2009年10月 的存档
配置如下:
1234567891011121314151617anonymous_enable=NO
local_enable=YES
write_enable=YES
anon_upload_enable=YES
anon_mkdir_write_enable=YES
anon_other_write_enable=YES
chroot_local_user=YES
guest_enable=YES
guest_username=virtual
listen=YES
listen_port=21
pasv_min_port=30000
pasv_max_port=30999
xferlog_enable=YES
xferlog_file=/var/log/vsftpd.log
anon_world_readable_only=NO
[root@test etc]# cat /etc/pam.d/ftp
auth required /lib64/security/pam_userdb.so db=/etc/vsftpd_login
account required /lib64/security/pam_userdb.so db=/etc/vsftpd_login
分享收藏
修改配置文件
vi php.ini
register_globals 关闭
open_basedir 该设置会限制对指定目录下所有文件的访问,一般为WEB根目录,这样可以避免攻击
disable_functions 禁用PHP不需要的函数,如eval(),passthru(),system()等带有安全风险的函数
phpinfo,passthru,exec,system,popen,chroot,escapeshellcmd,escapeshellarg,shell_exec,proc_open,proc_get_status,ini_restore,eval
expose_php 设置为关闭,会删除HTTP响应服务头里显示的PHP头标
display_errors 设置为关闭
safe_mode 打开,会执行非常严格的文件访问权限
allow_url_fopen 禁止在远程文件上执行文件操作
完成!
分享收藏
APACHE启动成功,但无法接受任何请求,查看ERROR.LOG文件
[warn] pid file /opt/apache/logs/httpd.pid overwritten — Unclean shutdown of previous Apache run?
大概意思是说PID文件一直被一个程序改写,我测试系统上还运行了RESIN,只要停止了就可以了
1resin/bin/httpd.sh stop
再启动APACHE
1apache/bin/apachectl start
启动APACHE完成之后再启动RESIN
1resin/bin/httpd.sh start
分享收藏
我的系统是CENTOS 5.3 ,SSH连接起来很慢,本身是内网,很慢让人受不了,基本上要近一分钟才出现提示输入密码。
基本上解决办法就:
1,禁用DNS反向解析
1UseDNS no
2,还有系统默认有个忽略以前登录过主机的记录,将这个打开基本上就会解析登录慢的问题
1IgnoreRhosts yes
重启SSH服务
1service sshd reload
分享收藏
A SYN flood is a form of denial-of-service attack in which an attacker sends a succession of SYN requests to a target’s system. This is a well known type of attack and is generally not effective against modern networks. It works if a server allocates resources after receiving a SYN, but before it has received [...]