Ukhuseleko loMthombo ovulekileyo ludwelisa uCriticism
Iveki evelele ezintathu zokungabikho kokutsha kwamatyhatshazo zaziswe ngogqirha wePolish Security iSec Security Research kwi-kernel yakamuva yeLinel ekwazi ukuvumela umhlaseli ukuba akhulise amalungelo abo kumatshini kwaye enze iiprogram njengomlawuli weengcambu.
Ezi ziza kutshanje kwinqaku lezinto ezikhuselekileyo okanye ezikhuselekile ezikhuselekileyo ezitholakale kwiLinux kwiinyanga ezimbalwa ezedlulileyo. Igumbi lebhodi kwiMicrosoft mhlawumbi lifumana umdlalo, okanye ubuncinci bevalelwa, kubangelwa ukuba umthombo ovulekileyo ufanelekile ukukhuseleka ngakumbi kodwa ke ezi ziphoso eziphambili ziyaqhubeka zifumaneka.
Ulahlekelwa uphawu nangona ndicinga ngolu hlobo lokuba isofthiwe yomthombo ovulekileyo ikhuselekile ngokuthe tye. Kubaqalayo, ndiyakholwa ukuba isofthiwe ikhuselekile njengomsebenzisi okanye umlawuli oyilungiselelayo kwaye ayigcine. Nangona abanye bangatsho ukuthi i-Linux ikhuselekile kakhulu ngaphandle kwebhokisi, umsebenzisi we-Linux ongenazo zinto unokungakhuselekanga njengomsebenzisi we-Microsoft Windows ongenanto.
Enye into ebalulekileyo kukuba abaphuhlisi basabantu. Kuphuma kumawaka kunye nezigidi zomgca wekhowudi eyenza inkqubo yokusebenza ibonakala ilungile ukuthetha ukuba into ethile ingahle ilahleke kwaye ekugqibeleni i-vulnerability iya kufunyanwa.
Kukho ulwahlulo phakathi komthombo ovulekileyo kunye nomnikazi. UMicrosoft waziswa ngu-EEye Digital Security malunga neziphene nokuphunyezwa kwazo kwe-ASN.1 iinyanga ezisibhozo ngaphambi kokuba ekugqibeleni baphengeze ukukhuseleka kwidlangalaleni baze bakhululwe isiqendu. Ezi ziinyanga ezisibhozo apho abantu ababi beyifumene baze baxhaphaze.
Umthombo ovulekileyo kwesinye isandla uhlala ulandelelanisa kwaye uhlaziywe ngokukhawuleza. Kukho abathuthukisi abaninzi abanokufikelela kwikhowudi yomthombo apho i-flaw okanye intsingiselo ifunyenwe kwaye ivakalise i-patch okanye i-update ikhutshwe ngokukhawuleza. I-Linux iyakwazi, kodwa umthombo ovulekileyo woluntu ubonakala usebenza ngokukhawuleza kwimibandela njengoko iphakama kwaye uphendule ngokulungelelaniswa okufanelekileyo ngokukhawuleza kunokuba uzame ukungcwaba ubukho be-vulnerability de ukuba bafikelele ekujonganeni nayo.
Oko kwathiwa, abasebenzisi beLinux bafanele baqaphele ukutshabalalisa okutsha kwaye baqinisekise ukuba bahlale bekwaziswa ngeempawu zokugqibela kunye nokuhlaziywa kubathengisi babo be-Linux. Elinye i-caveat kunye nale mpazamo kukuba ayinakuxhatshazwa kude. Oko kuthetha ukuba ukuhlaselwa kwenkqubo ekusetyenzisweni kwezi zinto ezikhuselekileyo kufuna ukuba umhlaseli abe nokufikelela ngokomzimba kumatshini.
Iingcali ezininzi zokhuseleko ziyavuma ukuba xa umhlaseli ekwazi ukufikelela kwikhompyutheni iiglavu ziphelile kwaye phantse naluphi na ukhuseleko luya kugqitywa. Kukho ukukhuseleka okuxhatshazwayo okukude-okungahlaselwa kwiinkqubo ezikude okanye ngaphandle kwenethiwekhi yendawo-eyona ingozi enkulu.
Ukufumana ulwazi oluthe vetshe qwa lasela iinkcazo ezenzelwe ingozi kwi-iSec Security Research ukuya ngasekunene kweli nqaku.