Additional settings and packages

Packages and configurations

These installations and settings make it easier for you to work on the server and increases the security.

SSH "ServerAliveInterval"

In some cases, the SSH connection may break. This is very annoying, especially if you are working on the server and the current process should not be interrupted, such as an update. To avoid this, set the following setting in the /etc/ssh/ssh_config configuration file on your client computer!

ServerAliveInterval 30

SSH port

For more security, change the port for SSH connections. To do this, install the additional package.

root$

yum -y install policycoreutils-python

Go to /etc/ssh/sshd_config and change the port for the SSH service to 22001 or something else, and tell SElinux about your new configuration with:

root$

vi /etc/ssh/sshd_config

root$

semanage port -a -t ssh_port_t -p tcp 22001

Lastly, configure the firewall for the changed port and remove the old one.

root$

firewall-cmd --permanent --zone=public --add-port=22001/tcp

root$

firewall-cmd --permanent --zone=public --remove-service=ssh

root$

firewall-cmd --reload

Now, restart the SSH service and re-login to your system with your new port number.

root$

systemctl restart sshd.service

Set a new secure password and disable VNC

If you can now start your system with Dracut and have access via the newly configured SSH port, we can now disable the connection via VNC and replace the weak password with a strong one.

To change the password type:

root$

passwd

 

To disable the VNC service, shutdown your system with:

root$

shutdown 0

Login to your vServer configuration website or utility and unset VNC for your system.

Now start the server.

HTOP

"Htop" is an improvement of the "top" application for monitoring current running processes and to display memory and CPU usage.

root$

yum install htop

NMON

Mit nmon kann die CPU-Aktivität über einen längeren Zeitraum beobachtet werden.

yum install nmon

IPTRAF

Ist ein Netzwerkmonitoring-Tool für die Konsole.

yum install iptraf

Wondershaper

Um den Netzwerk-Durchsatz zu beschränken kann wondershaper eingesetzt werden.

https://github.com/magnific0/wondershaper

Kommentare

Bitte addieren Sie 2 und 6.