Hot Article
- Centos7 closes and restarts the system firewall and opens firewall ports
- How IID server uses Xshell to connect to Linux (centos) server
- BT panel forgets the background login URL, and the solution to the security entrance verification failure
- The php domain name points to ip, how to use the specified ip address to access a server in the url request domain name in curl mode
- How to purchase a dedicated server
- Error connecting to MySQL: Cant connect to MySQL server (10060)
How to secure the web server (Pagoda website security settings)
- Author:Sven
- Category:Network related
- Release Time:2023-03-14
For the daily security of the site, general maintenance is divided into the following steps, these operations below must be in a clear understanding of the meaning and consequences of the operation, do not copy at will, some will affect the use of the function, novice caution!
1, Pagoda close non-essential ports, modify the Pagoda login port Pagoda default login port 8888, you can change the port number such as: 32145 and add security entry such as: 458erd, set at the panel settings, note that the new port number to be released at the security and server provider, for example, Ali cloud on the security group, Tencent cloud on the firewall, not released will lead to Pagoda can not be accessed. Some of the ports of external management tools are open by default, it is recommended to close them, such as phpmyadmin's is 888, such as ftp file transfer is 20 and 21.
2, close some functions, deactivate the external login, management software If there is no need to recommend closing ssh (will lead to the inability to use ssh link server, that is, the command line management linux) open forbidden ping (will lead to the domain name can only ping out the address, but the data will time out) uninstall or deactivate phpmyadmin, ftp and other external login management software.
3, website data backup automatic daily packaged backup of website files and databases, using Pagoda's regular tasks to complete, and manually downloading backup files once a month.
4, install some firewall-type software My server does occasionally suffer some cc or penetration attacks, because some people are using the full network ip scan to attack the way, to get who counts. Here are some of my attack records. Pagoda official now has a system firewall, and nginx free firewall, are free, but the firewall function settings recommended to see clearly before the whole, such as nginx firewall there is a setting to prohibit overseas users, once opened, the use of the mainland outside the ip to access the site can not open, many new friends are blindly installed after encountering this problem.
related topic
- Windows remote connection server setting local disk sharing tutorial
- IDGlobal teaches you how to judge whether the website server is attacked by CC?
- What is iktok vps (what is the difference between iktok vps and tiktok dedicated line)
- gpu deep learning server configuration recommendations
- What is a GPU server?
- Large game server rental configuration recommendations