How Linux system masks the hacker's Nmap scan

Source: Internet
Author: User

Many network services use Linux systems and have Apache Server software installed. Vulnerable to hackers using Nmap to scan Web sites, now share a precautionary experience.

I can pass the setup, let Linux on Nmap scan ignore color. The iptables tool is used to filter the network information so that the system cannot respond to the scan request information. To improve the security of the server.

You need to run the following command:

#iptables-F

#iptables-A input-p tcp--tcp-flags all fin,urg,psh-j Drop

#iptables-A input-p tcp--tcp-flags syn,rst syn,rst-j Drop

#iptables-A input-p tcp--tcp-flags syn,fin syn,fin-j Drop

#iptables-A input-p tcp--tcp-flags Syn,syn--dport 80-j Drop

After running the above command, Linux will filter the scan information from Nmap, the hacker will not get the active TCP port and operating system version of information, the server is a bit more secure.

Ding Feng Xiao Hu
qq.2881064155
[Email protected]

How Linux system masks the hacker's Nmap scan

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.