×ðÁú¿­Ê±¹ÙÍøµÇ¼

ÔõÑùʶ±ðºÍ´¦ÀíCentOSϵͳÖеÄÇå¾²Îó²î

ÔõÑùʶ±ðºÍ´¦ÀícentosϵͳÖеÄÇå¾²Îó²î

ÔÚ»¥ÁªÍøʱ´ú£¬Çå¾²Îó²î¹ØÓÚϵͳºÍÊý¾ÝµÄ±£»¤ÖÁ¹ØÖ÷Òª¡£CentOS×÷Ϊһ¿îÊ¢ÐеÄLinux¿¯Ðа棬Ҳ²î±ðÓÚÆäËû²Ù×÷ϵͳ£¬ÐèÒªÓû§ÊµÊ±Ê¶±ðºÍÐÞ¸´ÆäÖеÄÇå¾²Îó²î¡£±¾ÎĽ«Ïò¶ÁÕßÏÈÈÝÔõÑùʶ±ðºÍ´¦ÀícentosϵͳÖеÄÇå¾²Îó²î£¬²¢ÌṩһЩ´úÂëʾÀýÓÃÓÚÎó²îÐÞ¸´¡£

Ò»¡¢Îó²îʶ±ð

ʹÓÃÎó²îɨÃ蹤¾ß

Îó²îɨÃ蹤¾ßÊÇʶ±ðϵͳÖб£´æµÄÇå¾²Îó²îµÄ³£ÓÃÒªÁì¡£ÆäÖУ¬OpenVASÊÇÒ»¸ö¹¦Ð§Ç¿Ê¢µÄÎó²îɨÃèÆ÷£¬¿ÉÒÔ×ÊÖúÓû§·¢Ã÷ϵͳÖеÄÎó²î¡£ÒÔÏÂÊÇʹÓÃOpenVAS¾ÙÐÐÎó²îɨÃèµÄʾÀý´úÂ룺

# ×°ÖÃOpenVAS
sudo apt install openvas

# Æô¶¯OpenVASЧÀÍ
sudo systemctl start openvas

# ɨÃèÄ¿µÄÖ÷»ú£¨Àý£º192.168.1.100£©
sudo openvasmd --progress --get-tasks
sudo openvasmd --progress --get-task ʹÃüID
sudo openvasmd --progress --get-results ʹÃüID

µÇ¼ºó¸´ÖÆ

°´ÆÚ¼ì²éÇ徲ͨ¸æ

CentOS¹Ù·½ºÍÆäËûÇå¾²×éÖ¯¾­³£Ðû²¼Ç徲ͨ¸æ£¬ÌṩÓëCentOSÏà¹ØµÄÎó²îÐÅÏ¢¡£°´ÆÚÉó²éÕâЩͨ¸æÊÇʶ±ðÇå¾²Îó²îµÄÁíÒ»¸öÖ÷Ҫ;¾¶¡£ÒÔÏÂÊÇ»á¼ûCentOS¹Ù·½Ç徲ͨ¸æµÄʾÀý´úÂ룺

# ¼ì²éCentOS¹Ù·½Ç徲ͨ¸æ
sudo yum check-update --security

# Éó²éÇ徲ͨ¸æÏêÇ飨Àý£ºCVE-2021-1234£©
sudo yum security info CVE-2021-1234

µÇ¼ºó¸´ÖÆ

¶þ¡¢Îó²î´¦Àí

ʵʱ¸üÐÂϵͳ

¸üÐÂϵͳÊÇÐÞ¸´Îó²îµÄ×î»ù±¾ÒªÁì¡£CentOSÌṩÁËyumÏÂÁîÓÃÓÚ¸üÐÂÈí¼þ°ü¡£ÒÔÏÂÊǸüÐÂϵͳµÄʾÀý´úÂ룺

# ¸üÐÂϵͳ
sudo yum update

µÇ¼ºó¸´ÖÆ

ÉèÖ÷À»ðǽ¹æÔò

·À»ðǽ¿É×ÊÖú±£»¤ÏµÍ³ÃâÊÜÍøÂç¹¥»÷¡£CentOSÄÚÖÃÁËfirewalld·À»ðǽÖÎÀí¹¤¾ß£¬¿ÉÒÔͨ¹ýÉèÖ÷À»ðǽ¹æÔòÀ´ÏÞÖÆÍⲿ»á¼û¡£ÒÔÏÂÊÇÉèÖ÷À»ðǽ¹æÔòµÄʾÀý´úÂ룺

