安全强化你的 Linux 服务器的七个步骤-白红宇

安全强化你的 Linux 服务器的七个步骤

阅读量：196 次

发布时间：2019-02-28

本文共 1528 字，大约阅读时间需要 5 分钟。

??????Linux???????

?????????????????????????????????????????Linux??????????

1. ????????????

???????????????????????????????????????????????????????????

? Ubuntu ? Debian ??
```
sudo apt update && sudo apt upgrade -y
```

? Fedora?CentOS ? RHEL ??
```
sudo dnf upgrade -y
```

2. ??????

??????????????root??????????????????????sudo???

??????
```
sudo adduser
```

??usermod????????sudo???
```
sudo usermod -a -G sudo
```

3. ??SSH??

??SSH?????????????ssh-copy-id?????????????????

???????????
```
ssh-copy-id @ip_address
```

????????????????????

4. ????SSH??

????????????????SSH?????????

??SSH?????
??/etc/ssh/sshd_config?????????
```
PasswordAuthentication no
```

??root?????
```
PermitRootLogin no
```

??IP?????
??AddressFamily?????SSH?????IPv4???
```
AddressFamily inet
```

??SSH???

? Ubuntu ??

sudo service sshd restart

? Fedora ? CentOS ??

sudo systemctl restart sshd

5. ?????

????????????????????????????Ubuntu??ufw????????????????

??UFW?
```
sudo apt install ufw -y
```

????????

sudo ufw allow sshsudo ufw allow httpsudo ufw allow https

??????
```
sudo ufw enable
```

????????
```
sudo ufw status
```

6. ??Fail2ban

Fail2ban??????????????????????????IP???

??Fail2ban?
```
sudo apt install fail2ban -y
```

???????

sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local

??Fail2ban???
```
sudo service fail2ban restart
```

?????
```
sudo fail2ban-client status ssh
```

7. ????????

??????????????????????????ss??????????????

??????????
```
sudo ss -atpu
```

?????????
? Debian/Ubuntu ??
```
sudo apt purge
```
? Red Hat/CentOS ??
```
sudo yum remove
```

??????????????Linux?????????????????????????????????????????????????????????????????????????????????????????????

转载地址：http://peti.baihongyu.com/

你可能感兴趣的文章

org.apache.axis2.AxisFault: org.apache.axis2.databinding.ADBException: Unexpected subelement profile

查看>>

sql查询中查询字段数据类型 int 与 String 出现问题

查看>>

org.apache.commons.beanutils.BasicDynaBean cannot be cast to ...

查看>>

org.apache.dubbo.common.serialize.SerializationException: com.alibaba.fastjson2.JSONException: not s

查看>>

sqlserver学习笔记（三）—— 为数据库添加新的用户

查看>>

org.apache.http.conn.HttpHostConnectException: Connection to refused

查看>>

org.apache.ibatis.binding.BindingException: Invalid bound statement错误一例

查看>>

org.apache.ibatis.exceptions.PersistenceException:

查看>>

org.apache.ibatis.exceptions.TooManyResultsException: Expected one result (or null) to be returned

查看>>

org.apache.ibatis.type.TypeException: Could not resolve type alias 'xxxx'异常

查看>>

org.apache.poi.hssf.util.Region

查看>>

org.apache.xmlbeans.XmlOptions.setEntityExpansionLimit(I)Lorg/apache/xmlbeans/XmlOptions；

查看>>

org.apache.zookeeper.KeeperException$ConnectionLossException: KeeperErrorCode = ConnectionLoss for /

查看>>

org.hibernate.HibernateException: Unable to get the default Bean Validation factory

查看>>

org.hibernate.ObjectNotFoundException: No row with the given identifier exists:

查看>>

org.springframework.boot:spring boot maven plugin丢失---SpringCloud Alibaba_若依微服务框架改造_--工作笔记012

查看>>

SQL-CLR 类型映射 (LINQ to SQL)

查看>>

org.springframework.orm.hibernate3.support.OpenSessionInViewFilter

查看>>

org.springframework.orm.hibernate3.support.OpenSessionInViewFilter

查看>>

org.springframework.web.multipart.MaxUploadSizeExceededException: Maximum upload size exceeded

查看>>