Detailed explanation of the basic environment configuration of Centos7 operating system

The tutorial column of centos below will introduce you to the basic environment configuration method of Centos7 operating system. I hope it will be helpful to friends in need!

1. System firewall settings

Description: For the Linux firewall of the Red Hat kernel series, iptables is the system default and only firewall. However, on the Centos system, it is based on the original iptables. You only need to manage firewalld and install the iptables components to perform relevant configurations.

(1) Use service firewalld status to check the current status of the firewall. Generally speaking, the firewall is in the automatic startup state after the system is installed;

(2 ) Close the firewall command (systemctl stop firewalld.service)

After closing the firewall, enter service firewalld status again to view the current firewall status, as shown in the figure below;

(3) The above management method is only effective for the current method. If the server is restarted, it will not take effect. If you want the configuration to take effect all the time, you need to use the following command; systemctl disable firewalld.service, as shown in the figure below

Summary: Through the above three steps, you can configure the Contos operating system Manage the firewall under. If you need to turn on the firewall, you need to change the original stop to start and disable to enable;

2.SELinux is turned off

(1) SELinux is in Linux A flexible mandatory access control system (MAC) is provided at the kernel level. This mandatory access control system is built on top of the discretionary access control system (DAC). DAC means that the security access control of the system is freely managed by the system administrator root. SELinux defines access and transmission permissions for each user, process and file in the system, and sets strict permissions on the interaction between these objects, or completely disables them. However, SELinux is completely transparent to users, and ordinary users are completely unaware of its existence. Only system administrators need to consider these strategies.

(2) SELinux provides very specific strategies, and the reset covers the entire Linux system.

(3) Use sestatus to check the current SELinux service status, as shown in the following figure:

The current SELinux is closed;

(4) If you want to turn off SELinux, you need to modify the configuration file /etc/selinux/config and modify the value of SELINUX to disable, as shown in the figure below;

Enter source /etc/selinux/config, the modified configuration file will take effect, check again;

Summary: After turning off the firewall and managing SELinux, such related security issues can generally be resolved fixed;

The above is the detailed content of Detailed explanation of the basic environment configuration of Centos7 operating system. For more information, please follow other related articles on the PHP Chinese website!