# ×°ÖÃfirewalld
sudo yum install firewalld

# ÆôÓÃfirewalldЧÀÍ
sudo systemctl start firewalld

# Ìí¼Ó·À»ðǽ¹æÔò£¨Àý£ºÔÊÐíSSH»á¼û£©
sudo firewall-cmd --add-service=ssh --permanent
sudo firewall-cmd --reload

# Éó²é·À»ðǽ״̬
sudo firewall-cmd --list-all

µÇ¼ºó¸´ÖÆ

ʹÓÃÇå¾²Èí¼þ

³ýÁ˲Ù×÷ϵͳ×Ô´øµÄ±£»¤²½·¥Í⣬»¹¿ÉÒÔ×°ÖõÚÈý·½Çå¾²Èí¼þÀ´ÔöǿϵͳµÄÇå¾²ÐÔ¡£ÀýÈ磬Fail2BanÊÇÒ»¸öÓÃÓÚ±ÜÃⱩÁ¦ÆƽâµÄÈí¼þ£¬¿ÉÒÔÏÞÖƹýʧµÇ¼ʵÑé¡£ÒÔÏÂÊÇ×°ÖúÍÉèÖÃFail2BanµÄʾÀý´úÂ룺

# ×°ÖÃFail2Ban
sudo yum install fail2ban

# Æô¶¯Fail2BanЧÀÍ
sudo systemctl start fail2ban

# ÉèÖüà¿ØSSHµÇ¼
sudo vi /etc/fail2ban/jail.local
[ssh]
enabled = true
port = ssh
filter = sshd
logpath = /var/log/secure
maxretry = 3

µÇ¼ºó¸´ÖÆ

×ܽá

ÒÔÉÏÊÇÔõÑùʶ±ðºÍ´¦ÀícentosϵͳÖеÄÇå¾²Îó²îµÄһЩ½¨æźʹúÂëʾÀý¡£Ê¶±ðÎó²îºÍʵʱÐÞ¸´ÊÇÈ·±£ÏµÍ³Çå¾²µÄÖ÷Òª°ì·¨£¬Ï£Íû±¾ÎĶԶÁÕßÓÐËù×ÊÖú¡£²»¹ýÇë×¢ÖØ£¬ÏµÍ³Çå¾²ÊÂÇéÉæ¼°µ½¸ü¶àµÄÑо¿ºÍʵ¼ù£¬½¨Òé¶ÁÕßÔÚÏÖʵ²Ù×÷ʱ²Î¿¼ÆäËûÏà¹Ø×ÊÁϺÍÎĵµ¡£¼á³Ö¸üкÍѧϰ£¬´Ó¶ø±£»¤ÏµÍ³ºÍÊý¾ÝµÄÇå¾²¡£

ÒÔÉϾÍÊÇÔõÑùʶ±ðºÍ´¦ÀíCentOSϵͳÖеÄÇå¾²Îó²îµÄÏêϸÄÚÈÝ£¬¸ü¶àÇë¹Ø×¢±¾ÍøÄÚÆäËüÏà¹ØÎÄÕ£¡

ÃâÔð˵Ã÷£ºÒÔÉÏչʾÄÚÈÝȪԴÓÚÏàÖúýÌå¡¢ÆóÒµ»ú¹¹¡¢ÍøÓÑÌṩ»òÍøÂçÍøÂçÕûÀí£¬°æȨÕùÒéÓë±¾Õ¾Î޹أ¬ÎÄÕÂÉæ¼°¿´·¨Óë¿´·¨²»´ú±í×ðÁú¿­Ê±¹ÙÍøµÇ¼ÂËÓÍ»úÍø¹Ù·½Ì¬¶È£¬Çë¶ÁÕß½ö×ö²Î¿¼¡£±¾ÎĽӴýתÔØ£¬×ªÔØÇë˵Ã÷À´ÓÉ¡£ÈôÄúÒÔΪ±¾ÎÄÇÖÕ¼ÁËÄúµÄ°æȨÐÅÏ¢£¬»òÄú·¢Ã÷¸ÃÄÚÈÝÓÐÈκÎÉæ¼°ÓÐÎ¥¹«µÂ¡¢Ã°·¸Ö´·¨µÈÎ¥·¨ÐÅÏ¢£¬ÇëÄúÁ¬Ã¦ÁªÏµ×ðÁú¿­Ê±¹ÙÍøµÇ¼ʵʱÐÞÕý»òɾ³ý¡£

Ïà¹ØÐÂÎÅ

ÁªÏµ×ðÁú¿­Ê±¹ÙÍøµÇ¼

18523999891

¿É΢ÐÅÔÚÏß×Éѯ

ÊÂÇéʱ¼ä£ºÖÜÒ»ÖÁÖÜÎ壬9:30-18:30£¬½ÚãåÈÕÐÝÏ¢

QR code
ÍøÕ¾µØͼ