Ukhuseleko kwiinkqubo ze-GNU / Linux, ngaba ixhomekeke kwinkqubo okanye kumlawuli?

Kwiintsuku ezidlulileyo bebaleka ngomnatha iingxelo zokuhlaselwa Baxhaphaza ukuba semngciphekweni kwi-PHP, evumela ezinye iisayithi ezisemthethweni ukuba zisebenzise amaphepha ewebhu obuqhetseba kunye neentengiso, ziveze iindwendwe kufakelo lwe-malware kwiikhompyuter zazo. Olu hlaselo luthatha ithuba umngcipheko obaluleke kakhulu we-PHP kutyhilwe esidlangalaleni iinyanga ezingama-22 ezidlulileyo nalapho kukhutshwe uhlaziyo oluhambelanayo.

Abanye baqalisile ukunyanzelisa ukuba icandelo elilungileyo leeseva ezonakaliswe kolu hlaselo ziqhuba iinguqulelo ze-GNU / Linux, bezenza ngathi babuza ukhuseleko lwale nkqubo yokusebenza, kodwa ngaphandle kokuya kwiinkcukacha malunga nobume bokuba sesichengeni okanye izizathu kutheni le yenzekileyo.

Iinkqubo ezine-GNU / Linux ezosulelekileyo, kuzo zonke iimeko, baqhuba i Inguqulelo yeLinux kernel 2.6, ekhutshwe ngo-2007 okanye ngaphambili. Akukho naphi na apho kukhankanywayo usulelo lweenkqubo ezisebenzisa iinkozo eziphezulu okanye ezihlaziywe ngokufanelekileyo; Kodwa kunjalo, kusekho abalawuli abacinga ukuba "... ukuba ayophukanga, ayifuni kulungiswa" emva koko ezi zinto ziyenzeka.

Ngakolunye uhlangothi, uphononongo lwakutsha nje lwenkampani yezokhuseleko ESET, ityhila umnxeba ngokweenkcukacha "Umsebenzi weWindigo", apho ngokusebenzisa iikiti ezininzi zokuhlaselwa, kubandakanya enye ebizwa Umsebenzi okhethiweyo eyenzelwe ngokukodwa i-Apache kunye nezinye iiseva zomthombo ezivulekileyo zomthombo wewebhu, kunye nenye ebizwa I-SSH, ibe ngaphezulu kweenkqubo ezingama-26,000 ze-GNU / Linux ezonakalisiweyo ukusukela ngoMeyi kunyaka ophelileyo, ngaba oku kuthetha ukuba i-GNU / Linux ayisakhuselekanga?

Okokuqala ukubeka izinto emxholweni, ukuba sithelekisa amanani angaphambili kunye nezigidi ezi-2 zeekhompyuter zeWindows ezonakaliswe yi-bootnet ZeroAccess Phambi kokuba ivalwe ngoDisemba 2013, kulula ukugqiba ukuba, ngokubhekiselele kukhuseleko, Iinkqubo ze-GNU / Linux zisakhuseleke ngakumbi Ngaphezu kwabo basebenzisa iNkqubo yokuSebenza yeMicrosoft, kodwa ngaba sisiphoso se-GNU / Linux ukuba iinkqubo ezingama-26,000 ezine-OS zonakaliswe?

Njengakwimeko yokuba sesichengeni kokubaluleka kwe-PHP ekuxoxwe ngayo ngasentla, echaphazela iinkqubo ngaphandle kohlaziyo lwe-kernel, olu hlaselo lubandakanya iinkqubo apho igama lomsebenzisi elingagqibekanga kunye / okanye ipassword ingatshintshwanga kwaye igcina Izibuko lama-23 nelama-80 zivulwe ngokungeyomfuneko; Ngaba ngenene yimpazamo ye-GNU / Linux?

Ngokucacileyo, impendulo ngu-HAYI, ingxaki ayisiyiyo i-OS esetyenzisiweyo kodwa kukungakhathali kunye nokungahoywa kwabalawuli bezo nkqubo abangaqondi kakuhle ubuninzi obuchazwe yingcali yezokhuseleko. UBruce Schneier Oko kuya kutshiswa kwiingqondo zethu: Ukhuseleko YINKQUBO AYIKHO imveliso.

Akuncedi nganto ukuba sifaka inkqubo ekhuselekileyo eqinisekisiweyo ukuba siyishiya ishiywe kwaye singafaki uhlaziyo oluhambelanayo ngokukhawuleza ukuba zikhutshwe. Ngokufanayo, akunamsebenzi ukugcina inkqubo yethu ihlaziywa ukuba iziqinisekiso zokungqinisisa ezibonakala ngokungagqibekanga ngexesha lofakelo ziyaqhubeka nokusetyenziswa. Kuzo zombini iimeko, kunjalo iinkqubo zokhuselo lokuqala, ezingadingi ukuphindwaphindwa, zisetyenziswe ngokufanelekileyo.

Ukuba unokhathalelo lwenkqubo ye-GNU / Linux ene-Apache okanye enye indawo evulekileyo yomthombo wewebhu kwaye ufuna ukukhangela ukuba ngaba yonakalisiwe, inkqubo ilula. Kwindaba ye ukungcwaba, Kuya kufuneka uvule i-terminal kwaye uchwetheze lo myalelo ulandelayo:

ssh -G

Ukuba impendulo yahlukile ku:

ssh: illegal option – G

kwaye ke uluhlu lwezinto ezichanekileyo zokwenza loo myalelo, emva koko inkqubo yakho iyancitshiswa.

Kwimeko ye Umsebenzi okhethiweyo, inkqubo inzima ngakumbi. Kuya kufuneka uvule i-terminal kwaye ubhale:

curl -i http://myserver/favicon.iso | grep "Location:"

Ukuba inkqubo yakho yonakalisiwe, ngoko Umsebenzi okhethiweyo uya kusihambisa kwakhona isicelo kwaye akunike iziphumo:

Location: http://google.com

Ngaphandle koko, ayizukubuyisa nantoni na okanye enye indawo eyahlukileyo.

Ifom yokubulala iintsholongwane inokubonakala ngathi krwada, kodwa kuphela kwento eqinisekisiweyo esebenzayo: inkqubo epheleleyo yokusula, ukuphinda ufake kwakhona ukuqala kwaye setha kwakhona zonke iziqinisekiso umsebenzisi kunye nomphathi ukusuka kwisiphelo esingaqinisekiswanga. Ukuba kubonakala kunzima kuwe, qaphela ukuba, ukuba ubunokutshintsha iziqinisekiso ngokukhawuleza, ngekhe uyonakalise inkqubo.

Ukufumana uhlalutyo olunzulu ngakumbi lweendlela ezi zifo ezisebenza ngayo, kunye neendlela ezithile ezisetyenzisiweyo ukusasaza kunye namanyathelo ahambelanayo ekufuneka ethathiwe, sicebisa ukukhuphela kunye nokufunda uhlalutyo olupheleleyo "Umsebenzi weWindigo" iyafumaneka kule khonkco ilandelayo:

Umsebenzi weWindigo

Okokugqibela, a Isiphelo esisisiseko: Akukho ndlela yokusebenza eqinisekisiweyo ngokuchasene nabaphathi abangenankathalo okanye abangakhathaliyo; Ngokuphathelele ukhuseleko, kuhlala kukho into ekufuneka yenziwe, kuba eyona mpazamo yokuqala kunye neyona inkulu kukucinga ukuba sele siphumelele, okanye awucingi njalo?