In view of our VPS security, old left advises everyone in order to maintain the security of the VPS, it is also necessary to modify the root password for some time. VPS Management Platform User background If you do not modify the root password, it does not matter, we can use SSH direct modification, a word command can be completed. It takes only two steps to comp
Since the beginning of the use of VPS is particularly important to focus on data security, whether we use the Web panel, or the use of a key to install the package, or even directly compile the environment, we can choose to manually backup on a regular basis, you can also use the Web Panel with the Backup tool. Today, a user mentioned the backup of the LLSMP environment, so in this article, the old left to share the blog once had an automatic backup s
We need to do some basic security when we have a VPS or server that has a Linux system open.
There are probably several areas:1. Prohibit root account ssh, use custom account ssh;This way, the hacker must first guess the account number, then can guess the password;2. Prohibit account login, use PubKey login;3. For IP ACLs, allow only a few specific IP access;4. SSH port Migration, change the default 22 port to other ports;5. Start as little service a
Here's how to configure my configuration
First install LIUNX VPS Remote Management tool, here I use is: [SSH Secure Shell Client 3.2.9]After installation, open: SSH Secure Shell Client. Click Quick Connect. Enter information about your VPS in the dialog box that pops up.
(Click to view larger image)
When you are finished, click Connect. If you fill in the wrong words. A password entry box will pop up.
Small VPS is limited by the system resources, the traffic is too large, more than the system can withstand the limit, a part of the request will be 502. In the case of adequate system resources, optimizing NGINX,PHP-FPM, as well as the system itself, achieves 2 purposes:
1, reasonable allocation of system resources, the limited resources to maximize utilization. Good steel is used on the blade.
2, minimizing disk I/O
First, the system main resource
Description: We often have a lot of cheap hands VPS , sometimes use some software applications, there will be a CPU run full situation, and long time to run full will be VPS stopped by the merchant, so here we need to find ways to limit CPU The process usage, here is a tutorial.Brief introductioncpulimitThe command works by cpu setting a maximum occupancy limit for a process and monitoring the process to se
A vps host (or VPS) is a virtual server that uses virtual server software to create multiple isolated small servers on a physical server, each VPS has its own operating system, independent space, independent memory, and independent CPU resources. It can independently execute programs and system configurations, its operation and management, and its independent ser
IndoVirtue, an overseas VPS host provider established in 2013, provides two VPS host products: OpenVZ and KVM. Most of us will be attracted by the data centers in Singapore, but if we look at them officially, we will find that there are two prices and configurations in Singapore, one of them is the SL line (currently not directly connected to common lines), which is a total of directly connected optimizatio
This article describes some of my experiences and experiences in using virtual hosts and VPS, and provides a reference for your selection. Many webmasters are struggling with whether to choose virtual hosts or VPS. there is no standard answer to this question. The host configuration varies depending on different user requirements.
