当前位置:网站首页>16. File transfer protocol, vsftpd service
16. File transfer protocol, vsftpd service
2020-11-07 22:18:00 【Sword emperor Xiao Jian】
SELinux Security subsystem
- Three models :
- enforcing: Force security policy mode on , Illegal requests for services will be blocked .
- permissive: In case of unauthorized access to the service , Just give a warning and not force intercept .
- disabled: Don't warn or intercept ultra vires .
- getenforce- Get the current SELinux The mode of operation of the service
- setenforce0 / 1 - temporary modify SELinux Current operating mode (0 To disable ,1 To enable )
- semanage<options>__<file>- management SELinux The strategy of
- [-l] - Inquire about ;
- [-a] - add to ;
- [-m] - modify ;
- [-d] - Delete
- restorecon- Will set up SELinux The security context takes effect immediately
File transfer protocol (FTP)
- Package: vsftpd, ftp
- Working mode
- Active mode :FTP The server initiates the connection request to the client
- Passive mode :FTP The server waits for the client to initiate a connection request (FTP The default working mode of )
- systemctl enable_<serviceName>_ Application configuration
vsftpd Working mode
- Anonymous open mode ( unsafe )【 Anonymous users :anonymous】
- Local user mode
- Virtual user mode ( Security , But the configuration is complicated , Want to use PAM)
- -6 Use IPv6 agreement
Simple file transfer protocol (TFTP)
- Package: tftp_server, tftp
TFTP Service is to use xinetd Service program to manage .xinetd Services can be used to manage a variety of lightweight network services , And it has powerful log function . Simply speaking , In the installation TFTP After the package , Still need to be in xinetd Open it in the service program , Disable by default (disable) Parameter is modified as no
TFTP The command function of is not as good as FTP Powerful service , You can't even traverse directories , It's also less secure than FTP service . and , because TFTP When transferring files, we use UDP agreement , The port number occupied is 69, So the file transfer process is not like FTP The agreement is so reliable . however , because TFTP There is no need for client authentication , It also reduces unnecessary system and network bandwidth consumption , So the transmission is trivial (trivial) Small documents , More efficient .
版权声明
本文为[Sword emperor Xiao Jian]所创,转载请带上原文链接,感谢
边栏推荐
- Getting started with go wire dependency injection
- Supervisor process management installation and use
- What details does C + + improve on the basis of C
- Ubuntu下搜狗输入法的下载安装及配置
- Count the frequency of letters in text (case insensitive)
- 状态压缩:对动态规划进行降维打击
- Sentry installation
- Android 9.0/P WebView 多进程使用的问题
- 【C++学习笔记】C++ 标准库 std::thread 的简单使用,一文搞定还不简单?
- 爆一个VS2015 Update1更新带来的编译BUG【已有解决方案】
猜你喜欢
On hiz buffer
Got timeout reading communication packets解决方法
洞察——风格注意力网络(SANet)在任意风格迁移中的应用
Get tree menu list
The emergence and significance of micro service
【解决方案】分布式定时任务解决方案
Code Review Best Practices
[C + + learning notes] how about the simple use of the C + + standard library STD:: thread?
[original] the influence of arm platform memory and cache on the real-time performance of xenomai
Face recognition: attack types and anti spoofing techniques
随机推荐
Search and replace of sed
What kind of technical ability should a programmer who has worked for 1-3 years? How to improve?
leetcode之判断路径是否相交
The road of cloud computing: a free AWS cloud server
Web安全(四)---XSS攻击
use Xunit.DependencyInjection Transformation test project
What do you think of the most controversial programming ideas?
delphi10的rest.json与system.json的踩坑
Adobe Prelude / PL 2020 software installation package (with installation tutorial)
Code Review Best Practices
Improvement of maintenance mode of laravel8 update
Ubuntu下搜狗输入法的下载安装及配置
Cpp(四) Boost安装及基本使用 for Mac
A detailed explanation of microservice architecture
Sentry 安装
Web Security (3) -- CSRF attack
ECMAScript7规范中的instanceof操作符
Wechat applet request reported 400 error @ requestbody failed to receive
Implementation of multi GPU distributed training with horovod in Amazon sagemaker pipeline mode
Problems of Android 9.0/p WebView multi process usage