UJakub jelen (unjiniyela wezokuphepha we-Red Hat) uphakamise ukuthi umthetho olandelwayo we-SCP uhlukaniswe njengongasasebenzi ukuze kamuva uqhubeke ekususweni kwayo. Njengoba I-SCP icishe isondele ku-RCP futhi izuze njengefa izinkinga zokwakha okuyisisekelo okungumthombo wobungozi obungaba khona.
Ikakhulu, ku-SCP naku-RCP, isiphakeli samukela isinqumo sokuthi yimaphi amafayela nezinkomba ezizothunyelwa kuklayenti, futhi iklayenti lilandela imiyalo yeseva futhi lihlola kuphela ukunemba kwamagama ento abuyisiwe.
Ngokuxhuma kwiseva elawulwa ngumhlaseli, iseva ingahambisa amanye amafayela, okuholele kaningi ekuboneni ubuthakathaka.
Isibonelo, kuze kube muva nje, iklayenti lihlole kuphela umkhombandlela wamanje, kepha alizange linake ukuthi iseva ingakhipha ifayili elinegama elihlukile bese libhala ngaphezulu amafayela angazange acelwe (ngokwesibonelo, esikhundleni se- "test.txt" iceliwe, iseva ingathumela ifayela elibizwa ngokuthi ». bashrc« futhi lizobhalwa iklayenti).
Okuthunyelwe, okushicilelwe nguJakub Jelen, ungafunda okulandelayo:
Sawubona abasebenzisi beFedora! Eminyakeni yamuva nje, kube nezinkinga eziningana kuhlelo lwe-SCP, okusiholela ezingxoxweni ukuthi singakwazi yini ukukuqeda ezigabeni zokuqala.
Iningi lamazwi lathi lisebenzisa i-SCP ikakhulukazi kumakhophi alula we-ad-hoc futhi ngoba insiza ye-sftp ayinikeli isikhombimsebenzisi esilula ukukopisha ifayili elilodwa noma amabili emuva naphambili futhi ngoba abantu basetshenziselwa ukubhala i-scp kuphela esikhundleni sftp.
Enye inkinga ngephrothokholi ye-SCP isici sokucubungula izingxabano.
Njengoba kushiwo lokho lapho ukopisha amafayela kuseva yangaphandle indlela yefayela ifakwe kuze kube sekupheleni komyalo we-scp local, ngokwesibonelo, lapho usebenzisa umyalo «scp / sourcefile remoteserver: 'touch / tmp / exploit.sh` / targetfile'» kuseva, umyalo »touch / tmp / exploit.sh» kanye ne- / tmp /exploit.sh, ngakho-ke kubalulekile ukusebenzisa izinhlamvu ezifanele zokuphunyuka ku-scp.
Lapho i-scp isetshenziselwa ukuphinda iphindaphinde okuqukethwe kwezinkomba (inketho "-r") kumasistimu wefayela amukela uhlamvu '' 'ngamagama wefayela, umhlaseli angakha ifayili ngama-apostrophes futhi alenze ikhodi ezosebenza.
Ku-OpenSSH le nkinga ihlala ingalungisiwe, njengokuyinkinga ukulungisa ngaphandle kokwephula ukuhambelana okubuyela emuva, isb.ukusebenzisa imiyalo ukubheka ukuthi isiqondisi sikhona ngaphambi kokukopisha.
Izingxoxo ezedlule zikhombisile ukuthi i-scp ijwayele ukusetshenziselwa ukukopisha amafayela kusuka kolunye uhlelo kuye kolunye.
Nokho, abantu abaningi basebenzisa i-scp esikhundleni se-sftp ngenxa yesixhumi esibonakalayo esilula futhi kusobala ukukopisha amafayela, noma nje ngomkhuba. UJakub usikisela ukusebenzisa ukufakwa okuzenzakalelayo kwensiza ye-scp, eguqulwe ukuze kusetshenziswe umthetho olandelwayo we-SFTP (kwezinye izimo ezikhethekile, insiza ihlinzeka inketho "-M scp" yokubuyela kuphrothokholi ye-SCP), noma ukungeza imodi yokuhambisana kusetshenziswa kwe-sftp okukuvumela ukuthi usebenzise i-sftp ngaphakathi njengokufaka esikhundleni okusobala kwe-scp.
Ezinyangeni ezithile ezedlule ngibhale isichibi se-scp sokusebenzisa i-SFTP ngaphakathi (ngethuba lokuyiguqula ngisebenzisa -M scp) futhi ngayiqhuba ngempumelelo kwezinye izivivinyo.
Impendulo esezingeni eliphezulu nayo ibimnandi impela, ngakho-ke nami ngingathanda ukuzwa kusuka kubasebenzisi bethu. Kusenemikhawulo ethile (ukwesekwa akukho, ngeke kusebenze uma iseva ingasebenzisi uhlelo olusebenzayo lwe-sftp,…), kepha kufanele ilunge ngokwanele ezimweni ezisetshenziswa kakhulu.
Phakathi kwemikhawulo yendlela ehlongozwayo, kungenzeki kokushintshisana kwedatha ngamaseva angaqali uhlelo olungaphansi lwe-sftp kushiwo, nokungabi bikho kwemodi yokudlulisa phakathi kwezingcingo ezimbili zangaphandle ezinokuthuthwa kusokhaya wasendaweni (imodi "-3"). Abanye abasebenzisi bayabona futhi ukuthi i-SFTP ingemuva kwe-SCP maqondana ne-bandwidth, ebonakala kakhulu ekuxhumaneni okungalungile nge-latency ephezulu.
Ukuhlolwa, enye iphakethe le-opensh selivele libekiwe endaweni yokugcina izinto ze-copr, liyilungisa ngokuqalisa kokusetshenziswa kwe-scp ngaphezulu kweprotocol ye-SFTP.
Umthombo: https://lists.fedoraproject.org/