Ungachinja sei SSH chiteshi muFedora 23 uye maitiro ekushandisa yako firewall

el_robertucho

2 maminitsi

MuFedora 23 zvinokwanisika kushandura default SSH chiteshi (22) kune imwe yesarudzo yako yakakura kupfuura 1024, uye kuti zvinopesana ipapo iwe unogona kunyange kuisa imwe chiteshi chekubatana kwekunze.

fedora-23

Paunenge uchachinja chiteshi cheSSH muFedora 23 isu tinofanirwa kufunga mumisimboti mitatu

  • Iyo sshd daemon kumisikidzwa iyo inozopihwa kuchiteshi.
  • Iyo firewall marongero kuitira kuti igogona kusunga kune iyo nyowani chiteshi.
  • Uye gadzira selinux (kana ichishanda) kumisikidza mutemo wekushandisa kweiyo chiteshi.

Zvakanaka ipapo, ngatione kuti tingachinja sei chiteshi mukugadziriswa kweSSH

Isu tinovhura iyo terminal uye mu / etc / ssh / sshd_config uye ita zvinotevera

Isu tinosunungura chiteshi uye tinopa imwe nhamba, tinogona zvakare kuisa Zviteshi zvakawanda

ye sshd yekuteerera kune akawanda madoko>

Chiteshi

Kugadzirwa kwemachiteshi akati wandei kunogona kubatsira pakuyedzwa, tinosiya chiteshi 22 uye iyo yatakasika, kuti tikwanise kuve nechokwadi chekuti chiteshi chitsva chinoshanda uye kana chiteshi chitsva chisingashande kana chisina kugadzirirwa zvachose, tinogona kubatanidzazve chiteshi 22.

Iye zvino kuwedzera shanduko kune selinux

Semanage chiteshi -a -t ssh_port_t -p tcp

Iye zvino tinoenda neye firewall

firewall1

MuFedora 23 iyo firewall inotarisirwa nayo firewall-cmd.

Kana isu tichida kuona nzvimbo dzakagadziriswa:

firewall-cmd -list-ese

Ipapo zvaizodzosera chimwe chinhu seichi:

FedoraServer (default, inoshanda) maficha: zvinyorwa: services: zviteshi: zvirevo: masquerade: kumberi-zviteshi: icmp-block: akapfuma mitemo:

Asi kana izvo zvatinoda ndezvekutitaurira inova iyo default zone, isu tinonyora izvi:

firewall-cmd -get-default-zone FedoraServer

Mushure meizvi tinogona kuwedzera chiteshi chitsva kune firewall

Kuti uwedzere chiteshi cherudzi tcp kunzvimbo yemoto tinonyora uyu mutsara wekuraira:

firewall-cmd -singaperi- nzvimbo = -Add-port = / tcp

Tinofanira kuziva kuti kana izvo zvatiri kuda kuita bvunzo dzechinguva, tichasiya iyo –Permanent, asi kana chiri chenguva diki, haufanire kuona shanduko kana uchinge wabvunza iyo firewall mitemo.

linux_network

Ngatitarisei kana chiteshi chakavhurwa nekukasira mu firewall nemurairo uyu:

firewall-cmd - kubvunza-chiteshi = / tcp

Kana isu takazviita nemazvo uye kana iri yakavhurika, inozviratidza na "hongu"

Iko kumisikidzwa kumwe chete kunogona kushandiswa mune mazhinji eAppache mhando http maseva.


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira iyo data: Miguel Ángel Gatón
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako

  1.   وبسرويس پيامک akadaro
    inoita 8 makore

    mukuru post thanks for share

    Pindura kuna وبسرويس پيامک
  2.   تور دبی akadaro
    inoita 8 makore

    Ndatenda nenyaya yako yakanaka

    Pindura kuna تور دبی
  3.   وقت سفارت akadaro
    inoita 7 makore

    tanx chaiyo

    Pindura kuna وقت سفارت
  4.   جرثقیل سقفی akadaro
    inoita 6 makore

    ndatenda nekugovana posvo…

    Pindura kuna جرثقیل سقفی