Shulou(Shulou.com)05/31 Report--

Today, I will talk to you about the attacks on the Linux server, which may not be well understood by many people. in order to make you understand better, the editor has summarized the following for you. I hope you can get something according to this article.

What are the attacks on the Linux server? With the rapid development of Internet information, the demand of enterprises for building stations has changed, from a small number of market demand to now need a lot of web space hosts, now most of the web space hosts in the market are using the Linux operating system, here to introduce what are the attacks on Linux servers.

Attack level: local users gain read and write access to their unauthorized files

A local user is a user who has a password on any machine on the local network and therefore a directory on a drive. The problem that local users get read and write access to their unauthorized files depends largely on the criticality of the files being accessed. Arbitrary access by any local user to the temporary file directory (/ tmp) is dangerous and can potentially pave a path to the next level of attack.

The main method of level 2 attack is that hackers trick legitimate users into telling them confidential information or performing tasks, sometimes pretending that a network manager sends an email to the user, asking the user to give him a password to upgrade the system.

Almost all attacks initiated by local users begin with remote login. For Linux servers, the best approach is to place all shell accounts on a single machine, that is, to accept registration only on one or more servers assigned shell access. This makes log management, access control management, release protocols, and other potential security issues easier to manage. The systems that store the user's CGI should also be distinguished. These machines should be isolated in specific network segments, that is, depending on the configuration of the network, they should be surrounded by routers or network switches. The topology should ensure that hardware address spoofing does not go beyond this section.

After reading the above, do you have any further understanding of the attack on the Linux server? If you want to know more knowledge or related content, please follow the industry information channel, thank you for your support.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.