Shulou(Shulou.com)06/01 Report--

This article is about how to protect the security of Linux system. The editor thinks it is very practical, so share it with you as a reference and follow the editor to have a look.

1. Use SELinux

SELinux is used to secure Linux, with which users and administrators can have more control over access control. SELinux adds finer granularity control to access control. Unlike the permission to specify only who can read, write, or execute a file, SELinux gives you more control over who can delete links, append, move a file, and so on. (LCTT translation note: although NSA has contributed a lot of code to SELinux, there is no evidence that SELinux has a potential back door.)

2 disable unused services and applications

Generally speaking, users use less than half of the services and applications on their systems most of the time. However, these services and applications will still run, which can attract attackers. Therefore, it is best to stop these unused services. (LCTT note: or simply don't install services that you don't need, so you don't have to worry about whether they have security vulnerabilities and need to upgrade.)

3 subscribe to vulnerability alert service

The security flaw is not necessarily on your operating system. In fact, vulnerabilities are most common in installed applications. To avoid this problem, you must keep your application up to date. In addition, subscribe to vulnerability alert services such as SecurityFocus.

4 using Iptables

What is Iptables? This is an application framework that allows users to build a powerful firewall for the system. Therefore, in order to improve the ability of security, it is necessary to learn how to make a good firewall and how to use the Iptables framework.

5 check the system log

Your system log tells you what activities are taking place on the system, including whether the attacker successfully entered or tried to access the system. Always be vigilant, this is your first line of defense, and regular monitoring of system logs is to maintain this line of defense.

6 consider using ports to explore

Setting up port probing (Port knocking) is a good way to establish a secure connection to the server. The general practice is to generate a specific packet to the server to trigger the server's response / connection (turn on the firewall). Port knocking is a good protective measure for systems with open ports.

7. Reject all by default

Firewalls have two ideas: one is to allow every point of communication, and the other is to deny all access, prompting you whether or not to grant permission. The second is better. You should only allow those important communications to enter. (LCTT translation note: the default licensing policy and the default prohibition policy, the former you need to specify which should be prohibited, except for all other release; the latter you need to specify which can be released, otherwise all prohibited.)

8. Use full encryption

Encrypted data is harder to steal and sometimes impossible to steal, which is why you should encrypt the entire drive. In this way, if someone gets into your system, he will have a headache when he sees the encrypted data. According to some reports, most of the data loss is due to machine theft.

9. Use intrusion detection system

Intrusion detection systems, or IDS, allow you to better manage communications and attacks on your system. Snort is currently recognized as the best IDS on Linux.

Thank you for reading! This is the end of the article on "how to protect the security of the Linux system". I hope the above content can be of some help to you, so that you can learn more knowledge. if you think the article is good, you can share it for more people to see!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.