安全性

'sss_simpleifp' library ('libsss_simpleifp' and 'libsss_simpleifp-devel' packages) has been deprecated and will be removed from future releases.

提供处理本地用户功能的SSSD '文件提供者' 已被弃用，并可能从未来的版本中移除。 由于该功能在之前的几个版本中默认已禁用，因此对于绝大多数用户来说不应成为问题。 那些明确配置它的用户，例如用于本地用户的会话记录，可能需要考虑切换到’代理提供者'。 如果您有’代理提供者’无法覆盖的强烈用例，请通过 https://sssd.io/ 联系SSSD上游。

X server implementations (e.g. Xorg and Xwayland) no longer accept connections from remote clients with a byte endianess different from that of the X server by default. This removes a large attack surface in the X server that can be exploited by malicious clients. Users that require this particular use-case can re-enable this feature with the AllowByteSwappedClients option (see the xorg.conf man page), or passing +byteswappedclients to the X server invocation (see the Xserver man page). This change does users that do not use X forwarding (with or without ssh).