servicenow security operations

I am very happy to share some things with my colleagues here. today I will share with you how to ensure host security and provide basic protection for website security operations. the hosts here include vps, VM instances, as long as they are for daily access I am very happy to share some things with my colleagues here. today I will share with you how to ensure h

Monitoring IntroductionMonitor cacti (RRDtool) drawing monitors network device traffic to show historical data functionsNagios Monitoring Service Status disk memory does not record data at a glance you can write your own scriptZabbixCacti installationRPM-IVH http://www.lishiming.net/data/attachment/forum/epel-release-6-8_32.noarch.rpmYum Install Epel-releaseYum install-y httpd php php-mysql mysql mysql-server mysql-devel php-gd libjpeg libjpeg-devel libpng Libpng-develThis article is from the "s

monitor battery performanceKudzu: A service that detects changes in hardware, it is recommended to turn onCrond: Provides running services for automatically scheduled processes under Linux, it is recommended to turn onATD: Similar to Crond, provides the same things that are specified at the specified time, with the same functionality as the Scheduled tasks under WindowsIptables: Firewalls, very, very important.XINETD: Core waiting process to support multiple network servicesXFS: Services necess

:# mkdir/usr/shareing/.mingling//mingling Front there is a dot, is the hidden directory, do not let hackers find# cp ' which--skip-alias awk cut echo find egrep ID head ls netstat ps ssh strings sed uname '/usr/shareing/.mingling Make a backup of the command that the agent (Chkrootkit) may use in advance.#/usr/local/chkrootkit/chkrootkit-p/usr/shareing/.mingling//-p is the directory where system commands are used for detection# TAR-ZCVF mingling.tar.gz/usr/shareing/.mingling//You can pack this h

it on the last line#historyuser_ip= ' who-u am I 2>/dev/null |awk ' {print $NF} ' |sed-e ' s/[()]//g 'Histdir=/usr/share/.history//Under/usr/share/.history, use the hidden directory to be more secureIf [-Z $USER _ip]ThenUser_ip= ' hostname 'Fiif [!-D $HISTDIR]ThenMkdir-p $HISTDIRchmod 777 $HISTDIRFiif [!-D $HISTDIR/${logname}]ThenMkdir-p $HISTDIR/${logname}chmod $HISTDIR/${logname}FiExport Histsize = 4000dt= ' Date +%y+%m%d_%h%m%s 'Export histfile= "$HISTDIR/${logname}/${user_ip}.history. $DT"E

.　　　　　　Find all files with Sudi and Sgid: Find/-user root-perm-2000-print-exec md5sum {} \; Find/-user root-perm-4000-print-exec md5sum {} \;　　　　　　　　　　#可把该结果保存在一个文件里面, can be used later to compare permissions to see if server files have been tampered withFind/-nouser-o-nogroup #找出可以属主的文件 to avoid hacker exploits.Permissions control for the TMP temp directory: Create a new directory to give permission control after the mount to TMP. 1 dd-f=/dev/zero of =/dev/tmpfs bs=1m Count=10002 mke2fs-j/dev/t

1. Send mail to start postfix/etc/init.d/postfix start" Test " 836503270@qq. com MAILQ View Send Results2. Configure Outgoing mail filesMkdir-p/home/zabbix/binvim/home/zabbix/bin/baojing.sh#! /bin/ "$" "$1 "chmod +x/home/zabbix/bin/baojing.shModify the Zabbix server configuration fileVim/etc/zabbix/zabbix_server.confalertscriptspath=/var/lib/zabbixsrv/alertscripts changed to Alertscriptspath=/home/zabbix/ Binexternalscripts=/var/lib/zabbixsrv/externalscripts change to externalscripts=/home/ Z

