Step1\uff0c\u505c\u6389sshd\u670d\u52a1<\/p>\n
\u4e3a\u4e86\u5b89\u5168\u8d77\u89c1\uff0c\u5728\u914d\u597d\u4ee5\u4e0b\u57fa\u672c\u5b89\u5168\u63aa\u65bd\u4e4b\u95f4\uff0c\u5148\u628asshd\u670d\u52a1\u5173\u95ed\u3002<\/pre>\nStep2\uff0c\u65f6\u533a\u66f4\u6539\uff0c\u952e\u76d8<\/span>layout<\/span>\u66f4\u6539\u3002<\/span><\/p>\n
centos:<\/p>\n
debian:<\/p>\n
redhat :ln -sf \/usr\/share\/zoneinfo\/Asia\/Tokyo \/etc\/localtime<\/p>\n
hostnamectl set-hostname xxx<\/code><\/p>\nStep3\uff0c\u66f4\u6539root\u7528\u6237\u5bc6\u7801\uff0c\u8ffd\u52a0\u4e00\u822c\u7528\u6237\u3001\u5c06\u7528\u6237\u52a0\u5230wheel\u7ec4\u91cc\u3002<\/p>\n
root\u306elogin.defs\u30d5\u30a1\u30a4\u30eb\u3092\u7de8\u96c6<\/p>\n
#login.defs\u306e\u6700\u5f8c\u306e2\u884c\u3002
\n#ENCRYPT_METHOD SHA512
\nSU_WHEEL_ONLY yes<\/p>\nPAM\u306e\u8a2d\u5b9a<\/p>\n
vi \/etc\/pam.d\/su
\n#auth required pam_wheel.so use_uid
\nauth required\u00a0pam_wheel.so use_uid<\/p>\nStep4\uff0c\u66f4\u6539ssh\u914d\u7f6e\u6587\u4ef6\uff0c\u505a\u597d\u5b89\u5168\u63aa\u65bd<\/p>\n
vim \/etc\/ssh\/sshd_config
\nPort 2222
\nPermitRootLogin no<\/p>\nMatch Group *,!wheel
\nChrootDirectory \/home\/%u\/.\/<\/p>\nvim \/etc\/hosts.deny
\nsshd:all:deny<\/p>\nvim \/etc\/hosts.allow
\nsshd:192.168.1.106:allow<\/p>\nStep5<\/span>\uff0c\u5b89\u88c5\u53ca\u914d\u7f6e<\/span>iptables<\/span><\/p>\n
https:\/\/centossrv.com\/iptables.shtml<\/p>\n
Step6\uff0c\u542f\u52a8sshd\u670d\u52a1\uff0c\u901a\u8fc7teraterm\u94fe\u63a5\u670d\u52a1\u5668\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"
Step1\uff0c\u505c\u6389sshd\u670d\u52a1 \u4e3a\u4e86\u5b89\u5168\u8d77\u89c1\uff0c\u5728\u914d\u597d\u4ee5\u4e0b\u57fa\u672c\u5b89\u5168\u63aa\u65bd\u4e4b\u95f4\uff0c\u5148\u628asshd\u670d\u52a1\u5173\u95ed\u3002 Step2\uff0c\u65f6 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[44,2],"tags":[3],"_links":{"self":[{"href":"https:\/\/vongg.com\/index.php?rest_route=\/wp\/v2\/posts\/24"}],"collection":[{"href":"https:\/\/vongg.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vongg.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vongg.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/vongg.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=24"}],"version-history":[{"count":10,"href":"https:\/\/vongg.com\/index.php?rest_route=\/wp\/v2\/posts\/24\/revisions"}],"predecessor-version":[{"id":430,"href":"https:\/\/vongg.com\/index.php?rest_route=\/wp\/v2\/posts\/24\/revisions\/430"}],"wp:attachment":[{"href":"https:\/\/vongg.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=24"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vongg.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=24"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vongg.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=24"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}