博客
关于我
安全强化你的 Linux 服务器的七个步骤
阅读量:196 次
发布时间:2019-02-28

本文共 1528 字,大约阅读时间需要 5 分钟。

??????Linux???????

?????????????????????????????????????????Linux??????????

1. ????????????

???????????????????????????????????????????????????????????

  • ? Ubuntu ? Debian ??

    sudo apt update && sudo apt upgrade -y

  • ? Fedora?CentOS ? RHEL ??

    sudo dnf upgrade -y

2. ??????

??????????????root??????????????????????sudo???

  • ??????

    sudo adduser

  • ??usermod????????sudo???

    sudo usermod -a -G sudo

3. ??SSH??

??SSH?????????????ssh-copy-id?????????????????

  • ???????????

    ssh-copy-id @ip_address

????????????????????

4. ????SSH??

????????????????SSH?????????

  • ??SSH?????

    ??/etc/ssh/sshd_config?????????

    PasswordAuthentication no

  • ??root?????

    PermitRootLogin no

  • ??IP?????

    ??AddressFamily?????SSH?????IPv4???

    AddressFamily inet

  • ??SSH???

    ? Ubuntu ??

    sudo service sshd restart

    ? Fedora ? CentOS ??

    sudo systemctl restart sshd

5. ?????

????????????????????????????Ubuntu??ufw????????????????

  • ??UFW?

    sudo apt install ufw -y

  • ????????

    sudo ufw allow sshsudo ufw allow httpsudo ufw allow https

  • ??????

    sudo ufw enable

  • ????????

    sudo ufw status

6. ??Fail2ban

Fail2ban??????????????????????????IP???

  • ??Fail2ban?

    sudo apt install fail2ban -y

  • ???????

    sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local

  • ??Fail2ban???

    sudo service fail2ban restart

  • ?????

    sudo fail2ban-client status ssh

7. ????????

??????????????????????????ss??????????????

  • ??????????

    sudo ss -atpu

  • ?????????

    ? Debian/Ubuntu ??

    sudo apt purge

    ? Red Hat/CentOS ??

    sudo yum remove

??????????????Linux?????????????????????????????????????????????????????????????????????????????????????????????

转载地址:http://peti.baihongyu.com/

你可能感兴趣的文章
object detection错误之Could not create cudnn handle: CUDNN_STATUS_INTERNAL_ERROR
查看>>
object detection错误之no module named nets
查看>>
Object of type 'ndarray' is not JSON serializable
查看>>
Object Oriented Programming in JavaScript
查看>>
object references an unsaved transient instance - save the transient instance before flushing
查看>>
Object.keys()的详解和用法
查看>>
OBJECTIVE C (XCODE) 绘图功能简介(转载)
查看>>
Objective-C ---JSON 解析 和 KVC
查看>>
Objective-C 编码规范
查看>>
Objective-C——判断对象等同性
查看>>
Objective-C之成魔之路【7-类、对象和方法】
查看>>
Objective-C享元模式(Flyweight)
查看>>
Objective-C以递归的方式实现二叉搜索树算法(附完整源码)
查看>>
Objective-C内存管理教程和原理剖析(三)
查看>>
Objective-C实现 Greedy Best First Search最佳优先搜索算法(附完整源码)
查看>>
Objective-C实现 jugglerSequence杂耍者序列算法 (附完整源码)
查看>>
Objective-C实现1000 位斐波那契数算法(附完整源码)
查看>>
Objective-C实现2 个数字之间的算术几何平均值算法(附完整源码)
查看>>
Objective-C实现2d 表面渲染 3d 点算法(附完整源码)
查看>>
Objective-C实现2D变换算法(附完整源码)
查看>>
喝酒易醉,品茶养心,人生如梦,品茶悟道,何以解忧?唯有杜康!-- 愿君每日到此一游!
当前时间: 2026-01-17 17:56:50   当前IP: 10.8.50.4   联系邮箱:javaeecc@qq.com     Copyright © 2020 - 2025 baihongyu.com 京ICP备2021015314号-2