Security codes 1. abolition of the system, all the default username and password.
2. the legality of the user to be authenticated before don't display company headers, online help and other information. 3. the abolition of "hackers" to attack the system of network services. 4. use of 6 to 8 digit alpha-numeric password. 5. limit users try to log on to the system. 6. records of breaches of security and safety record for review. 7. important information prior to transmission on the Internet is encrypted. 8. pay attention to the recommendations of the experts, the installation they recommended system "patch". 9. limit does not need a password to access hosts file. 10. to modify the network configuration file so that the TCP connection from the external constraints to the fewest number of ports. Do not allow such as tftp, sunrpc, printer, rexec, rlogin or agreement. 11. use upas instead of sendmail. Sendmail has too many known vulnerabilities, it is difficult to repair. 12. remove the operation is not critical and rarely used programs. 13. use chmod all system directory changed to 711 mode. In this way, attackers will not be able to see them something, but users can still be executed. 14. when possible, the disk is read-only mode. In fact, only a few directories need read/write status. 15. the system software upgrade to the latest version. Older versions may have been research and was a successful attack, the latest version is typically include these remedies. Previous
No comments:
Post a Comment