Segurizando a Linux

By general norm WordPress and usually is made work on Linux, and in this operating system he can have installed and working many different services. This, therefore gives foot to think about that Linux machine has to stay safe.

One of the most habitual information is the one to send the information of what Web server we used. For it, for example in Apache httpd we can change some configurations.

ServerTokens Prod ServerSignature In off TraceEnable In off

Another one of the habitual places of information leaks is PHP. In this case in php.ini we can make some changes to protect possible flights of data.

expose_php = In off display_errors = In off track_errors = In off html_errors = In off

But not only in these services, also in others as SSH can give certain information us. For example in Debian and Ubuntu we could block the data in the file of /etc/ssh/sshd_config.

DebianBanner no

Also it can surgeir in services of mail as Postfix, where is the information and it is possible to be changed on the other in the /etc/postfix/main.cf file.

to smtpd_banner = 0

Even, it would be possible also to be reviewed in the servant of DNS BIND, within the configuration file named.conf.

options \ {version €œno€; }

Many other options exist to review, but the center is to review that all the services that settle in the machine and that are accessible from the outside hide of explicit form all information of their versions to mount more difficult an attack.

It lets a commentary