不幸的是,我无法连接sftp
到我的 VPS:
这是我的sshd_config
:
# Package generated configuration file
# See the sshd_config(5) manpage for details
# What ports, IPs and protocols we listen for
Port 22
# Use these options to restrict which interfaces/protocols sshd will bind to
#ListenAddress ::
#ListenAddress 0.0.0.0
Protocol 2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
#Privilege Separation is turned on for security
UsePrivilegeSeparation yes
# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 3600
ServerKeyBits …
Run Code Online (Sandbox Code Playgroud) 我遇到了一个小问题 - 垃圾邮件杀手的 RDNS_NONE 规则与我的外发邮件相匹配,但在传递链中的所有主机都设置了 RDNS。
如果我发送电子邮件到“receipient-forwarding-address@example.com”,该电子邮件被重定向到另一个帐户,我会收到以下标头:
Return-Path: <receipient@example.com>
Delivered-To: receipient@mailserver.example.com
Received: from localhost (localhost [127.0.0.1])
by mailserver.example.com (Postfix) with ESMTP id 3CD4D1D237A1
for <receipient@example.com>; Fri, 17 Apr 2015 14:53:03 +0200 (CEST)
X-Virus-Scanned: amavisd-new at example.com
Received: from mailserver.example.com ([127.0.0.1])
by localhost (mailserver.example.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id oUIr35qsq6dA for <receipient@example.com>;
Fri, 17 Apr 2015 14:53:03 +0200 (CEST)
Received: from closed-relay.outgoing-mailserver.com (closed-relay.outgoing-mailserver.com [123.123.123.123])
by mailserver.example.com (Postfix) with ESMTP id DEC0B1D23794
for <receipient@example.com>; Fri, 17 Apr 2015 14:53:02 +0200 …
Run Code Online (Sandbox Code Playgroud) 我有一个 thawte 通配符 SSL-Cert for *.my.example.com
.
现在我想将它用于我的邮件服务器(主机名:)test.my.example.com
。
我/etc/postfix/postfix_default.pem
在此文件中编辑并包含了密钥、证书和 CA。
不幸的是 SSL 检查失败并出现错误
未知权威
或者
证书未验证:无法获得本地颁发者证书
我必须在我的配置中更改什么?
我用 icingaweb2 安装并配置了 Icinga2。
我添加了一个带有测试服务的测试主机:我们称之为“example.com”。
这是测试主机:
/etc/icinga2/conf.d/hosts/example-com:
object Host "example-com" {
//Importiert die generische Host-Vorlage aus der template.conf
import "generic-host"
//IPv4 Adresse
address = "2xx.2xx.2xx.2xx"
//Angabe des Betriebssystemtyps
vars.os = "Linux OS"
vars.sla = "24x7"
}
Run Code Online (Sandbox Code Playgroud)
好的,那么我们有了服务配置:
/etc/icinga2/conf.d/hosts/example-com/http.conf
object Service "http" {
import "generic-service"
host_name = "example-com"
check_command = "http"
vars.sla = "24x7"
}
Run Code Online (Sandbox Code Playgroud)
当然我在/etc/icinga2/conf.d/users.conf中添加了一个新的用户组
/**
* The example user 'icingaadmin' and the example
* group 'icingaadmins'.
*/
object User "icingaadmin" {
import "generic-user"
display_name = "Icinga 2 Admin"
groups …
Run Code Online (Sandbox Code Playgroud) 我想阻止对 xmlrpc.php 的访问
我创建了一个文件
/etc/apache2/conf.d/block.conf
并添加了以下内容:
<FilesMatch "(^\.|wp-config\.php|xmlrpc\.php|(?<!robots)\.txt|(liesmich|readme)\.*)">
Require all denied
</FilesMatch>
Run Code Online (Sandbox Code Playgroud)
如果我在服务器上尝试任何域,我仍然可以访问:example.com/xmlrpc.php
我原以为会出现“禁止”错误。
postfix ×2
apache-2.4 ×1
centos ×1
centos7 ×1
icinga ×1
icinga2 ×1
monitoring ×1
openssl ×1
reverse-dns ×1
sftp ×1
spamassassin ×1
ssh ×1
xmlrpc ×1