I. Installing lamp service Linux Apache Mysql Phprequires operating system support PHP parsing Apache call PHP plugin parsing phpmyadminYum Install Php-commonRPM-IVH php-mbstringxxxxxYum install php php-mysql mysql-server http-yVim/etc/php.ini229 Row Short_open_tag = on/etc/init.d/httpd Restartvim/var/www/html/indexx.php-----<?phpinfo ();?>
two. Linux system protection mechanism xinetd Tcpwapper iptables
XINETD is a new generation of network process services programs that manage a variety of lightweight Internet services such as Telnet, rsync, TFTP, and more.
provides access control, logging, and resource management capabilities. Yum Install Telnet-servertelnet transfer rate low-end port: 23 Transmission Process plaintext
Telnet is installed by default installed xinetd to manage, Telnet is not a startup item, only relies on xinetd to control
xinetd The Telnet service is not turned on by default, we open the service by modifying the xinetd configuration file. Enter the cd/etc/etc/xinetd.d/directory and the configuration file is Telnet disable=no telnet rule, remote does not accept root loginRemote login: Telnet xxx.xxx.xxx.xxx (server IP)
Installing Wireshark
Yum install wireshark-gnome
three. TCP wappers Firewall management rules
TCP Wappers is to wrap the TCP service program, add an additional security detection simply bought link request first through this layer of security detection, get confirmation before being accepted by the service program. It also records all attempts to access the included services and provides administrators with extensive security analysis data. The TCP wappers control policy file is/etc/hosts.allow and/etc/hosts.deny in two filesFile Writing format < service Program list >:< client address list > Format Service Name: Address rangein.telnet:xxx.xxx.xxx.xxx (restricted IP address) 1.hosts.allow matches first if there is a matching rule to execute immediately2.hosts.deny after matching, if no rule is passed by default TCP wappers manages TCP service programs that call libwrap.so modules in the system, such as xinetd sshd. See if the libwrap.so module is included: Ldd/usr/sbin/xinetd|grep libwrap.so
Job:
1. Fetching plaintext data via Wireshark
2. Complete TCP wappers packet filtering
Four. Client Link Server SSH protocolssh local File user name @ip: pathsend the public Key's fingerprint ID (yes/no)1. SCP Local File User name @ip: path2. SCP user @ip:/Path/file name/local path
3. SFTP User @ip:/Path Help commandget download CommandXshell solve the win host to link Linux Help View Internal commandsssh [email protected]-----------------------------------------------------------------------------------------The Windows system uploads the download service to the Linux system via SSH and needs to install Lrzsz on Linux
Yum install lrzsz remote transferRZ uploadsz file Download fileYum install Unix2dos convert line breakUnix2dos File-----------------------------------------------------------------------------------------
server-side configuration sshvim/etc/ssh/sshd_config Server-side configuration file delivery: How to modify port number port 2200How to limit the root user login Premitrootlogin nofind out where and what the wireless login public key is stored inNo password login:Client: Ssh-keygen generate Public Private key ~/.ssh/id_rsa Id_rsa.pub + 3 carriage return ssh-copy-id-i ~/.ssh/id_rsa.pub [email protected]
14.LAMP service Linux Apache Mysql PHP and protection mechanism xinetd, TCP Wapper