|
المشاركات 650 |
+التقييم 136 |
تاريخ التسجيل Jan 2019 |
الاقامة العراق | المانيا |
نظام التشغيل Other |
رقم العضوية 1918 |
csf and lfd have been enabled
nano /etc/ssh/sshd_config
#Port 22
#Port 22
nano /etc/csf/csf.conf
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,2030,2031,2082,2083,2086,2087,2095,2096"
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,2030,2031,2082,2083,2086,2087,2095,2096,7654"
TCP_OUT = "20,21,22,25,53,80,110,113,443,2030,2031,2082,2083,2086,2087,2095,2096,587,993,995"
TCP_OUT = "20,21,22,25,53,80,110,113,443,2030,2031,2082,2083,2086,2087,2095,2096,587,993,995,7654"
systemctl restart lfd csf -r
systemctl restart sshd
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,2030,2031,2082,2083,2086,2087,2095,2096,7654"
TCP_OUT = "20,21,22,25,53,80,110,113,443,2030,2031,2082,2083,2086,2087,2095,2096,587,993,995,7654"
TESTING = 0
SMTP_BLOCK = 0 SYNFLOOD = 1 UDPFLOOD = 1 LF_NETBLOCK = 1
RESTRICT_SYSLOG = 3
LF_SSHD = 3
LF_FTPD = 3
LF_SMTPAUTH = 3 LF_EXIMSYNTAX = 3 LF_POP3D = 3 LF_IMAPD = 3 LF_HTACCESS = 0 LF_HTACCESS_PERM = 0 LF_DIRWATCH = 0 PORTKNOCKING_ALERT = 1 PT_LIMIT = 0
LF_PERMBLOCK_ALERT = 0 LF_EMAIL_ALERT = 0 PS_EMAIL_ALERT = 0
LF_SSH_EMAIL_ALERT = 1
PT_USERMEM = 0
systemctl restart sshd systemctl restart lfd csf -r
nano /etc/csf/csf.conf
%level% %subject%, %message%, %url%
systemctl restart mysql systemctl restart httpd systemctl restart sshd systemctl restart lfd systemctl restart named systemctl restart nginx systemctl restart varnish systemctl restart dovecot systemctl restart crond.service csf -r
reboot
ModSecurity: Status engine is currently disabled, enable it by set SecStatusEngine to On.
<IfModule itk.c> SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit SecAuditLogType Concurrent </IfModule>
LoadFile /usr/lib64/libxml2.so LoadFile /usr/lib64/liblua-5.1.so <IfModule !unique_id_module> LoadModule unique_id_module modules/mod_unique_id.so </IfModule> <IfModule !mod_security2.c> LoadModule security2_module modules/mod_security2.so </IfModule> <IfModule mod_security2.c> <IfModule mod_ruid2.c> SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit SecAuditLogType Concurrent </IfModule> <IfModule itk.c> SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit SecAuditLogType Concurrent </IfModule> SecStatusEngine On SecRuleEngine On SecAuditEngine RelevantOnly SecAuditLog /usr/local/apache/logs/modsec_audit.log SecDebugLog /usr/local/apache/logs/modsec_debug.log SecAuditLogType Serial SecDebugLogLevel 0 SecRequestBodyAccess On SecDataDir /tmp SecTmpDir /tmp SecUploadDir /tmp SecCollectionTimeout 600 SecPcreMatchLimit 1250000 SecPcreMatchLimitRecursion 1250000 Include "/usr/local/apache/modsecurity-owasp-old/owasp.conf" </IfModule>
ModSecurity: StatusEngine call successfully sent. For more information visit: http://status.modsecurity.org/
