Home >Operation and Maintenance >Linux Operation and Maintenance >Prevent Social Engineering Attacks: Protect Your Linux Server
Prevent Social Engineering Attacks: Protect Your Linux Server
Overview:
As the Internet develops, security threats also increase. Social engineering attack is an attack method that uses social engineering principles to deceive users psychologically. To protect our Linux servers, we need to take a series of security measures to guard against these attacks.
$ sudo vi /etc/pam.d/common-password
Add the following content to the file:
password requisite pam_pwquality.so retry=3 password requisite pam_unix.so sha512 shadow use_authtok
Save and exit the file, then execute the following command to make the configuration effective:
$ sudo systemctl restart common-auth.service
$ sudo apt update $ sudo apt upgrade
$ sudo ufw enable $ sudo ufw allow ssh $ sudo ufw allow http $ sudo ufw allow https
$ sudo rsync -avz --delete /var/www /backup/
The following is a sample code for disabling remote login of the root account:
$ sudo vi /etc/ssh/sshd_config
Find the following line and modify it:
PermitRootLogin no
Save and exit the file, Then execute the following command to make the configuration take effect:
$ sudo systemctl restart sshd
Conclusion:
By strengthening user education, using strong passwords and multi-factor authentication, updating and upgrading system software, controlling external access and firewall settings, and regularly backing up data As well as using secure remote access methods, we can greatly reduce the risk of social engineering attacks on our servers. In the process of protecting Linux servers, continuous security awareness and action are crucial.
The above is the detailed content of Prevent Social Engineering Attacks: Protect Your Linux Server. For more information, please follow other related articles on the PHP Chinese website!