要检测Ubuntu系统中的Exploit漏洞,可以采取以下几种方法:
sudo apt update && sudo apt upgrade
sudo apt install unattended-upgrades
sudo dpkg-reconfigure -plow unattended-upgrades
sudo apt install clamav
sudo clamscan -r /path/to/scan
sudo apt install linux-exploit-suggester
sudo nessus-cli -h
sudo apt installaide
sudo aide -V
/var/log/auth.log
和/var/log/syslog
)以发现异常活动。sudo tail -f /var/log/auth.log
/etc/ssh/sshd_config
,禁用root用户的远程登录。sudo nano /etc/ssh/sshd_config
# 更改端口 Port 2222
# 禁止root登录 PermitRootLogin no
# 禁用密码登录 PasswordAuthentication no
sudo systemctl restart sshd
sudo apt install ufws
sudo ufw enable
sudo ufw allow ssh
sudo apt install auditd
sudo auditctl -w /etc/passwd -p wa -k password-changes
journalctl
或syslog
来监控系统活动。