This article describes some of my experiences and experiences in using virtua
This article translates from Digitalocean's Introduction to securing your Linux VPS, which is recommended to read the original. Previously posted in the OSC translation area, has been audited, had to publish to the blog this
ObjectiveTaking advantage of the power and flexibility of this great platform to take control of your own Linux servers is a good opportunity to learn new things. However, the Linux server administrator must take the same pr
Zpanelx, is a foreign free VPS management panel, rare and support Windows and Linux systems. The current version has been to version 10.0.0, the author is familiar with the CentOS system environment to install ZPANELX panel, to see what the background is like. Before the author also introduced a lot of panels, including foreign kloxo, as well as many domestic panels, are good, there is a certain amount of user management panel. The old left is also no
1, check whether the System kernel support MPPE patch
The code is as follows
Copy Code
Modprobe ppp-compress-18 echo SuccessDisplay Success Description system support MPPE patch, if not supported, you need to install Kernel-devel firstYum Install Kernel-devel
2, check whether the system to open TUN/TAP supportCat/dev/net/tunIf the instruction shows the result to the following text, it means:Cat:/dev/net/tun:file Descriptor in #系统为英文版本Cat:/dev/net/tun: The f
512M VPS Optimized Apache memory
View current memory consumption
Ps Aux|grep httpd
Basic one occupies about 50M
PS Aux|grep httpd | Wc–l
A total of 13, minus the grep httpd line of 12, indicating a footprint of about 600MServer 512M memory exceeded,
(in contrast, nginx main process 50M, with PHP-FPM run, a fpm occupied 2M, open 10 fpm process, a total of 70M of memory is enough. )
Standard Linux Apache configuration in Apache configuration fi
The code is as follows
Copy Code
#!/bin/bashD= "/root/backup"t= ' Date +%y%m%d 'if [!-d ' ${d}/${t} ']; Then/bin/mkdir "${d}/${t}"Fi/usr/local/mysql/bin/mysqldump--host=localhost--user=root--password= database password to back up the database name > "${d}/${t}/${t}.sql"CD ${d}/bin/tar-czf "${d}/${t}.tar.gz" "${t}"/USR/BIN/SCP "${d}/${t}.tar.gz" kuco@x4100.unix-center.net:~/web_backup/studyday.net
2, set Crontab, more Crontab introduction here
The code is as
Xen architecture of the VPS typically not less than 10G (there are also special examples), generally based on the Xensystem panel VPS default Mount 10G hard disk (the first disk), the remaining capacity (the second disk) need to be mounted manually.1. View the hard drive conditionWe use
Fdisk-l
To view the current hard drive condition
"disk/dev/xvdb:32.2 GB" means that the second virtual hard disk has
VPS System CentOS5.2Add a common accountThe location of the VPS quantum data http://www.111cn.net
Useradd Lrenwangpasswd Lrenwang
--------------------------------------------------------------------------------
One installation PreparationShutdown Firewall
Service Iptables Stop
Close SELINUX, CP command overrides directly, no prompting required
Sed-i "S/selinux=enforcing/selinux=disabled/g"/etc/syscon
start automatically after each reboot, you need to do the following:# CD/ETC/INIT.D# ln-s/usr/share/denyhosts/daemon-control denyhosts# chkconfig--add denyhosts# chkconfig--level 2345 denyhosts onor execute the following command, the/etc/rc.local file will be modified:# echo "/usr/share/denyhosts/daemon-control start" >>/etc/rc.local
DenyHosts configuration file Denyhosts.cfg Description:
Secure_log =/var/log/secure
#sshd日志文件, it is based on this file to judge, different operating systems, t
Iptables is a packet filtering management tool based on the NetFilter architecture, the most important role is to do firewall or transparent proxy. Iptables from IPChains, its function is more powerful. Iptables offers the following three features: packet filtering, NAT (network address translation), and generic Pre-route packet mangling.
In the previous article I to iptables on the concept and principle of the introduction: iptables Introduction and command, but in practical applications, many
The company bought Hosting24 VPS used for XX, the kernel basically did not load what module, want to compile their own can not compile, control too dead. I would like to use squid to build a proxy server, not successful, Linode 30 minutes to finish. VPN is also the iptables NAT function, the kernel is loaded with wood, HOSTING24, I bought a watch last year. No way, we can through the putty to achieve XX
1, add logged-in user
# Useradd VPN//Add user#
and allocate 32m memory (32 for the use of memory, can be modified according to their own circumstances)
/usr/local/memcached/bin/memcached-d-M 32-l 127.0.0.1-p 11211-u Root
Add memcached to the startup item
# vi/etc/rc.d/rc.local
Press I on the keyboard to start editing
In the final join
/usr/local/memcached/bin/memcached-d-M 32-l 127.0.0.1-p 11211-u Root
Press the ESC key, and then enter
: Wq
Save exit
If you need, you can reboot, but do not reboot shou
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.