Many people think that Linux is more secure than Windows.
However, security is more important today, security also requires the user's configured correctly, this kind of security does not have to be through some dedicated security software or technology can achieve. Sometimes the best way of guaranteeing security is the kind most likely to be forgotten. Whether you are a Linux just getting started, or a skilled user or management staff, check the following nine steps can help you strengthen the security of your Linux desktop. Lock screen and log out very important for many users might have forgotten that the Linux desktop is a multi user environment. Because of this, a user logs out of the desktop, another user can log on. This not only means that other people can use your screen, it also means that, after the user completes the work, should be posted in a timely manner. Of course, log out is not the only choice. If you are the only user of the system, you can also lock the screen. Lock screen means that user to re-enter the desktop into the need to enter a password. It and log out of the difference is that when the lock screen, the user leaves the computer, its application is still running. After entering the desktop, you can continue the original work. Hide files and folders on Linux systems, the files and folders is by using the "." To be hidden. For example, the original in testfilefolder folder there are two files, we can use the ls command view. But after running the command mvadsl-stop.adsl-stop, ls, you can see only one file. This description can use mv to hide not want other users to see the file. Of course, you can use ls-a command to view all files, regardless of whether they are hidden. Have a good password Linux user's password as the key to doing it as important. If the user will be the key to many people, he also locks do? of course, this key is finally being easily produced, that is, the user's password is not easy to guess. If you are using Ubuntu, release version, the passwords might give users more access. Anyway, it is important to protect the user's password is strong. If you really do not trust their own password if appropriate, may wish to use this software, it AutomatedPasswordGenerator can provide you creating a secure random password of the good. Do not install the file-sharing applications, many users are sharing some of the files. If you want to run this function, you should know the risks. Especially if you use this feature with workplaces, the share will not only their own files, but also involves the company's other users, and also the entire desktop to hand over to the other users illegally. Therefore, for security reasons, please do not install the file-sharing tool. Periodic upgrades used Windows users on Microsoft periodically releases OS and application patches have left a deep impression of "". But Microsoft releases patches of speed is far less Linux came fast. In the Linux world, a security vulnerability discovered, in a few hours or a few minutes you can publish their patches. Install anti-virus mechanisms do not feel that the virus causing system problems unlikely. It is recommended that you use a robust virus defense tool, so you can protect your machines make mail does not contain harmful code, nor will it affect the company's network of other systems. SELinux worth a try SELinux well lock on the application of access control, although some people think that there is a satisfactory SELinux, as it may affect system performance, but you may find other applications to install. However, according to the author's experience, the SELinux security benefits to far outweigh its negative effects. The Fedora installation, you will have the opportunity of SELinux enabled. On a separate partition created/home is a safer method of the default Linux installation directory on the system/home's root. This may be a good idea, but you need to note that since this is a standard installation, so no one can access your system will know where the data. Also, if your machine has a problem, your data, how can it security? This solution is that you should place the/home an entirely different hard disk or partition. This perhaps is nothing comes up, but if you really care about data security, may wish to try. Terminate or disable unnecessary services you are using a desktop machine, instead of one server. So completely unnecessary running nfs, httpd, ftpd, sshd and other services. To say that a normal user should not run these services, they can only give the average user at risk. Therefore, do not run these services. For example, NFS service termination is #/etc/init.d/nfsstop. You can check the/etc/inetd.conf file, look at all the unnecessary services are cancelled. This method is simple but very effective.
No comments:
Post a Comment