nano /usr/local/apache/conf.d/mod_security.conf
<IfModule itk.c> SecAuditLogStorageDir /usr/local/apache/logs/modsec_audit SecAuditLogType Concurrent </IfModule>
SecStatusEngine On
systemctl restart mysql systemctl restart httpd systemctl restart sshd systemctl restart lfd systemctl restart named systemctl restart nginx systemctl restart varnish systemctl restart dovecot systemctl restart crond.service csf -r
SecRuleRemoveById 960017 SecRuleRemoveById 960015 SecRuleRemoveById 960009 SecRuleRemoveById 960024 SecRuleRemoveById 950120 SecRuleRemoveById 981173 SecRuleRemoveById 950901 SecRuleRemoveById 981257 SecRuleRemoveById 981245 SecRuleRemoveById 973338 SecRuleRemoveById 973300 SecRuleRemoveById 973304 SecRuleRemoveById 973333 SecRuleRemoveById 973333 ## Wordpress ## SecRuleRemoveById 981242 SecRuleRemoveById 981246 SecRuleRemoveById 981243 SecRuleRemoveById 959073 SecRuleRemoveById 958030 ## Drupal ## SecRuleRemoveById 981231 ## Removed rules for the webftp_simple ## SecRuleRemoveById 950922 SecRuleRemoveById 981000 SecRuleRemoveById 950109 ## phpMyAdmin ## SecRuleRemoveById 981205 SecRuleRemoveById 970901 SecRuleRemoveById 960904 SecRuleRemoveById 960915 SecRuleRemoveById 981318 SecRuleRemoveById 981320 SecRuleRemoveById 981240 ## Rules for the CWP ## SecRuleRemoveById 960017 SecRuleRemoveById 960015 SecRuleRemoveById 960009 SecRuleRemoveById 950007 SecRuleRemoveById 910006 SecRuleRemoveById 950000 SecRuleRemoveById 950001 SecRuleRemoveById 950005 SecRuleRemoveById 950006 SecRuleRemoveById 950117 SecRuleRemoveById 950907 SecRuleRemoveById 958039 SecRuleRemoveById 958051 SecRuleRemoveById 958291 SecRuleRemoveById 959006 SecRuleRemoveById 959151 SecRuleRemoveById 960008 SecRuleRemoveById 960010 SecRuleRemoveById 960011 SecRuleRemoveById 960012 SecRuleRemoveById 960035 SecRuleRemoveById 960335 SecRuleRemoveById 960904 SecRuleRemoveById 960915 SecRuleRemoveById 970003 SecRuleRemoveById 970015 SecRuleRemoveById 970903 SecRuleRemoveById 973301 SecRuleRemoveById 973302 SecRuleRemoveById 973306 SecRuleRemoveById 973316 SecRuleRemoveById 973330 SecRuleRemoveById 973331 SecRuleRemoveById 973332 SecRuleRemoveById 973334 SecRuleRemoveById 973335 SecRuleRemoveById 973336 SecRuleRemoveById 973344 SecRuleRemoveById 973347 SecRuleRemoveById 981172 SecRuleRemoveById 981248 SecRuleRemoveById 981255 SecRuleRemoveById 981256 SecRuleRemoveById 981317 SecRuleRemoveById phpids-17 SecRuleRemoveById phpids-20 SecRuleRemoveById phpids-21 SecRuleRemoveById phpids-30 SecRuleRemoveById phpids-61 SecRuleRemoveById 960024 SecRuleRemoveById 950120 SecRuleRemoveById 981173 SecRuleRemoveById 950901 SecRuleRemoveById 981257 SecRuleRemoveById 981245 SecRuleRemoveById 973338 SecRuleRemoveById 973300 SecRuleRemoveById 973304 SecRuleRemoveById 973333 SecRuleRemoveById 973333 SecRuleRemoveById 981242 SecRuleRemoveById 981246 SecRuleRemoveById 