I-Linux Device Isolation isici esinikezwa yiMicrosoft ku-Defender
Ezinsukwini ezithile ezedlule IMicrosoft ivuliwe ngesimemezelo esengeze i ukwesekwa kokuhlukaniswa kwedivayisi ku-Microsoft Defender for Endpoint (MDE) kumadivayisi e-Linux ashumekiwe.
Kuhle ukusho ukuthi mhlawumbe kwabaningi, lolu hlobo lwesenzo se-MS aluyona into enkulu, kude nalo, futhi ngingavumelana nawe, kodwa mina ngokwami ngithole izindaba ezithakazelisayo, ngoba izindawo zebhizinisi nokunye okunjalo kulawulwa. ngezidingo ezithile eziphansi kanye nemibhalo ngaphezu kwakho konke, kungaba nezinzuzo ezithile futhi ngaphezu kwakho konke uhlamvu oluncane lwesihlabathi olungaqondile ukuze bakwazi ukuthatha i-Linux kancane, ikakhulukazi kulezo zindawo ezibuswa ukusetshenziswa kwemikhiqizo ye-MS.
Ngendaba, kukhulunywa ngayo manje abalawuli manje bangakwazi ukuhlukanisa ngesandla imishini ye-Linux ibhaliswe nge-Microsoft 365 Defender Portal noma ngezicelo ze-API.
Uma sezihlukanisiwe, uma kwenzeka noma iyiphi inkinga, ngeke zisaba nokuxhumana nesistimu ethelelekile, inqamule ukulawula kwayo futhi ivimbele imisebenzi enonya njengokwebiwa kwedatha. Isici Sokuhlukaniswa Kwedivayisi sibonwa kuqala futhi sibonisa lokho umkhiqizo osuvele uyenza kumasistimu e-Windows.
“Ezinye izimo zokuhlasela zingadinga ukuthi uhlukanise idivayisi kunethiwekhi. Lesi senzo singasiza ekuvimbeleni umhlaseli ekutholeni ukulawula idivayisi esengozini futhi enze eminye imisebenzi, efana nokuhlunga idatha kanye nokunyakaza kwe-lateral. Ngokufanayo namadivayisi e-Windows, lesi sici sokuhlukanisa idivayisi sinqamula idivayisi eyonakalisiwe kunethiwekhi kuyilapho kugcinwa ukuxhumana ne-Defender yesevisi ye-Endpoint, kuyilapho iqhubeka nokuqapha idivayisi,” kuchaza i-Microsoft. Ngokusho kwe-software giant, uma idivayisi ifakwe ebhokisini le-sandbox, ivinjelwe ezinqubweni nasezindaweni zewebhu ezivunyelwe.
Lokhu kusho ukuthi uma ungemuva komhubhe ogcwele we-VPN, amasevisi amafu ngeke afinyeleleke I-Microsoft Defender ye-Endpoint. I-Microsoft incoma ukuthi amakhasimende asebenzise i-VPN yomhubhe ohlukanisayo wethrafikhi esekelwe emafini kukho kokubili i-Defender for Endpoint kanye ne-Defender Antivirus.
Uma isimo esidale ukuhlukaniswa sesixazululiwe, bazokwazi ukuxhuma kabusha idivayisi kunethiwekhi. Ukuhlukaniswa kwesistimu kwenziwa nge-API. Abasebenzisi bangafinyelela ikhasi lamadivayisi wezinhlelo ze-Linux ngengosi ye-Microsoft 365 Defender, lapho bezobona khona ithebhu ethi “Isolate device” phezulu kwesokudla, phakathi kwezinye izinketho.
I-Microsoft ichaze ama-API ukuthi ahlukanise idivayisi futhi ayikhulule ku-block.
Amadivayisi ahlukanisiwe angaxhunywa kabusha kunethiwekhi ngokushesha nje lapho usongo seluncishisiwe ngenkinobho ethi "Khipha ekuzihlukaniseni" ekhasini ledivayisi noma ngesicelo "esingahlukanisiwe" se-HTTP API. Amadivayisi e-Linux angasebenzisa i-Microsoft Defender ye-Endpoint ahlanganisa iRed Hat Enterprise Linux (RHEL), i-CentOS, Ubuntu, Debian, SUSE Linux, Oracle Linux, Fedora Linux, kanye ne-Amazon Web Services (AWS) Linux. Lesi sici esisha ezinhlelweni ze-Linux sibonisa isici esikhona ezinhlelweni ze-Microsoft Windows.
Kulabo abangazi I-Microsoft Defender ye-Endpoint, kufanele bazi ukuthi kunjaloi-e iwumugqa womyalo onezici zokunqanda uhlelo olungayilungele ikhompuyutha kanye nokutholwa kwephoyinti lokugcina kanye nezici zokuphendula (EDR) eklanyelwe ukuthumela lonke ulwazi olusongelayo olutholayo ku-Microsoft 365 Defender Portal.
I-Linux Device Isolation isici sakamuva sokuvikela iMicrosoft ujoyine isevisi yamafu. Ngasekuqaleni kwale nyanga, inkampani yandisa ukuvikelwa kwe-Defender tamper ye-Endpoint ukufaka okungafakwanga kuma-antivirus. Konke lokhu kuyingxenye yephethini enkulu yokuqinisa i-Defender eneso elibheke kumthombo ovulekile.
Embukisweni wayo we-Ignite ngo-Okthoba 2022, iMicrosoft yamemezela ukuhlanganiswa kwenkundla yokuqapha inethiwekhi yomthombo ovulekile i-Zeek njengengxenye ye-Defender for Endpoint yokuhlola iphakethe elijulile lokuhamba kwenethiwekhi.
Ekugcineni, uma unentshisekelo yokwazi kabanzi ngakho, ungaxhumana nemininingwane Kulesi sixhumanisi esilandelayo.