2020 ayingunyaka olungileyo ngokubhekisele kukhuseleko lwekhompyuter. david wabaxelela ngolunye usuku ukuthengiswa kweeakhawunti zoom. Kwaye kubonakala ngathi ngeli xesha yayilithuba leGitHub, ukusingathwa kweMicrosoft kunye nolawulo lwenkonzo. Kwaxelwa ukuba uninzi lwabasebenzisi bayo bangamaxhoba ephulo lokuyila ngobuqhetseba eliyilelwe ngokukodwa ukuqokelela kunye nokuba iziqinisekiso zabo ngamaphepha apocrypha alingisa iphepha lokungena leGitHub.
Iiakhawunti zeGitHub zibiwe. Ubungozi bokwenyani kubaphuhlisi kunye nabasebenzisi
Ngokukhawuleza emva kokuthatha ulawulo lweakhawunti, yenaAbahlaseli bayaqhubeka nokukhuphela imixholo yogcino lwabucala ngaphandle kokulibazisa, egxininisa abo Yipropathi yeeakhawunti zombutho kunye nabanye abadibeneyo.
NgokweQela leMpendulo yezehlo zeGitHub yoKhuseleko (SIRT), le yimingcipheko
Ukuba umhlaseli ubile ngempumelelo iziqinisekiso zeakhawunti yomsebenzisi we-GitHub, banokwenza ngokukhawuleza iithokheni zokufikelela zeGitHub okanye bavumele izicelo ze-OAuth kwiakhawunti ukugcina ukufikelela kwimeko apho umsebenzisi atshintshe ipaswedi yakhe.
Ngokwe-SIRT, eli phulo lobuqhetseba elibizwa ngokuba yiSawfish, inokuchaphazela zonke iiakhawunti ezisebenzayo zeGitHub.
Esona sixhobo siphambili sokufikelela kwiiakhawunti yi-imeyile. Imiyalezo isebenzisa amaqhinga ahlukeneyo ukufumana abamkeli ukuba bacofe kwikhonkco elingalunganga elifakwe kwisicatshulwa: Abanye bathi imisebenzi engagunyaziswanga yafunyanwa, ngelixa abanye bethetha ngotshintsho kwindawo yokugcina izinto okanye kuseto lweakhawunti yomsebenzisi ojolise kuye.
Abasebenzisi abawela inkohliso kwaye bacofe ukujonga iakhawunti yabo Baye bathunyelwa kwiphepha elingelilo le-GitHub yokuqokelela iinkcukacha zabo kwaye bazithumele kwiiseva ezilawulwa ngumhlaseli.
Iphepha eliyinyani elisetyenziswe ngabahlaseli uya kufumana kwakhona iikhowudi zokuqinisekisa ezimbini ngexesha elifanelekileyo Amaxhoba ukuba asebenzisa i-password esekwe ixesha elinye (i-TOTP) usetyenziso lweselfowuni.
Kwi-SIRT ukuza kuthi ga ngoku, iiakhawunti ezikhuselwe ngamaqhosha okhuseleko asekwe kwizixhobo zokusebenza azikho semngciphekweni kolu hlaselo.
Le yindlela uhlaselo olusebenza ngayo
Ngokwazi kwethu, Amaxhoba akhethwayo kweli phulo lobuqhetseba kungoku basebenzisa i-GitHub basebenzela iinkampani zobuchwephesha kumazwe ahlukeneyo kwaye benza njalo besebenzisa iidilesi ze-imeyile ezaziwa esidlangalaleni.
Ukuthumela ii-imeyile zobuqhetseba sSebenzisa imimandla esemthethweni, nokuba usebenzisa iiseyile ze-imeyile okanye ngoncedo lweziqinisekiso ze-API ezibiweyo kubanikezeli beenkonzo ze-imeyile ezisemthethweni.
Abahlaseli tBasebenzisa iinkonzo ze-URL zokunciphisa yenzelwe ukufihla ii-URL zamaphepha okufika. Bade badibanise iinkonzo ezininzi zokunciphisa i-URL kunye ukuze babone ubunzima ngakumbi. Ukongeza, ukusetyenziswa kweefayile ezisekwe kwi-PHP ezivela kwiindawo ezinobungozi kwafunyanwa.
Ezinye iindlela zokuzikhusela kuhlaselo
Ngokwezindululo zabo banoxanduva lokhuseleko, ukuba uneakhawunti yeGitHub, kuya kufuneka wenze oku kulandelayo:
- Guqula iphasiwedi
- Cwangcisa kwakhona iikhowudi ekuphulukenwe nalo ngamanyathelo amabini.
- Hlaziya amathokheni okufikelela.
- Tshintshela kwizixhobo zokusebenza okanye ububhali beWebhu.
- Sebenzisa umphathi wegama eligqithisiweyo elisekwe kwisikhangeli. Oku kunika inqanaba lokukhuselwa ekulobeni njengoko baya kuqonda ukuba ayisiyiyo ikhonkco ebelityelelwe ngaphambili.
Ewe kunjalo, enye ayisoze isilele. Ungaze ucofe kwikhonkco elithunyelwe kuwe nge-imeyile. Bhala idilesi ngesandla okanye unayo kwiibhukumaka.
Nangona kunjalo, iindaba ezimangalisayo. Asithethi ngenethiwekhi yokuncokola kodwa indawo ethi ngokwenkcazo yayo ithi:
Iqonga lokudibana kwesoftware yokubamba iiprojekthi zisebenzisa inkqubo yolawulo lwenguqulo yeGit. Ikhowudi igcinwe esidlangalaleni, nangona inokwenziwa ngasese ...
Ngamanye amagama, abasebenzisi bayo ngabantu abadala usetyenziso esisebenzisayo kwaye ke kufuneka songeze amanqaku okhuseleko. Yinto efana nokuba kwiSebe lamaPolisa.