ºìÁªLinuxÃÅ»§
Linux°ïÖú

ºöÂÔµÄLinux°²È«ÅäÖÃ

·¢²¼Ê±¼ä:2008-09-17 11:34:25À´Ô´:ºìÁª×÷Õß:jerry520
ÖÚËùÖÜÖª£¬ÍøÂ簲ȫÊÇÒ»¸ö·Ç³£ÖØÒªµÄ¿ÎÌ⣬¶ø·þÎñÆ÷ÊÇÍøÂ簲ȫÖÐ×î¹Ø¼üµÄ»·½Ú¡£Linux±»ÈÏΪÊÇÒ»¸ö±È½Ï°²È«µÄInternet·þÎñÆ÷£¬×÷ΪһÖÖ¿ª·ÅÔ´´úÂë²Ù×÷ϵͳ£¬Ò»µ©LinuxϵͳÖз¢ÏÖÓа²È«Â©¶´£¬InternetÉÏÀ´×ÔÊÀ½ç¸÷µØµÄÖ¾Ô¸Õß»áÓ»Ô¾ÐÞ²¹Ëü¡£

È»¶ø£¬ÏµÍ³¹ÜÀíÔ±ÍùÍù²»Äܼ°Ê±µØµÃµ½ÐÅÏ¢²¢½øÐиüÕý£¬Õâ¾Í¸øºÚ¿ÍÒԿɳËÖ®»ú¡£Ïà¶ÔÓÚÕâЩϵͳ±¾ÉíµÄ°²È«Â©¶´£¬¸ü¶àµÄ°²È«ÎÊÌâÊÇÓɲ»µ±µÄÅäÖÃÔì³ÉµÄ£¬¿ÉÒÔͨ¹ýÊʵ±µÄÅäÖÃÀ´·ÀÖ¹¡£ÏÂÃæ¾Í¼òµ¥ÁгöÒÔϼ¸µã£¬ÒÔ¹©´ó¼Ò²Î¿¼£º

1¡¢Ó÷À»ðǽ¹Ø±Õ²»ÐëÒªµÄÈκζ˿ڣ¬±ðÈËPING²»µ½·þÎñÆ÷£¬Íþв×ÔÈ»¼õÉÙÁËÒ»´ó°ë

·ÀÖ¹±ðÈËpingµÄ·½·¨£º

1£©ÃüÁîÌáʾ·ûÏ´ò

echo 1¡¡> /proc/sys/net/ipv4/icmp_ignore_all

2£©Ó÷À»ðǽ½ûÖ¹£¨»ò¶ªÆú£©icmp °ü

iptables -A INPUT -p icmp -j DROP

3£©¶ÔËùÓÐÓÃICMPͨѶµÄ°ü²»ÓèÏìÓ¦

±ÈÈçPING TRACERT

2¡¢¸ü¸ÄSSH¶Ë¿Ú£¬×îºÃ¸ÄΪ10000ÒÔÉÏ£¬±ðÈËɨÃèµ½¶Ë¿ÚµÄ»úÂÊÒ²»áϽµ

vi /etc/ssh/sshd_config

½«PORT¸ÄΪ1000ÒÔÉ϶˿Ú

ͬʱ£¬´´½¨Ò»¸öÆÕͨµÇ¼Óû§£¬²¢È¡ÏûÖ±½ÓrootµÇ¼

useradd 'username'

passwd 'username'

vi /etc/ssh/sshd_config

ÔÚ×îºóÌí¼ÓÈçÏÂÒ»¾ä£º

PermitRootLogin no ££È¡ÏûrootÖ±½ÓÔ¶³ÌµÇ¼

3¡¢É¾³ýϵͳӷÖ׶àÓàµÄÕ˺ţº

userdel adm userdel lp userdel sync userdel shutdown userdel halt userdel news userdel uucp userdel operator userdel games userdel gopher userdel ftp Èç¹ûÄã²»ÔÊÐíÄäÃûFTP£¬¾ÍɾµôÕâ¸öÓû§ÕʺŠgroupdel adm groupdel lp groupdel news groupdel uucp groupdel games groupdel dip groupdel pppusers

4¡¢¸ü¸ÄÏÂÁÐÎļþȨÏÞ£¬Ê¹ÈκÎÈËûÓиü¸ÄÕË»§È¨ÏÞ£º

chattr +i /etc/passwd chattr +i /etc/shadow chattr +i /etc/group chattr +i /etc/gshadow

5¡¢chmod 600 /etc/xinetd.conf

6¡¢¹Ø±ÕFTPÄäÃûÓû§µÇ½
ÎÄÕÂÆÀÂÛ

¹²ÓÐ 7 ÌõÆÀÂÛ

  1. kdhmstd ÓÚ 2008-12-03 19:33:51·¢±í:

    лл£¡ÂýÂý¿´£¯£¯£¯:0w5ty(1

  2. py_lei ÓÚ 2008-12-03 19:30:44·¢±í:

    .

  3. py_lei ÓÚ 2008-12-02 15:17:57·¢±í:

    ÒªÊÕµÄ

  4. kimisenna ÓÚ 2008-11-23 14:59:38·¢±í:

    лл

  5. hackin ÓÚ 2008-11-08 20:01:12·¢±í:

    ²»´í²»´íѧϰÁË

  6. ÍøÎÞÔµ ÓÚ 2008-10-29 16:43:43·¢±í:

    ÊÕÏÂÂýÂý¿´

  7. xziw ÓÚ 2008-10-27 12:51:26·¢±í:

    o(¡É_¡É)o...¹þ¹þ
    ºÜ²»´í£¬ÊÜÒæ·Ëdz£¬Ð»Ð»Â¥Ö÷µÄ¾­Ñé̸֮£¡£¡£¡