1. 取消/tmp的执行权限
vi /etc/fstab LABEL=/tmp /tmp ext3 nodev,nosuid,noexec,rw 0 0
3. 其他需要考虑的问题:参见这里。
How to Secure Linux Servers
How to Secure Linux Servers
Basic Linux Server Security
Install Firewall (APF or CSF Firewall with BFD)
ModSecurity (Web application firewall)
ModEvasive (Prevent DDOS attacks)
Harden SSH server
Fix Open DNS Recursion
Install RKhunter
Install ClamAV (Antivirus)
XInet Servers Hardening (Disable Telnet/Finger or unwanted services)
Securing PHP
PortsEntry (tool to detect portscans)
Harden host.conf (against IP spoofing)
Check User Uploaded files
Secure /tmp Folders (noexec, nosuid)
install mod_security2 on centos / redhat
This article assumes that you have installed a RedHat Enterprise or CentOS and not guaranteed to work, although we have tested on several CentOS 4.5 with success.
The first thing is make sure we have installed the libxml2 library, for it only have to do a search on our system, if installed normally. (XPC Note: Try “yum install libxml2-devel”) 继续阅读install mod_security2 on centos / redhat
自酿葡萄酒
1. 受泡泡同学启发,尝试了一次自酿葡萄酒。头一次,不算成功,但很有意思。事后在网上查了不少别人的心得,自己也总结了一些经验。做个记录,下次再来。
继续阅读自酿葡萄酒
香港 – 匆匆拍街景
1. 在HK停留时间很短。现在过去了几个月,印象比较深的几点。
到处都有免费WIFI。机场大巴公车上都有网。
广式小吃早点很好吃。
街道真窄,在路上只要一停脚,就得留意别挡人家道。 继续阅读香港 – 匆匆拍街景
香港 – 海洋公园
1. 11年11月,和几位肢体同行。在香港度过了很有纪念意义的一周。
正事儿上欲说还休,今天只说天凉好个秋吧。 继续阅读香港 – 海洋公园