firewall 保护互联网对服务器的影响
selinux 保护服务器内部程序(ftp)对内部文件(/var/ftp)的访问
firewall临时关闭 systemctl stop firewalld
firewall临时关闭 systemctl disable firewalld
firewall查看 systemctl status firewalld
selinux临时关闭 setenforce 0
selinux永久关闭 vim /etc/selinux/config vim /etc/sysconfig/selinux
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=disabled
# SELINUXTYPE= can take one of three values:
# targeted - Targeted processes are protected,
# minimum - Modification of targeted policy. Only selected processes are protected.
# mls - Multi Level Security protection.
SELINUXTYPE=targeted
##将enforcing改为disable
SELINUX=disabled
selinux查看 getenforce (enforcing开启;permissive放行;disable关闭)