Operation and Maintenance
Linux Operation and Maintenance
Learn to defend: Use command line tools to protect your Linux server
Learn to defend: Use command line tools to protect your Linux server
Learn to defend: Use command line tools to protect your Linux server
In today's Internet era, with the continuous development of network technology, server security has become more and more is becoming more and more important. As a server administrator, we need to learn to use various tools and methods to protect our servers from attacks. In Linux systems, command line tools are one of our main weapons. This article will introduce some commonly used command line tools and how to use them to protect your Linux server.
- iptables
iptables is one of the most commonly used firewall tools in Linux systems. It can be used to manage and configure network packet filtering rules to protect servers from malicious attacks. Here are some examples using iptables:
# 清除所有已有规则 iptables -F # 允许本地回环接口 iptables -A INPUT -i lo -j ACCEPT # 允许已建立的、相关的会话流量 iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT # 允许SSH连接 iptables -A INPUT -p tcp --dport 22 -j ACCEPT # 阻止所有其他入站流量 iptables -A INPUT -j DROP
The above rules first clear all existing rules, then allow traffic on the local loopback interface, then allow established and related session traffic, then allow SSH connections, and finally block All other inbound traffic.
- fail2ban
fail2ban is a tool used to prevent malicious login attempts. It monitors the server's log files and when multiple failed login attempts are detected, it automatically adds a rule in iptables that blocks that IP address. Here are some configuration examples for fail2ban:
Install fail2ban:
sudo apt-get install fail2ban
Create a custom jail.local configuration file:
sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
Edit the jail.local file:
sudo nano /etc/fail2ban/jail.local
Add the following content to the file:
[sshd] enabled = true port = ssh logpath = /var/log/auth.log maxretry = 3 findtime = 3600 bantime = 86400
Save and exit the file. The above configuration will monitor SSH login attempts in the /var/log/auth.log file, and after three failed login attempts, the IP address will be added to the iptables block list for 24 hours.
Restart the fail2ban service for the configuration to take effect:
sudo service fail2ban restart
- rkhunter
rkhunter is a tool used to check the system for potential malware. It will scan system files and directories, and will give a warning if abnormal files or configurations are detected. Here is an example of using rkhunter:
Install rkhunter:
sudo apt-get install rkhunter
Run rkhunter for a system scan:
sudo rkhunter --check
Run rkhunter to update its database:
sudo rkhunter --update
- logwatch
logwatch is a log analysis tool that can help administrators quickly analyze server log files and discover potential security issues. The following is an example of using logwatch:
Install logwatch:
sudo apt-get install logwatch
Run logwatch for log analysis:
sudo logwatch
The above are some commonly used command line tools. By using them, you Can better protect your Linux server from malicious attacks. Of course, in addition to using tools, server security also requires regularly updating systems and applications, using strong passwords, restricting root logins, etc. Only through the comprehensive use of various methods and tools can the security of the server be improved. I wish your server is safe and worry-free!
The above is the detailed content of Learn to defend: Use command line tools to protect your Linux server. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
1386
52
How to use PHP scripts to implement cross-server file transfer on Linux servers
Oct 05, 2023 am 09:06 AM
Title: PHP script implementation of cross-server file transfer 1. Introduction In cross-server file transfer, we usually need to transfer files from one server to another. This article will introduce how to use PHP scripts to implement cross-server file transfer on Linux servers, and give specific code examples. 2. Preparation Before starting to write PHP scripts, we need to ensure that the following environment has been configured on the server: Install PHP: Install PHP on the Linux server and ensure that the PHP version meets the code requirements.
How to deploy a trustworthy web interface on a Linux server?
Sep 09, 2023 pm 03:27 PM
How to deploy a trustworthy web interface on a Linux server? Introduction: In today's era of information explosion, Web applications have become one of the main ways for people to obtain information and communicate. In order to ensure user privacy and information reliability, we need to deploy a trustworthy Web interface on the Linux server. This article will introduce how to deploy a web interface in a Linux environment and provide relevant code examples. 1. Install and configure the Linux server. First, we need to prepare a Li
Linux server failure and security: How to manage your system healthily
Sep 10, 2023 pm 04:02 PM
With the development of Internet technology, more and more enterprises and individuals choose to use Linux servers to host and manage their applications and websites. However, as the number of servers increases, server failures and security issues become an urgent task. This article will explore the causes of Linux server failures and how to manage and protect the system healthily. First, let's take a look at some common reasons that can cause Linux servers to malfunction. Firstly, hardware failure is one of the most common reasons. For example, the server is overheating,
How to optimize the performance and resource utilization of Linux servers
Nov 07, 2023 pm 02:27 PM
How to optimize the performance and resource utilization of Linux servers requires specific code examples. Summary: Optimizing Linux server performance and resource utilization is the key to ensuring stable and efficient server operation. This article will introduce some methods to optimize Linux server performance and resource utilization, and provide specific code examples. Introduction: With the rapid development of the Internet, a large number of applications and services are deployed on Linux servers. In order to ensure the efficient and stable operation of the server, we need to optimize the performance and resource utilization of the server to achieve
Linux Server Security: Use Commands to Check System Vulnerabilities
Sep 08, 2023 pm 03:39 PM
Linux Server Security: Using Commands to Check System Vulnerabilities Overview: In today’s digital environment, server security is crucial. Timely detection and repair of known vulnerabilities can effectively protect servers from potential attack threats. This article will introduce some commonly used commands that can be used to check system vulnerabilities on Linux servers and provide relevant code examples. By using these commands correctly, you will be able to enhance the security of your server. Check for system updates: Before you start checking for vulnerabilities, make sure your system has
Django project initialization: quickly create a new project using command line tools
Feb 22, 2024 pm 12:39 PM
Django project initialization: Use command line tools to quickly create a new project. Django is a powerful Python Web framework. It provides many convenient tools and functions to help developers quickly build Web applications. Before starting a new Django project, we need to go through some simple steps to initialize the project. This article will introduce how to use command line tools to quickly create a new Django project, including specific code examples. First, make sure you have DJ installed
PE installation CentOS real machine installation steps
Feb 12, 2024 pm 07:18 PM
PE (Preinstallation Environment) is a lightweight operating system that runs before the operating system is installed. It can be used for system deployment, hard disk partitioning, data recovery, etc. This article will introduce how to install PE on CentOS and provide detailed instructions. Steps and instructions. To download the PEISO file, we need to download the PE ISO image file from the official website. Open the CentOS official website in the browser, find the PE download page, select the version that matches your hardware architecture, and click the download button. After the download is complete, Save the ISO file to your local machine. Create a PE boot disk Next, we need to write the PE ISO file to a U disk or CD
Linux Server Defense: Protect web interfaces from malicious file upload attacks.
Sep 09, 2023 am 09:06 AM
Linux Server Defense: Protect Web Interfaces from Malicious File Upload Attacks In recent years, with the popularity and development of the Internet, the use of Web applications has become more and more widespread. However, along with it comes various security threats, one of which is malicious file upload attacks. Malicious file upload attacks refer to attackers uploading files containing malicious code to the server to gain server permissions or spread malicious content. In order to protect the web interface from malicious file upload attacks, we can take some effective defensive measures. will be introduced below