1. Delete special users and user groups:Linux provides a variety of different roles of the system account, after the installation of the system, the default installs a lot of unnecessary users and user groups, if you do not need some users or groups, should delete them immediately, because the more accounts, the system is more insecure, it is likely to be used by XXX, threatening the server security.The default users and groups of users that can be deleted from the Linux system are roughly the f

are fulfilled, it can take the risk of having a positive impact. The goal of this strategy is to eliminate certainty related to specific positive risks by ensuring that opportunities are realized.Sharing, sharing positive risk is the allocation of responsibility for risk to third parties that are best able to gain access to the benefits of the project.increase, by promoting or enhancing the cause of opportunity, actively strengthen its trigger conditions, increase the probability of opportunity

November 12, 2015 China IT Operations conference held in Beijing, An Huaqin and technical experts invited to participate in this conference, for the audience, highlighting in the cloud era, operation and maintenance personnel will really face the new challenges, operation and maintenance focus will be shifted to where. 650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M01/76/C3/wKioL1ZcA1mz0UepAAHtuqDoPW4280.jpg "title=" It-yunwei-1.jpg "

This problem occurs when running a website today. Note:ApplicationProgramAttempts to perform operations not permitted by the security policy. To grant the required permissions to the application, contact the system administrator or change the trust level of the application in the configuration file. Exception details:System. Security. securityexception: the r

Mac OS X: single user mode operations and Security Vulnerabilities Update: : After "1: Check and repair the disk", the following judgment is added: Check whether the disk is normal and wrong, and how to deal with errors. Introduction:This document describes the entry and use of the single-user mode, basic operation commands and usage, and common application tools. It also briefly describes the multi-user m

// Ps: this is also a common problem. We all know why some people make this mistake. (Not every Internet company has SDL. Currently, the company has a large business, the architecture is not necessarily complete, and the security architecture is even more important )? The author is also here (check that a simple application implemented by the simple MVC framework has encountered similar problems. Although there is no harm, I feel that the habits durin

Recently, the program changed a space, and the service provider used the 08 system. They may have implemented ASP. NET security restrictions for security concerns, which then caused exceptions in my ASP. NET program. The application attempts to perform operations not permitted by the security policy. To grant the requ

I have seen many good articles on linux optimization on the Internet, and I will not repeat these articles here. I just want to talk about these issues from my own experiences. The systems mentioned in this article, if not specifically stated, all adopt redhat's redhatlinux system. First, we will I have seen many good articles on linux optimization on the Internet, and I will not repeat these articles here. I just want to talk about these issues from my own experiences. The systems mentioned in

I have seen many good articles on linux Optimization on the internet, and I will not repeat these articles here. I just want to talk about these issues from my own experiences. The systems mentioned in this Article, if not specifically stated, all adopt redhat's redhat linux system.　　First, we will perform a series of upgrades to the newly installed system, including software and kernel. This is an important step, (For details about this, please refer to my other article on upgrade ). After upgr

Vulnerability Release Date:Vulnerability Update Time:Vulnerability causeDesign ErrorHazard levelLowImpact SystemXML Security Library 1.xUnaffected SystemHazardsRemote attackers can exploit this vulnerability to obtain sensitive information or bypass authentication to access restricted resources.Attack ConditionsAttackers must access HP Operations.Vulnerability InformationHP Operations is a Distributed Clien

This article takes list as the object of actionMSDN official gives a list of thread-safe sayings:public static members of this type are thread-safe. However, there is no guarantee that any instance members are thread-safe.The List can support multiple readers at the same time, as long as the collection is not modified. Enumerating through collections is inherently not a thread-safe process. In rare cases where an enumeration competes with one or more write accesses, the only way to ensure thread

paragraph is inserted into the file read and write operation method, and the after is automatically truncated. Operating system, only read ... etc/passwd file now. "\" will appear in all file system read and write file variables. will be treated equally. This C-language is related to the full tag of a string.Through the above analysis, we found that when doing file type operation, one does not pay attention will produce big loopholes. And the vulnerability could lead to a range of

OK"DoneRemember, delete the system users or groups, this is not a fixed requirement! According to the purpose of the server to delete!For example, if the server is for Web applications, then the Apache users and user groups are retained, and if the user database is applied, the Apache users and user groups can be deleted.Some users only make process calls or user group calls, do not require the login function, then use the following command to prevent it from logging on to the server:# usermod-