Cloud Security

As the new colleagues are not very familiar with the script, to facilitate the management of iptables on the server, they decided to write a simple script, so that colleagues who are not very familiar with the script can easily manage the script.

Practical features of awk:Like sed, awk also scans files row by row. From the first row to the last row, it searches for the rows matching the specific template and runs the "select" action on these rows. If no action is specified for a template,

The question is as follows :#! /Bin/bash# Thescript 'snameis: ********** usetotestthehost *********# Theauthoris: Ro# Theversionis: Ro-4-10LetPIP = $1NetIP = '2017. 192. 1 .'If [$1-gt254]; thenEcho "thefistnumbershocould Elif [$2-gt254]; thenEcho

#! /Bin/sh While sleep 30 Do SquidNum = 'ps-ef | grep squid | grep-v grep | wc-l' # HttpNum = 'netstat-an | grep 0.0.0.0: 80 | grep-v grep | wc-l' #80 Status If [$ SquidNum! = 3]; then /Etc/rc3.duid start Adddate = 'date + % Y-% m-% d' ""

Nux redirection refers to modifying some of the original default items and changing the default Execution Mode of the original system commands, for example, I don't want to see the output on the monitor. Instead, I want to output the output to a

In Linux, there are many methods to read a file row by row. The most common method is the method in the script below, which is the most efficient and the most commonly used method. To give you an intuitive feeling, We will test the execution

As system O & M personnel, it is necessary to monitor important system parameters in real time, such as zombie processes, CPU utilization, memory usage, disk space usage, and system load balancing, based on the latest information, we can determine

Task Find the file names of all png files in the folder, and copy xxx.html as the file name. html Replace xxx in xxx.html with the file name. Ls | grep. png | sed's/\. png \ * // '|./cp. sh Cp. sh While read ip Do Sed's/xxx/'"$ ip"'/G'

VPS was used a few months ago, with a traffic limit of GB per month, which is enough for convenient traffic. However, due to some malicious access, resources such as CPU and Memory consume a lot, as a result, the response time of a blog website on

Recently, php-ddos flood, many web hosting service providers worry that their websites are implanted with php-ddos due to website permissions or vulnerabilities, and a large number of data packets are sent externally, this will cause unnecessary

The group hired top security vendors in China to scan the security of enterprise information systems and found that the author's O & M system has the SQL injection vulnerability, database Elevation of Privilege Security Vulnerability, password

There are always a lot of boring people scanning the server password on the Internet. I have encountered this problem on one of my previous servers. Of course, the severity of this problem is still very high. If it is infiltrated, the harm is not

Users who work in O & M for large enterprises or IDCs often have such requirements. Some people may not be very familiar with the advantages of Linux's secondary encapsulation, that is, when you need to perform one operation repeatedly, for example,

Check whether the remote port is open to bash: echo >/dev/tcp/8.8.8.8/53 && echo "open" Transfer the process to the background: Ctrl + z Switch the process to the foreground: fg Generate a random hexadecimal number, where n is the number of

CentOS Security Configuration 1. system security record files Recording files in the operating system are important clues for detecting network intrusion. If your system is directly connected to the Internet, you find that many people The system

Centos system password cracking GRUB: On the boot loader menu, type [e] to enter the editing mode. You will face a list of pilot projects. Find the line with the output similar to the following: kernel/vmlinuz-2.4.18-0.4 ro root =/dev/hda2 press the

In the process of building vsftp, service security is critical. check whether there is hacker intrusion in the log and whether to avoid the next hacker attack. Now I write the ftp security management, hope you can help. 1. Enable the log function of

Generally, websites can be accessed by domain names and IP addresses. Your website can be accessed directly through an IP address. This is no problem, but it may cause some risks: Because the search engine will also include the pages of your IP

We often need to impose some security restrictions when configuring the linux server, such as only allowing specific IP address segments to access the specified port. For example, I have a server with dual-IP addresses that can be accessed from both

Squid mainly uses its port ing function to convert port 80, in fact, for general DDOS attacks, you can modify the parameters in/proc/sys/net/ipv4/tcp_max_syn_backlog. The default parameters are generally small and set to more than 8000, general DDOS