您的位置: 首页  >  IT文章  >  阿里云server安全设定

阿里云server安全设定

分类: IT文章 2022-04-02 09:30:43

阿里云server安全设定


1、打开所有的服务云盾

 阿里云server安全设定

2、通过防火墙策略限制对外扫描行为

请您依据您的server操作系统,下载相应的脚本执行,执行后您的防火墙策略会封禁对外发包的行为,确保您的主机不会再出现恶意发包的情况,为您进行兴许数据备份操作提供足够的时间。

Window2003的批处理文件下载地址:http://oss.aliyuncs.com/aliyunecs/windows2003_drop_port.bat

Window2008的批处理文件下载地址:http://oss.aliyuncs.com/aliyunecs/windows2008_drop_port.bat

Linux系统脚本:http://oss.aliyuncs.com/aliyunecs/linux_drop_port.sh

上述文件下载到机器内部直接运行就可以。

文件内容例如以下:

#!/bin/bash
#########################################
#Function:    linux drop port
#Usage:       bash linux_drop_port.sh
#Author:      Customer Service Department
#Company:     Alibaba Cloud Computing
#Version:     2.0
#########################################
 
check_os_release()
{
 while true
  do
   os_release=$(grep "Red Hat Enterprise Linux Server release"/etc/issue 2>/dev/null)
   os_release_2=$(grep "Red Hat Enterprise Linux Server release"/etc/redhat-release 2>/dev/null)
   if [ "$os_release" ] && [ "$os_release_2" ]
   then
     if echo "$os_release"|grep "release 5" >/dev/null2>&1
     then
       os_release=redhat5
       echo "$os_release"
     elif echo "$os_release"|grep "release 6">/dev/null 2>&1
     then
       os_release=redhat6
       echo "$os_release"
     else
       os_release=""
       echo "$os_release"
     fi
     break
   fi
   os_release=$(grep "Aliyun Linux release" /etc/issue2>/dev/null)
   os_release_2=$(grep "Aliyun Linux release" /etc/aliyun-release2>/dev/null)
   if [ "$os_release" ] && [ "$os_release_2" ]
   then
     if echo "$os_release"|grep "release 5" >/dev/null2>&1
     then
       os_release=aliyun5
       echo "$os_release"
     elif echo "$os_release"|grep "release 6">/dev/null 2>&1
     then
       os_release=aliyun6
       echo "$os_release"
     else
       os_release=""
       echo "$os_release"
     fi
     break
   fi
   os_release=$(grep "CentOS release" /etc/issue 2>/dev/null)
   os_release_2=$(grep "CentOS release" /etc/*release2>/dev/null)
   if [ "$os_release" ] && [ "$os_release_2" ]
   then
     if echo "$os_release"|grep "release 5" >/dev/null2>&1
     then
       os_release=centos5
        echo "$os_release"
     elif echo "$os_release"|grep "release 6">/dev/null 2>&1
     then
       os_release=centos6
       echo "$os_release"
     else
       os_release=""
       echo "$os_release"
     fi
     break
   fi
   os_release=$(grep -i "ubuntu" /etc/issue 2>/dev/null)
   os_release_2=$(grep -i "ubuntu" /etc/lsb-release2>/dev/null)
   if [ "$os_release" ] && [ "$os_release_2" ]
   then
     if echo "$os_release"|grep "Ubuntu 10" >/dev/null2>&1
     then
        os_release=ubuntu10
       echo "$os_release"
     elif echo "$os_release"|grep "Ubuntu 12.04">/dev/null 2>&1
     then
       os_release=ubuntu1204
       echo "$os_release"
     elif echo "$os_release"|grep "Ubuntu 12.10">/dev/null 2>&1
      then
       os_release=ubuntu1210
       echo "$os_release"
     else
       os_release=""
       echo "$os_release"
     fi
     break
   fi
   os_release=$(grep -i "debian" /etc/issue 2>/dev/null)
   os_release_2=$(grep -i "debian" /proc/version 2>/dev/null)
   if [ "$os_release" ] && [ "$os_release_2" ]
   then
     if echo "$os_release"|grep "Linux 6" >/dev/null2>&1
     then
       os_release=debian6
       echo "$os_release"
     else
        os_release=""
       echo "$os_release"
     fi
     break
   fi
   os_release=$(grep "openSUSE" /etc/issue 2>/dev/null)
   os_release_2=$(grep "openSUSE" /etc/*release 2>/dev/null)
   if [ "$os_release" ] && [ "$os_release_2" ]
   then
      if echo "$os_release"|grep"13.1" >/dev/null 2>&1
     then
       os_release=opensuse131
       echo "$os_release"
     else
       os_release=""
       echo "$os_release"
     fi
     break
   fi
   break
   done
}
 
exit_script()
{
 echo -e "

相关推荐