Uhlobo olusha lwe-systemd 249 selukhishiwe futhi lezi yizinguquko zalo

Darkcrizt

Imizuzu ye-4

uhlelo-245

Uhlobo olusha lwe-systemd 249 lusanda kwethulwa efika icishe igcwalise umjikelezo wayo wentuthuko ongabikezelwa (cishe njalo ezinyangeni ezi-4) nalapho kwethulwe khona uchungechunge lokuthuthuka, ukulungiswa kwamaphutha kanye nemisebenzi emisha ikakhulukazi.

Futhi kungukuthi kule nguqulo entsha wethule ifayela le- amandla okuchaza abasebenzisi / amaqembu ngefomethi ye-JSON, umthetho olandelwayo weJenali uzinzile, yenza lula ukuhlelwa kokulayishwa kokuhlukaniswa kwediski ezishintshana, zengeza amandla okubopha izinhlelo ze-BPF ezinsizakalweni, zisebenzisa imephu ye-ID yomsebenzisi kumahlukaniso afakiwe, inikela ngengxenye enkulu yokumiswa kwenethiwekhi entsha, kanye nekhono lokusebenzisa iziqukathi.

Kulabo abangajwayele i-systemd, kufanele wazi ukuthi lokhu kuyisethi yamademoni okuphatha uhlelo, imitapo yolwazi namathuluzi aklanyelwe njengesikhungo esiphakathi sokuphatha nokucushwa ukuze kuhlangatshezwane ne-kernel yohlelo lwe-GNU / Linux Operating System.

Izici ezintsha eziyinhloko ze-systemd 249

Phakathi kwezinguquko ezigqame kakhulu yale nguqulo entsha ethuliwe, singathola ukuthi yinie ku-systemd-ask-password kanye ne-systemd-sysusers bangeze ukusekelwa kokucela ukusethwa kwamaphasiwedi kusetshenziswa indlela entsha ye-systemd 247 ukudlulisa ngokuphepha idatha ebucayi usebenzisa amafayela aphakathi nendawo enkombeni ehlukile, njengoba ngokuzenzakalela imininingwane itholwa kusuka kwinqubo nge-PID1, ebamukelayo, ngokwesibonelo, evela kumphathi wesitsha, ekuvumela ukuthi uhlele izilungiselelo zephasiwedi yomsebenzisi ebhuthini yokuqala.

Ekusekelweni kweSystemd-firstboot kuyangezwa ukusebenzisa ukudluliswa kwedatha okuphephile Kuyimfihlo ukucela amapharamitha ohlelo ahlukahlukene, angasetshenziselwa ukuqala ukumiswa kwesistimu lapho isithombe sesitsha esingenakho ukumiswa okudingekayo kumkhombandlela we / njll siqala ukwenziwa.

En i-userdb ne-nss-systemd zinikezwe ukufinyelela kuzincazelo ezengeziwe zomsebenzisi etholakala kwizikhombisi / njll / userdb /, / run / userdb /, / run / host / userdb / kanye / usr / lib / userdb /, okucaciswe ngefomethi ye-JSON. Kumele kuqashelwe ukuthi lesi sici sizohlinzeka ngendlela eyengeziwe yokwakha abasebenzisi ohlelweni, sinikeze ukuhlanganiswa okugcwele ne-NSS kanye ne- / njll / isithunzi. 

Olunye ushintsho oluvelele ukuthi a indlela eyenza kube lula ukuhlelwa kwesibuyekezo ngokufaka izingxenye zediski. Uma isithombe sediski siqukethe izingxenye ezimbili / o / usr kanye ne-udev ayitholakalanga ipharamitha 'root =' noma icubungula izithombe zediski ezichazwe ngenketho «–Isithombe»Ezinsizakalweni si-ystemd-nspawn ne-systemd-disect, ukwahlukaniswa kwe-boot kungabalwa ngokuqhathanisa amathegi we-GPT (kucatshangwa ukuthi ithegi ye-GPT isho inombolo yenguqulo yokuqukethwe kokwahlukanisa futhi i-systemd izokhetha ukwahlukaniswa nezinguquko zakamuva kakhulu).

En i-systemd-spawn, inketho "–Private-user-chown" ithathelwe indawo inketho yendawo yonke "--private-user-property", kungaba yini Chown ngokulingana ne- «-Private-user- okhethiwe«,» Valiwe »ukukhubaza ukulungiselelwa kwangaphambilini, ukubeka kumephu ama-ID omsebenzisi ezinhlelweni ezifakiwe ezifakiwe futhi» auto «ukukhetha» imephu «uma i-kernel inokusebenza okudingekayo (5.12+), noma ibuyele ekuphindeleni«chown"kungenjalo.

Ngakolunye uhlangothi kunqubo I-PID 1, ngesikhathi sokuqalisa, igama leyunithi nencazelo kuqinisekisiwe zikhonjiswa ngasikhathi sinye, futhi okukhiphayo kungashintshwa ngepharamitha «IsimoUnitFormat = kuhlanganisiwe»Ku-system.conf noma inketho yomugqa womyalo we-kernel "Systemd.status-unit-format = kuhlanganisiwe".

Kwezinye izinguquko okugqamile:

  • Isisekelo esisha sehadiwe samadivayisi we-FireWire (IEEE 1394) sengezwe ku-udev.
  • Ukulungiswa kwe-BPFP program kungeziwe kumafayela esevisi, lapho ungahlela khona ukulayishwa kwezinhlelo ze-BPF ku-kernel futhi uziphathe ngezixhumanisi zezinsizakalo ezithile ezihleliwe.
  • I-Nss-systemd inikeza ukuhlanganiswa kokufakiwe komsebenzisi / kweqembu ku- / njll / isithunzi usebenzisa amaphasiwedi we-hashed kusuka ku-systemd-homed.
  • I-Systemd-fstab-generator ne-systemd-distribu manje sebenamandla okuqala kuma-disks ane-part / usr partition kuphela futhi awanazo izimpande (ukwahlukaniswa kwezimpande kuzokwenziwa insiza ye-systemd-distribu ebhuthini lokuqala).
  • I-Systemd-solved ingeza isizinda "home.arpa" kuhlu lwe-NTA (Negative Trust Anchors), olunconyelwa amanethiwekhi asekhaya, kepha alusetshenziswa ku-DNSSEC.
  • Izicacisi ze- "%" zidluliswe kupharamitha ye-CPUAffinity.
  • Kungezwe ipharamitha PhathaForeignRoutingPolicyRules kumafayela e-network, angasetshenziswa ukukhipha izinqubomgomo zomzila wesithathu ekusetshenzisweni yi-systemd-networkd.
  • Kungezwe ipharamitha ye-RequiredFamilyForOnline kumafayela ".network" ukunquma ukuba khona kwekheli le-IPv4 noma le-IPv6 njengophawu lokuthi i-interface ye-inthanethi "iku-inthanethi". I-Networkctl inikezela ngesikrini sesimo "esiku-inthanethi" kusixhumanisi ngasinye.
  • Ipharamitha ye-OutgoingInterface ingezwe kumafayela we- ".network" ukuchaza izixhumi ezibonakalayo eziphumayo lapho kulungiswa amabhuloho enethiwekhi.

Uma ufuna ukwazi kabanzi ngayo, ungabheka imininingwane Kulesi sixhumanisi esilandelayo.


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Unomthwalo wemfanelo ngedatha: AB Internet Networks 2008 SL
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.