981243 SecRuleRemoveById 959073 SecRuleRemoveById 958030 SecRuleRemoveById 950103 SecRuleRemoveById 958018 SecRuleRemoveById 960000 SecRuleRemoveById 960006 SecRuleRemoveById 973305 SecRuleRemoveById 973308 SecRuleRemoveById 973337 SecRuleRemoveById 973346 SecRuleRemoveById 981004 SecRuleRemoveById 981240 SecRuleRemoveById 981249 SecRuleRemoveById 981260 SecRuleRemoveById 981319 SecRuleRemoveById 981320 SecRuleRemoveById 959070 SecRuleRemoveById 981231 SecRuleRemoveById 950922 SecRuleRemoveById 981000 SecRuleRemoveById 950109 SecRuleRemoveById 981205 SecRuleRemoveById 970901 SecRuleRemoveById 950109 SecRuleRemoveById 950922 SecRuleRemoveById 981000 SecRuleRemoveById 960032 SecRuleRemoveById 958407 SecRuleRemoveById 950911 SecRuleRemoveById 950911 SecRuleRemoveById 981244 SecRuleRemoveById 958407 SecRuleRemoveById 950002 SecRuleRemoveById 960038 SecRuleRemoveById 981001 SecRuleRemoveById 958057 SecRuleRemoveById 959072 SecRuleRemoveById 981277 SecRuleRemoveById 981241 SecRuleRemoveById 981318 SecRuleRemoveById 958056 SecRuleRemoveById 950108 SecRuleRemoveById 959071 SecRuleRemoveById 960020 SecRuleRemoveById 960911 SecRuleRemoveById 981250 SecRuleRemoveById 958049 SecRuleRemoveById 990012 SecRuleRemoveById 958976 SecRuleRemoveById 981227 SecRuleRemoveById 981253 SecRuleRemoveById 958422 SecRuleRemoveById 958011 SecRuleRemoveById 958006 SecRuleRemoveById 958406 SecRuleRemoveById 950107 SecRuleRemoveById 973322 SecRuleRemoveById 973321 SecRuleRemoveById 973314 SecRuleRemoveById 973348 SecRuleRemoveById 973329 SecRuleRemoveById 973310 SecRuleRemoveById 958405 SecRuleRemoveById 958409 SecRuleRemoveById 973303 SecRuleRemoveById 973315
nano /usr/local/apache/modsecurity-owasp-old/global_disabled_rules.conf
systemctl restart mysql systemctl restart httpd systemctl restart sshd systemctl restart lfd systemctl restart named systemctl restart nginx systemctl restart varnish systemctl restart dovecot systemctl restart crond.service csf -r
SMTP_BLOCK =
SMTP_BLOCK = 0
SMTP_BLOCK =1
SMTP_BLOCK =0
SMTP_BLOCK =1
SMTP_BLOCK =0
اضافة رد
|
|
درس 2: اعداد جدار الحماية والبريد والمود سكيورتي والرولز للوحة
أدوات الموضوع | |
|
الموضوع | كاتب الموضوع | المنتدى | مشاركات | آخر مشاركة |
طرق اعداد دومين dynadot باستخدام VPS Dynadot مع خيار Sentora | هيلبرنت | ركن شروحات الاستضافة والنطاقات | 3 | 02-06-2021 12:16 PM |
اوامر جدار الحماية CSF المهمة عن طريق SSH | Mighty Dr.Wolf | ركن شروحات الاستضافة والنطاقات | 10 | 02-06-2020 09:40 PM |
حل مشكلة عدم توافق المود سكيورتي مع الاباتشي في لوحة centos webpanel | Mighty Dr.Wolf | ركن شروحات الاستضافة والنطاقات | 7 | 07-08-2019 07:08 AM |
تم اصدار النسخة العربية لكاسبر انترنت سكيورتي 2016 | هيلبرنت | برامج كمبيوتر | 0 | 12-26-2015 12:33 AM |
ضبط التصاريح لمجلد .htpasswds لإخفاء المسارات لحب مشكلة تخطى جدار الحماية | هيلبرنت | ركن تطوير منتديات vb3.8.0 | 0 | 10-12-2015 12:11 AM |