwe zvinodiwa zvinounzwa kumakiyi matsva eRSA (SHA-1 kusaina icharambidzwa) uye rutsigiro rweECDSA neEd25519 kiyi dzekumisikidza inoitwa.
Chii chiri kuchinja?
Tiri kuchinja kuti ndeapi makiyi anoteerera SSH uye kubvisa isina kunyorwa Git protocol. Kunyanya isu tiri:Kubvisa rutsigiro rwemakiyi ese eDSA
Kuwedzera Zvinodikanwa zveNewly Added RSA Keys
Kubviswa kweimwe nhaka SSH algorithms (HMAC-SHA-1 uye CBC ciphers)
Wedzera ECDSA uye Ed25519 makiyi ekutambira eSSH
Dzima isina kunyorwa Git protocol
Vashandisi chete vanobatana neSSH kana git: // ndivo vanokanganiswa. Kana ako maGit ari kure otanga ne https: // hapana mune ino posvo ichaikanganisa. Kana iwe uri weSSH mushandisi, verenga pane iyo ruzivo uye chirongwa.Isu tichangobva kumira kutsigira mapassword pamusoro peHTTPS. Izvi SSH zvinoshanduka, nepo zvinehunyanzvi zvisina hukama, zviri chikamu cheiyo chete dhiraivhu yekuchengetedza GitHub data revatengi rakachengeteka sezvinobvira.
Shanduko dzinoitwa zvishoma nezvishoma uye kiyi nyowani dzekugamuchira ECDSA uye Ed25519 ichagadzirwa munaGunyana 14th. Tsigiro yeRSA kiyi kusaina uchishandisa SHA-1 hash ichamiswa muna Mbudzi 2 (makiyi akagadzirwa kare acharamba achishanda).
Musi waNovember 16, kutsigirwa kweDSA-based host kiyi kuchamiswa. Musi waNdira 11, 2022, sekuyedza, rutsigiro rwevakuru veSSH algorithms uye kugona kuwana pasina kunyorera kuchamiswa kwenguva pfupi. Musi waKurume 15, rutsigiro rwemagariro algorithms ruchadzimwa zvachose.
Uye zvakare, zvinotaurwa kuti zvinofanirwa kucherechedzwa kuti iyo OpenSSH kodhi base yakagadziriswa nekukanganisa kudzima RSA kiyi kusaina uchishandisa iyo SHA-1 hash ("ssh-rsa").
Tsigiro yeSHA-256 uye SHA-512 (rsa-sha2-256 / 512) hashed masiginecha anoramba asina kuchinja. Kupera kwerutsigiro rwe "ssh-rsa" masiginecha kuri kukonzerwa nekuwedzera kwekugona kwekurovera kurwisa neakapihwa chirevo chekutanga (mutengo wekufungidzira kukonana unofungidzirwa ungangoita madhora zviuru makumi mashanu).
Kuti uedze kushandisa ssh-rsa pane ako masystem, unogona kuedza kubatanidza kuburikidza nessh nesarudzo "-oHostKeyAlgorithms = -ssh-rsa".
Pakupedzisira sKana iwe uchifarira kuziva zvakawanda nezvazvo nezve shanduko idzo GitHub irikuita, unogona kutarisa ruzivo Mune inotevera chinongedzo.