linux免秘
Linux servers used around the world dominantly on the internet. They are used as a web server, file server, application server, etc. Being on the internet creates som risk for these systems. There are different risks on the internet. One of them is automated attackers who use scripts and tool in an automated fashion. Linux systems should be protected this type of attackers too. Here I will provide some tips about protecting our system from these attacks.
在全世界范围内广泛使用Linux服务器。 它们被用作Web服务器,文件服务器,应用程序服务器等。在Internet上会对这些系统造成严重的风险。 互联网上存在不同的风险。 其中之一是自动攻击者,他们以自动化方式使用脚本和工具。 Linux系统也应受到此类攻击者的保护。 在这里,我将提供一些有关保护我们的系统不受这些攻击的提示。
选择并使用强密码 (Chose and Use Strong Passwords)
Passwords are main method to authenticate into a Linux system. We should chose passwords that are unique like q34w3+Tsef34 which is not used before anywhere in the world. Do not use passwords like 123456 which is known already by an attacker.
密码是向Linux系统进行身份验证的主要方法。 我们应该选择独特的密码,例如q34w3 + Tsef34 ,该密码在世界任何地方都没有使用过。 请勿使用攻击者已知道的123456之类的密码。
禁用未使用的服务和端口 (Disable Unused Services and Ports)
Unused ports provide extra risk to us. If a vulnerability is disclosed about the telnet service we do not use it will be very frustrating for us.
未使用的端口给我们带来了额外的风险。 如果泄露了有关telnet服务的漏洞,那么我们不使用它会令我们非常沮丧。
禁用根登录 (Disable Root Logins)
Using normal user with unique name login to the Linux system and then get root privilege is safer.
使用具有唯一名称的普通用户登录Linux系统然后获得root特权更为安全。
自动系统更新 (Automatic System Update)
Vulnerabilities disclosed every second. How can we track if our system has a vulnerable package? It is hard to track in real-time. But attacks occur in real-time. So setup system update automatic.
漏洞每秒都在披露。 我们如何跟踪我们的系统是否有易受攻击的软件包? 很难实时跟踪。 但是攻击是实时发生的。 因此设置系统会自动更新。
更改默认端口号 (Change Default Port Numbers)
Change default port numbers used by only you for management. For example, we can change the ssh port from 22 to 65534 to hide it some of the attackers.
更改仅用于管理的默认端口号。 例如,我们可以将ssh端口从22更改为65534,以使其对某些攻击者隐藏。
更改默认密码 (Change Default Passwords)
After setup and installation, there will be some default passwords and users. Change them right now ????
设置和安装后,将有一些默认密码和用户。 立即更改它们????
linux免秘